Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67ACB0A60B0F11F1AFA96C8CDAE4EC9C.roa
File: 67ACB0A60B0F11F1AFA96C8CDAE4EC9C.roa (raw, json)
Hash identifier: cbxsJkudJ04BmP+h9pD5oKwEL7tA0pImmQRq1WCLSQU=
Subject key identifier: 48:54:DB:84:8F:C6:9B:A5:AC:9A:9D:15:03:20:8D:B8:21:2B:88:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019E1E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67ACB0A60B0F11F1AFA96C8CDAE4EC9C.roa
Signing time: Mon 16 Feb 2026 08:13:42 +0000
ROA not before: Mon 16 Feb 2026 08:13:36 +0000
ROA not after: Fri 04 Dec 2026 08:13:36 +0000
asID: 134365
IP address blocks: 156.239.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106014 (0x19e1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 16 08:13:36 2026 GMT
Not After : Dec 4 08:13:36 2026 GMT
Subject: CN=6992d1b6-dcf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c0:93:37:65:89:8e:a0:5e:bd:bc:24:fa:59:
c9:cc:6f:b7:dc:52:ce:1c:af:18:cf:47:a0:14:fb:
1f:b0:9a:b3:a6:bf:7d:b9:6e:23:73:9f:47:31:81:
cc:f0:57:e0:94:52:7e:cb:50:b0:4b:7e:d9:9d:ff:
c4:2d:c0:bb:9b:42:dd:8a:ad:a3:24:91:d6:a6:c9:
30:d3:e3:b0:5d:e9:d3:70:5d:eb:3a:ad:81:9f:29:
83:bc:31:43:86:ef:a4:93:c2:31:7b:9a:ef:d4:f1:
65:94:02:3f:a3:09:db:03:bd:b6:06:8a:3d:0b:00:
e9:f8:39:6e:96:b7:2f:5c:60:7f:4d:8b:7f:dd:ff:
e1:3e:23:f1:e0:d7:1a:3d:85:55:b5:dc:59:e6:f9:
b8:dc:3d:5d:a0:a4:33:a6:40:88:bb:43:e2:15:66:
9a:65:3c:ba:38:9b:24:a0:d2:7d:31:69:fd:e8:65:
14:63:6c:bb:fc:c9:b3:02:57:dc:be:81:95:df:94:
d1:c3:66:9f:79:dd:79:53:ac:a1:67:7d:11:26:4e:
fa:bc:e0:c0:3d:03:86:98:32:17:b6:3b:7c:b9:6a:
1d:5e:bc:b8:2a:6f:ba:61:4e:3f:54:98:34:d0:61:
19:e2:80:89:a4:8a:0b:53:a1:99:d6:fd:aa:57:be:
14:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:54:DB:84:8F:C6:9B:A5:AC:9A:9D:15:03:20:8D:B8:21:2B:88:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67ACB0A60B0F11F1AFA96C8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.224.0/20
Signature Algorithm: sha256WithRSAEncryption
57:5e:43:b4:73:7a:1e:11:83:6e:71:81:48:f0:9b:b8:0a:e9:
c5:f8:97:47:d7:62:b8:45:1b:12:11:c6:df:1f:0c:bc:04:04:
26:39:19:4f:be:77:5f:85:0e:f3:3b:c2:fe:7f:e3:bb:ff:3b:
84:53:de:0d:4a:7f:b9:1c:60:a1:8c:2d:9c:74:c6:20:3a:4b:
0f:f1:20:58:be:8d:4c:e6:5d:4d:4b:41:20:29:2a:46:31:37:
11:d4:2a:8d:37:c6:b8:da:0f:08:1e:6c:75:0a:15:4b:68:bc:
ab:e4:04:32:9d:d7:46:de:08:10:e3:4a:d3:b0:d4:16:18:10:
da:72:0e:0b:b6:01:71:6d:81:e8:b8:c1:51:f4:8f:65:ce:0a:
00:74:bb:78:65:75:9e:30:ce:cd:8c:4d:21:7c:d5:b2:5a:de:
7a:86:33:a9:30:38:c6:de:73:e1:cc:c0:8d:ab:f3:be:27:75:
2d:50:83:98:a5:96:45:2c:f1:82:66:4a:d0:83:ef:5e:0c:5e:
a1:f4:97:94:22:54:66:9a:a6:02:d6:e5:7b:ed:6b:c2:5d:2f:
cf:71:07:1d:69:52:51:50:e4:9e:1c:fc:15:60:d8:9b:8a:1e:
39:cf:a1:e5:9c:01:39:cf:4a:59:6c:5e:c4:f6:c0:7a:b3:2a:
33:d1:de:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:37 2026 by rpki-client