Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E86A45FA64CE11F1B581B4E7CE1D38B0.roa
File: E86A45FA64CE11F1B581B4E7CE1D38B0.roa (raw, json)
Hash identifier: rkcxc7qb9oaPeiuTMDCICaMjYoYFWOE8bU0VRT/5arc=
Subject key identifier: 7C:31:47:D5:35:48:1D:E6:D9:13:F4:2E:D9:D1:9C:B3:2B:EC:B7:88
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BCD4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E86A45FA64CE11F1B581B4E7CE1D38B0.roa
Signing time: Wed 10 Jun 2026 13:18:45 +0000
ROA not before: Wed 10 Jun 2026 13:18:40 +0000
ROA not after: Fri 17 Jul 2026 13:18:40 +0000
asID: 139613
IP address blocks: 156.229.128.0/19 maxlen: 24
156.239.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 16 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113876 (0x1bcd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 10 13:18:40 2026 GMT
Not After : Jul 17 13:18:40 2026 GMT
Subject: CN=6a296435-cccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:be:02:9e:a3:9c:8b:55:2f:29:6c:8a:3d:
91:98:10:4e:34:02:e8:5f:b1:3a:fd:cd:d1:70:e3:
4c:d3:73:28:27:3d:fe:7a:af:43:dd:a1:09:95:ed:
f8:03:9e:8f:e5:2a:59:a1:30:38:f2:94:7c:51:4f:
a6:72:1f:d0:7e:ca:46:a3:57:d3:6c:84:47:26:2e:
32:03:f5:82:52:f4:4b:62:fb:20:57:9c:10:29:7d:
2a:29:94:22:40:43:9b:9f:a8:ad:10:22:3b:7d:1b:
86:1d:bd:1a:6f:21:71:0b:bb:6e:c2:c8:21:ae:c0:
39:29:59:52:5f:33:14:58:cb:b7:8c:bf:2e:40:ba:
dd:21:d5:64:31:11:02:a9:10:9e:15:a1:bb:b4:b0:
fa:bb:42:e7:ca:0d:b9:f0:69:fc:58:2d:b2:d0:88:
99:8f:a2:3b:57:8e:bd:84:50:36:b4:72:ea:2f:07:
da:75:a2:b6:21:0a:0d:e2:da:47:7e:36:77:1f:6d:
56:35:79:e4:c4:c9:ce:3a:dc:c4:d5:e4:14:c6:71:
8c:b4:a0:93:b1:d7:1c:c4:02:09:ee:40:db:53:74:
9d:20:dd:4e:2c:b0:11:97:64:5b:ab:d8:d5:86:e1:
f9:e4:96:35:f6:ed:c0:c5:63:a8:99:76:77:8d:99:
75:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:31:47:D5:35:48:1D:E6:D9:13:F4:2E:D9:D1:9C:B3:2B:EC:B7:88
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E86A45FA64CE11F1B581B4E7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.128.0/19
156.239.160.0/19
Signature Algorithm: sha256WithRSAEncryption
70:44:e5:d4:96:57:19:55:c3:0e:6e:d7:02:40:f4:5c:2c:51:
6d:86:25:75:3b:92:90:87:d7:77:9a:d1:bb:41:dc:11:44:23:
db:86:9e:4a:b5:f0:cb:28:4b:c6:bf:07:18:bd:0b:b6:f9:d2:
96:26:01:5a:b0:9f:28:57:a3:b4:61:02:6d:22:14:1d:5d:c2:
f1:09:e8:ab:a8:8b:13:6c:60:cd:57:cf:18:9c:34:a6:02:bb:
ec:d9:a4:9c:ba:f0:49:fd:66:a2:54:ad:bc:f4:a0:69:e0:f8:
59:2b:07:68:28:e8:3e:c8:6d:ee:14:72:d7:77:6c:19:84:58:
fc:3b:a0:15:7e:47:4e:d9:f3:d1:8c:df:44:3d:37:bd:c8:f7:
4c:78:4f:1f:39:d6:ac:a8:f3:bc:2e:16:eb:84:3e:90:ab:30:
89:15:f5:d8:3f:8e:8f:26:2a:f8:bb:e3:b0:51:0e:e5:e2:44:
86:cd:b4:63:04:69:b9:6c:bf:ea:5c:23:f2:4f:8e:4c:b6:af:
60:0d:59:bc:34:78:3c:ab:8a:dc:a1:7a:1d:2e:3e:43:48:85:
bd:eb:56:b2:03:c1:dc:a3:94:1d:94:ab:1c:ae:93:38:a3:b3:
6f:ef:7f:ee:11:a1:06:dc:e3:66:25:c6:fb:e0:fa:13:53:ac:
43:4b:27:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:47:36 2026 by rpki-client