Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63F94AC40B0E11F1898AF287DAE4EC9C.roa
File: 63F94AC40B0E11F1898AF287DAE4EC9C.roa (raw, json)
Hash identifier: jltS7qyaWLL+dGGbzXXPOLIl1VHvep6hlJWm2M0eDcg=
Subject key identifier: 38:ED:B3:28:EA:65:72:37:07:6E:57:55:40:B1:16:65:72:62:54:E0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019E16
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63F94AC40B0E11F1898AF287DAE4EC9C.roa
Signing time: Mon 16 Feb 2026 08:06:26 +0000
ROA not before: Mon 16 Feb 2026 08:06:19 +0000
ROA not after: Fri 20 Mar 2026 08:06:19 +0000
asID: 55020
IP address blocks: 156.254.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106006 (0x19e16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 16 08:06:19 2026 GMT
Not After : Mar 20 08:06:19 2026 GMT
Subject: CN=6992d002-8bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:73:dc:99:70:35:ac:bd:4d:cf:49:4c:e2:1f:
95:01:4e:f8:53:63:55:46:97:99:8d:c4:c1:25:36:
bf:c1:fd:81:f6:a0:53:ab:60:07:2f:1d:09:42:f8:
da:34:15:cd:c0:22:ed:9f:b0:da:12:af:06:d6:32:
5e:02:00:54:af:12:dd:5f:e6:9d:6b:e9:a9:3d:38:
df:fa:96:3c:03:d2:fb:76:f1:a0:c4:6d:86:b4:f1:
f9:3a:91:ba:eb:63:67:ea:8e:b5:1c:cf:6b:56:8c:
5d:62:92:93:fc:97:c5:cd:78:bf:d9:f5:0e:1d:98:
39:f3:05:e7:ca:06:bc:d3:e9:d8:8b:bc:7a:d2:95:
54:67:20:76:e9:17:95:3d:42:e9:87:15:b3:ef:04:
a8:01:93:df:08:36:f7:97:86:2b:5d:2d:4c:5e:e2:
09:78:3d:ee:ed:20:03:2f:cc:c5:c8:38:dd:ac:80:
47:9d:cd:c2:7f:fe:dc:2d:1e:eb:2f:37:df:ea:dc:
87:d1:9b:4a:be:68:22:6e:fd:8d:55:ec:0e:51:aa:
58:f9:0e:a0:be:2c:5b:8a:cb:bb:64:03:6d:ca:52:
80:1f:b7:b9:be:aa:50:ee:75:b7:6f:6c:63:40:fc:
18:ef:b4:94:0d:6a:ce:7f:97:7b:bd:c0:45:86:be:
12:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:ED:B3:28:EA:65:72:37:07:6E:57:55:40:B1:16:65:72:62:54:E0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63F94AC40B0E11F1898AF287DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.0.0/19
Signature Algorithm: sha256WithRSAEncryption
38:88:11:de:a7:9e:3d:3c:d5:33:39:78:78:44:56:86:19:f7:
7f:33:07:b6:61:79:05:d5:de:6b:dd:69:a3:af:b6:5d:4b:bc:
2f:1a:ea:fd:e7:54:8e:ac:38:36:e2:ac:af:cf:0c:99:3b:58:
de:7d:04:f0:7e:b1:66:5c:25:ae:95:af:26:6f:76:7c:d8:ac:
97:ab:95:11:a1:55:33:01:2e:9c:95:ba:a5:5c:5a:59:fc:36:
d2:d5:70:ac:02:e4:bf:dd:bd:bb:87:ff:38:50:09:d2:c2:2b:
6f:68:15:09:84:68:a7:24:27:f5:f9:f3:50:ab:0d:68:f9:61:
92:60:49:93:1c:e3:c1:34:eb:52:8e:5c:3c:c5:3e:cb:98:35:
9a:d7:c0:8f:4c:d1:dd:75:fc:f3:74:af:c6:5c:ae:ef:45:0a:
cc:18:8f:11:92:78:84:59:63:0d:c6:2e:48:38:38:4f:b7:f1:
5d:a6:dc:58:91:d7:c9:90:40:e1:4a:c8:8b:eb:ce:14:7d:84:
06:b6:40:98:d6:ba:96:73:76:ef:93:14:48:57:d1:c2:3e:e7:
2c:3a:4a:b5:52:43:c3:c9:92:73:a4:94:11:aa:e2:0d:89:ba:
03:18:7a:69:db:71:00:7d:6c:91:f5:e9:6f:a6:9d:b3:ec:12:
38:e3:56:46
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAZ4WMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjE2MDgwNjE5WhcNMjYwMzIwMDgwNjE5WjAYMRYw
FAYDVQQDEw02OTkyZDAwMi04YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmXPcmXA1rL1Nz0lM4h+VAU74U2NVRpeZjcTBJTa/wf2B9qBTq2AHLx0J
QvjaNBXNwCLtn7DaEq8G1jJeAgBUrxLdX+ada+mpPTjf+pY8A9L7dvGgxG2GtPH5
OpG662Nn6o61HM9rVoxdYpKT/JfFzXi/2fUOHZg58wXnyga80+nYi7x60pVUZyB2
6ReVPULphxWz7wSoAZPfCDb3l4YrXS1MXuIJeD3u7SADL8zFyDjdrIBHnc3Cf/7c
LR7rLzff6tyH0ZtKvmgibv2NVewOUapY+Q6gvixbisu7ZANtylKAH7e5vqpQ7nW3
b2xjQPwY77SUDWrOf5d7vcBFhr4SfwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDjt
syjqZXI3B25XVUCxFmVyYlTgMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82M0Y5NEFDNDBCMEUxMUYxODk4QUYyODdEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnP4AMA0GCSqGSIb3DQEBCwUA
A4IBAQA4iBHep549PNUzOXh4RFaGGfd/Mwe2YXkF1d5r3Wmjr7ZdS7wvGur951SO
rDg24qyvzwyZO1jefQTwfrFmXCWula8mb3Z82KyXq5URoVUzAS6clbqlXFpZ/DbS
1XCsAuS/3b27h/84UAnSwitvaBUJhGinJCf1+fNQqw1o+WGSYEmTHOPBNOtSjlw8
xT7LmDWa18CPTNHddfzzdK/GXK7vRQrMGI8RkniEWWMNxi5IODhPt/FdptxYkdfJ
kEDhSsiL684UfYQGtkCY1rqWc3bvkxRIV9HCPucsOkq1UkPDyZJzpJQRquINiboD
GHpp23EAfWyR9elvpp2z7BI441ZG
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:47 2026 by rpki-client