Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF1821505F2611F19019A109CF1D38B0.roa
File: DF1821505F2611F19019A109CF1D38B0.roa (raw, json)
Hash identifier: wCJPH2F+NTq3H64zbJsIL9H5dnsHKpIQjWQVIYYmXBM=
Subject key identifier: 18:A1:7D:4D:05:80:A0:12:34:37:73:E4:9E:0E:38:E8:E2:BE:4D:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BB93
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF1821505F2611F19019A109CF1D38B0.roa
Signing time: Wed 03 Jun 2026 08:33:18 +0000
ROA not before: Wed 03 Jun 2026 08:33:14 +0000
ROA not after: Wed 08 Jul 2026 08:33:14 +0000
asID: 24435
IP address blocks: 156.238.82.0/24 maxlen: 24
156.238.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113555 (0x1bb93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 3 08:33:14 2026 GMT
Not After : Jul 8 08:33:14 2026 GMT
Subject: CN=6a1fe6ce-5652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0e:d7:53:45:9e:d2:a5:cb:f5:0f:35:57:ea:
5f:47:f8:b9:9e:bb:a9:2b:1b:66:e4:76:53:cf:2d:
c0:86:9b:fe:af:d9:a1:37:29:bf:98:f4:13:11:7a:
bc:55:59:c8:8b:f8:b4:55:d9:54:ff:eb:03:38:ec:
fd:fa:4d:3b:82:fe:aa:5e:d6:f3:97:1c:7e:21:52:
4f:26:4a:22:50:db:8b:6a:0c:24:e6:03:17:cf:cb:
bd:74:de:67:79:c4:a0:13:c0:68:e4:cf:d5:e0:fe:
71:2c:a1:7d:f7:32:8c:f3:f1:d2:e0:ac:c7:45:bc:
aa:fc:25:3c:60:eb:77:4f:61:73:83:5b:49:5d:ed:
48:5d:37:bc:e0:b7:28:0d:6e:6a:d3:c1:e6:66:ba:
43:7e:02:c8:e3:8a:38:49:c1:16:99:94:c4:5c:09:
80:62:b0:86:f4:6d:3e:18:84:d2:82:e8:87:13:a2:
96:ef:0d:4d:30:5c:ad:1f:a8:73:8b:48:62:35:f3:
44:81:5e:80:fb:63:d1:ed:a9:ad:48:54:2e:f8:05:
1e:9d:b2:b1:62:7c:f9:a7:52:5b:3e:1b:46:0b:2e:
64:86:05:65:49:41:fa:af:32:73:5c:02:43:9a:d2:
60:7e:47:c6:ef:33:a5:ee:8a:2d:59:5d:ec:da:b5:
8a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A1:7D:4D:05:80:A0:12:34:37:73:E4:9E:0E:38:E8:E2:BE:4D:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF1821505F2611F19019A109CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.82.0/23
Signature Algorithm: sha256WithRSAEncryption
31:1f:b9:b3:9e:a8:0f:33:c6:93:9c:76:8a:fe:c1:99:1c:ae:
32:6c:fb:da:07:7b:a6:4a:34:d9:d5:65:d3:e4:72:9a:14:7f:
e5:8e:f6:7f:d2:2b:a5:dd:b9:8b:7c:0d:99:0e:fe:83:d6:66:
8d:50:a6:2a:ab:06:c8:0c:bb:7f:96:60:7e:5f:18:a3:ef:a2:
ea:18:38:4d:bf:09:2c:25:37:be:cd:f1:4e:82:03:e6:ae:55:
5e:af:73:9c:4b:c8:27:52:3d:0c:b2:34:0a:e6:7f:7d:4d:2b:
2e:f1:b1:ec:41:ed:e5:15:b2:a3:ca:2a:78:3f:86:af:df:0d:
9c:2b:db:73:74:cf:30:49:7f:46:4c:79:50:32:27:3f:f4:39:
fa:df:b2:0d:c5:25:9c:76:ac:ac:1e:04:db:5c:e7:36:54:f2:
b1:6c:6b:e5:f2:33:47:9e:4a:aa:a7:b2:05:0d:7f:0d:08:90:
fa:89:15:40:9a:3f:a0:8b:d9:1c:3c:ae:b1:b1:5f:bc:d9:de:
0e:3a:fc:d4:25:51:3d:54:e6:9c:17:b4:cc:be:ae:8a:bd:24:
7e:ca:46:9d:98:53:18:e6:0d:74:12:10:05:7a:69:28:a7:10:
32:20:58:dc:80:25:ad:1f:f3:da:62:dd:1c:d5:aa:c4:3e:3c:
54:13:38:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:51:38 2026 by rpki-client