Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/1B7ED73A5FF211F1A5FB5EDACE1D38B0.roa
File: 1B7ED73A5FF211F1A5FB5EDACE1D38B0.roa (raw, json)
Hash identifier: tBsb3KoqmQYJZoFJrHv9Cghp2s7SewPhq2+i08NAc3U=
Subject key identifier: A9:BB:7D:82:71:A8:97:D6:0C:D4:E8:F2:78:24:06:05:28:71:4C:DD
Certificate issuer: /CN=F3693F0FAR/serialNumber=1D989DAB9FC94DCB2E98B18EDED98F5F8F59CAEA
Certificate serial: 02
Authority key identifier: 1D:98:9D:AB:9F:C9:4D:CB:2E:98:B1:8E:DE:D9:8F:5F:8F:59:CA:EA
Authority info access: rsync://rpki.afrinic.net/repository/arin/HZidq5_JTcsumLGO3tmPX49Zyuo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/1B7ED73A5FF211F1A5FB5EDACE1D38B0.roa
Signing time: Thu 04 Jun 2026 08:48:08 +0000
ROA not before: Thu 04 Jun 2026 08:48:02 +0000
ROA not after: Fri 04 Jun 2027 08:48:02 +0000
asID: 327946
IP address blocks: 169.239.80.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/HZidq5_JTcsumLGO3tmPX49Zyuo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/HZidq5_JTcsumLGO3tmPX49Zyuo.mft
rsync://rpki.afrinic.net/repository/arin/HZidq5_JTcsumLGO3tmPX49Zyuo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3693F0FAR, serialNumber=1D989DAB9FC94DCB2E98B18EDED98F5F8F59CAEA
Validity
Not Before: Jun 4 08:48:02 2026 GMT
Not After : Jun 4 08:48:02 2027 GMT
Subject: CN=6a213bc7-fd45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:47:ee:36:35:fb:40:3a:12:b0:a8:53:60:13:
ca:ad:68:32:71:0b:b7:f3:f2:8b:cd:ec:0a:08:98:
1d:e3:24:c4:a7:a3:cc:c1:91:61:84:f1:67:68:4c:
94:8a:74:4a:75:de:23:0a:31:b7:3a:9c:77:ad:d4:
e2:84:f1:93:f7:15:df:3d:79:13:7f:e7:0a:1a:fd:
0e:20:32:cf:97:81:0c:2d:a1:a3:2c:06:7d:ee:5e:
09:be:e0:32:28:8e:20:8a:46:87:05:b8:db:fc:3a:
9e:40:10:9c:e8:78:d0:f8:48:e2:bb:f1:a8:57:27:
86:9c:83:fb:3f:55:0e:67:17:8d:42:39:be:21:1a:
95:66:c1:37:5f:5f:e9:39:18:f0:1d:fb:1d:af:40:
41:bc:fb:92:3a:9e:18:95:19:5a:d8:19:b3:3a:8f:
18:76:61:dd:16:ac:e1:c6:d8:e8:68:6a:a2:53:d1:
21:f6:d6:cf:d8:8e:c6:47:11:c0:45:0e:15:73:17:
f7:14:fc:ab:34:00:94:ed:0e:19:39:62:e8:15:b2:
45:28:23:6b:2c:00:db:b9:1c:3d:c2:98:a5:c0:83:
5b:43:40:8e:68:be:76:00:a4:e2:c7:a7:7a:69:33:
a3:02:c9:6c:d7:78:a6:00:13:f7:35:78:94:1b:7e:
e6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BB:7D:82:71:A8:97:D6:0C:D4:E8:F2:78:24:06:05:28:71:4C:DD
X509v3 Authority Key Identifier:
keyid:1D:98:9D:AB:9F:C9:4D:CB:2E:98:B1:8E:DE:D9:8F:5F:8F:59:CA:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/HZidq5_JTcsumLGO3tmPX49Zyuo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/HZidq5_JTcsumLGO3tmPX49Zyuo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/1B7ED73A5FF211F1A5FB5EDACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.80.0/22
Signature Algorithm: sha256WithRSAEncryption
49:18:45:e4:4f:b9:41:b9:2f:04:bc:af:60:85:76:cb:66:e5:
f1:89:64:ce:62:07:77:80:17:03:e1:9c:4a:99:7d:97:22:2f:
80:49:36:73:50:ca:59:b9:01:90:e5:94:f5:46:55:da:2e:7f:
40:fb:f1:c3:41:1c:a6:5f:ce:c3:e3:f4:27:5e:f5:f6:ba:85:
03:d9:69:e4:8a:66:04:59:26:8f:cc:53:67:67:f4:64:d5:4d:
40:7d:ef:6b:c7:bd:c4:f6:96:43:3c:a4:a8:e5:32:dd:43:4d:
08:fc:64:43:58:8a:ec:9b:df:0d:c1:c6:59:ee:4a:0c:fb:3a:
59:95:3e:19:be:dc:c3:70:4f:0e:09:9c:ba:a4:3c:d9:60:27:
2a:e4:20:2f:90:ee:0b:ec:b9:4f:d2:cd:b6:78:81:ce:20:26:
dc:23:04:89:3c:76:17:ba:3e:52:6d:5d:32:f2:e9:da:ad:08:
c7:d9:bc:4b:ab:34:f6:14:23:2e:57:6d:da:78:d9:ff:ba:69:
6c:dc:49:3a:43:a0:3b:a6:c6:65:1a:bf:61:ac:56:a1:ce:2e:
e9:f1:44:4c:9f:4a:9d:a1:6c:5d:90:95:33:38:e7:20:92:9b:
5f:ef:b4:5e:3b:5a:55:0d:6b:6d:a5:79:3a:ae:96:18:f8:e3:
4e:13:0d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:30:41 2026 by rpki-client