Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A730BEC62ADA11F19B987BA1DAE4EC9C.roa
File: A730BEC62ADA11F19B987BA1DAE4EC9C.roa (raw, json)
Hash identifier: 323ZarlJipNCCNf5bI6o1m+3blyJl9isbuUgtit5tFs=
Subject key identifier: 99:79:0E:AB:FA:EC:F4:E7:5A:58:57:9A:96:8E:B0:3B:F1:33:8C:5E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A84C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A730BEC62ADA11F19B987BA1DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 19:16:43 +0000
ROA not before: Sat 28 Mar 2026 19:16:37 +0000
ROA not after: Tue 05 May 2026 19:16:37 +0000
asID: 138415
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108620 (0x1a84c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 19:16:37 2026 GMT
Not After : May 5 19:16:37 2026 GMT
Subject: CN=69c8291a-3314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:24:37:90:f8:20:74:5e:eb:c6:27:33:1d:56:
80:7f:f4:6b:2d:2e:8c:f4:53:6d:d3:e5:3a:f5:ac:
05:0c:8c:e0:d0:5a:58:fe:be:9a:e5:64:2c:76:54:
f5:82:31:56:16:5a:33:5d:a9:f1:75:b4:45:b1:e3:
03:2e:99:1a:68:29:4c:3b:79:95:76:fb:11:8b:a7:
dd:f0:34:c3:c4:5b:c9:57:be:71:6d:ec:f0:39:4b:
68:de:b3:ce:0f:0d:c5:d7:5a:1c:4a:af:84:71:fd:
39:39:e8:46:65:c3:05:d0:06:c2:d7:e6:c2:33:25:
01:1d:99:00:fe:d3:9b:b1:50:61:dc:7e:10:93:ef:
ac:7e:d5:61:4f:ce:53:f9:86:dc:8f:4a:a3:56:0a:
88:52:f2:e2:68:c2:25:65:34:86:ff:88:96:8f:0a:
92:c2:04:48:d9:92:c7:e1:48:86:38:05:84:e5:72:
97:26:b9:02:44:f9:ed:75:91:a3:79:8d:da:58:82:
f3:74:81:97:d0:e3:a3:b9:39:e9:a5:7f:d5:89:83:
16:30:d0:d3:58:11:77:23:6a:9c:bc:d8:45:2a:64:
35:76:5e:3c:0f:39:f8:e3:fd:dd:4f:e1:95:e5:8f:
a0:51:c1:18:85:98:41:dd:3b:d3:97:32:96:57:e3:
18:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:79:0E:AB:FA:EC:F4:E7:5A:58:57:9A:96:8E:B0:3B:F1:33:8C:5E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A730BEC62ADA11F19B987BA1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
66:33:20:36:af:16:9f:d1:2d:2f:6c:90:31:44:37:13:cf:84:
8e:6b:ff:a0:5b:0d:9f:a8:97:0e:d4:61:26:9a:b9:b0:1f:28:
ba:54:49:78:81:7c:04:00:e6:55:6c:fa:cb:bc:6c:39:fb:8a:
01:21:c3:2e:9d:80:1f:86:29:45:d6:5d:cb:f2:68:11:27:e3:
2a:4a:09:77:25:3d:ae:88:c0:15:93:c3:63:a4:1b:10:a9:9f:
44:0f:0c:ba:31:a0:77:9b:79:f6:5e:ce:20:39:8d:4e:aa:62:
6a:ab:d5:45:bd:b7:10:72:1b:11:03:97:c4:ed:7a:82:42:2f:
70:96:56:4d:91:93:65:5c:da:e6:ec:b2:b0:a1:47:d0:0b:9f:
67:27:1e:db:69:ed:14:ad:c3:ff:2b:cb:8f:49:fc:54:c5:fb:
9a:79:20:ce:d8:af:e7:5f:7c:bf:fe:3a:99:13:b1:ac:4f:78:
3d:e3:56:07:af:53:ff:73:ac:98:fb:78:b7:b1:d1:76:3e:91:
c9:8e:55:7f:8d:80:bd:7e:2c:fc:1d:a0:19:82:09:89:8b:9b:
55:be:f7:ed:1f:e1:9c:08:f6:c0:50:bc:df:3b:db:f7:28:04:
76:91:30:1a:ee:2d:9c:39:c8:04:0e:42:e0:6a:3c:34:2e:da:
ed:e8:62:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:55:05 2026 by rpki-client