Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84E538582AA611F184995A79DAE4EC9C.roa
File: 84E538582AA611F184995A79DAE4EC9C.roa (raw, json)
Hash identifier: Luh+DFfTtufgWA8ViuNBs9zGZhgkO9CtpRZvrqOx0vo=
Subject key identifier: A0:A8:A2:D8:A8:0B:3E:99:D4:19:17:E1:2D:F1:AE:6C:73:34:6C:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A7F9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84E538582AA611F184995A79DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 13:03:31 +0000
ROA not before: Sat 28 Mar 2026 13:03:26 +0000
ROA not after: Fri 22 May 2026 13:03:26 +0000
asID: 8796
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108537 (0x1a7f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 13:03:26 2026 GMT
Not After : May 22 13:03:26 2026 GMT
Subject: CN=69c7d1a3-c34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:1c:0c:15:3c:1b:3a:3e:e2:a6:00:4f:77:
26:54:40:3c:cc:05:f2:63:a0:00:cc:29:df:40:ec:
d1:51:13:f5:96:4b:62:f3:fa:51:fd:ac:ac:76:8f:
d5:21:8f:0c:6d:c0:c7:77:a3:51:1a:fe:47:c8:d1:
9f:68:87:1b:e4:2b:7b:4a:6e:60:d1:3d:05:47:a9:
4e:ee:fb:e0:da:e8:c6:66:89:e5:32:e9:5c:ae:e5:
25:8c:b0:d9:be:19:b7:95:d6:2a:ee:b4:93:3d:c2:
c2:fb:7b:2f:bd:96:e2:60:42:df:2f:ce:52:c8:4e:
1c:2b:c5:ff:35:13:32:41:c7:89:16:e6:71:83:83:
a4:b1:6d:cf:ed:44:05:6f:83:16:17:09:e5:33:c6:
48:d7:fa:99:79:c0:d1:4a:ff:df:5c:ce:2a:e5:77:
eb:9f:87:f8:75:e7:c2:0b:f9:52:91:eb:23:f3:fd:
67:db:a2:9b:d6:11:6e:ac:a2:65:07:47:96:6f:0f:
f6:b7:6e:7c:46:3f:71:f1:a0:f7:3f:a5:31:cd:d2:
80:ec:c5:e4:a4:d3:09:5a:2a:f9:b5:0c:ad:14:18:
90:26:f9:f3:38:b1:ca:b4:56:89:9a:19:08:da:8d:
a2:19:25:f5:62:5f:61:2f:a0:f6:6c:ff:1e:fe:f0:
7c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A8:A2:D8:A8:0B:3E:99:D4:19:17:E1:2D:F1:AE:6C:73:34:6C:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84E538582AA611F184995A79DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
63:fb:d0:9c:61:82:29:d6:82:4a:d6:ce:6b:2c:de:fe:5e:20:
a5:fb:0f:07:27:77:35:71:43:33:f4:6b:42:ae:b6:ea:f8:3a:
8d:9a:34:7a:99:97:30:b0:a8:75:ad:ad:f5:08:77:85:5e:fe:
ef:00:ca:53:58:cb:f9:77:c7:20:a0:3c:96:a1:72:40:df:d0:
5f:7c:d1:00:c6:fb:9a:6a:67:0d:5b:6b:8c:4a:ed:f2:13:fb:
f7:db:56:81:76:4f:a8:18:a0:db:17:17:c9:ef:a2:ae:a1:b5:
2c:9d:63:f5:c4:57:ca:6c:dd:2a:b1:fd:4b:3b:58:bb:88:1a:
b4:5b:4c:3d:1f:43:10:d7:ce:a0:40:21:73:7c:45:90:17:5f:
7f:f0:4c:cc:cc:a1:ed:7a:ee:da:47:0c:6f:09:48:0c:7a:06:
19:45:82:69:b2:e1:8c:25:26:96:f0:5d:ce:05:2f:ad:0a:ae:
5e:15:16:28:cd:d8:a2:37:83:43:31:e3:9d:c0:40:42:40:56:
9b:88:cf:f9:31:2f:76:c9:a1:0b:38:fa:8d:06:90:7f:60:e8:
8a:7a:b5:7f:71:85:aa:ed:5f:66:23:77:3b:89:cf:92:28:35:
3f:58:9b:bb:49:1c:d1:38:1d:cb:d9:c6:7d:50:13:61:51:c7:
a6:6e:07:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:01:30 2026 by rpki-client