Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/BD108C8C5FFD11F181D1EC1ECF1D38B0.roa
File: BD108C8C5FFD11F181D1EC1ECF1D38B0.roa (raw, json)
Hash identifier: 0RAAHj2DRHeGQw2/3zb6fZlhOfTZehAueYQXWNTpjEk=
Subject key identifier: B5:9F:CB:06:53:41:64:61:48:E6:79:A0:7B:29:3C:27:0E:9A:15:40
Certificate issuer: /CN=F3693F0FAR/serialNumber=1D989DAB9FC94DCB2E98B18EDED98F5F8F59CAEA
Certificate serial: 06
Authority key identifier: 1D:98:9D:AB:9F:C9:4D:CB:2E:98:B1:8E:DE:D9:8F:5F:8F:59:CA:EA
Authority info access: rsync://rpki.afrinic.net/repository/arin/HZidq5_JTcsumLGO3tmPX49Zyuo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/BD108C8C5FFD11F181D1EC1ECF1D38B0.roa
Signing time: Thu 04 Jun 2026 10:11:23 +0000
ROA not before: Thu 04 Jun 2026 10:11:19 +0000
ROA not after: Fri 04 Jun 2027 10:11:19 +0000
asID: 327946
IP address blocks: 169.239.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/HZidq5_JTcsumLGO3tmPX49Zyuo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/HZidq5_JTcsumLGO3tmPX49Zyuo.mft
rsync://rpki.afrinic.net/repository/arin/HZidq5_JTcsumLGO3tmPX49Zyuo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3693F0FAR, serialNumber=1D989DAB9FC94DCB2E98B18EDED98F5F8F59CAEA
Validity
Not Before: Jun 4 10:11:19 2026 GMT
Not After : Jun 4 10:11:19 2027 GMT
Subject: CN=6a214f4b-0d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a4:16:22:55:28:dc:b9:97:5a:f0:35:63:6d:
db:63:26:cc:1f:cc:3d:bb:05:0a:6e:6c:ad:d0:9e:
de:f8:b8:18:1f:17:d1:6e:fc:9b:88:15:06:4b:4a:
6a:f4:c6:bf:00:95:c0:c4:a3:75:51:81:8b:49:1b:
4c:d4:b5:b0:3f:77:2b:09:ea:39:fb:00:af:4f:de:
85:84:c5:77:b0:b3:f7:3e:ce:7b:da:d6:87:10:b7:
22:42:a7:3a:ae:24:35:13:0b:66:ec:fc:ae:10:3f:
f8:79:23:6f:e4:1b:a3:11:d0:07:c6:7f:b4:9a:61:
95:89:01:4e:ae:32:e1:1e:43:e7:05:c9:57:96:b4:
8a:6f:8f:0d:73:e3:44:43:9b:1e:ca:c5:cf:cb:b6:
02:8f:44:cc:1c:dc:3c:89:61:50:25:64:41:4b:6a:
4b:69:11:e2:cb:93:ed:c9:12:11:e5:f9:b2:bd:91:
fc:0f:83:9a:8c:9c:ca:8a:84:c8:b7:15:34:65:86:
9f:91:8b:e3:38:82:ed:51:54:46:fb:94:87:d1:f6:
88:21:3d:81:75:fc:37:88:96:8f:0b:63:4a:af:e5:
45:59:90:80:fa:83:d2:aa:7f:d3:66:ce:01:b7:87:
22:80:29:ca:42:3d:51:26:aa:c4:3a:c6:f7:ed:c6:
51:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9F:CB:06:53:41:64:61:48:E6:79:A0:7B:29:3C:27:0E:9A:15:40
X509v3 Authority Key Identifier:
keyid:1D:98:9D:AB:9F:C9:4D:CB:2E:98:B1:8E:DE:D9:8F:5F:8F:59:CA:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/HZidq5_JTcsumLGO3tmPX49Zyuo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/HZidq5_JTcsumLGO3tmPX49Zyuo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3693F0F/70AED9785FF011F1BEB358D0CE1D38B0/BD108C8C5FFD11F181D1EC1ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.80.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d9:18:fa:14:40:3d:b9:2f:91:7c:20:1e:b1:be:d3:6a:2f:
d9:0e:60:3f:f1:07:d0:73:28:83:5e:40:0b:74:1f:04:f0:42:
d5:c5:20:35:f8:b7:ad:94:60:ea:5d:84:05:e0:e1:1e:00:50:
8b:8b:59:d3:8d:79:3b:47:20:67:a0:9d:7a:eb:74:ec:11:ed:
fc:3f:f4:d9:aa:4c:24:f5:ee:c4:3b:d8:7b:07:5d:eb:5d:ce:
0a:8e:7c:f4:28:e1:5d:c5:9a:5a:04:5b:19:a5:57:a0:07:b6:
c6:67:b8:43:53:ee:16:16:ff:bd:7f:b7:05:f1:71:69:69:59:
56:72:ff:a3:86:b6:ba:e8:95:8c:f7:a6:68:f5:b8:26:d2:84:
a9:55:c7:7d:7f:4f:fd:68:74:7b:02:de:1f:d7:ae:d9:1c:be:
95:42:52:93:a4:71:39:9b:74:0d:79:d2:a4:91:cc:9f:fb:d9:
ee:a5:3a:c3:c4:bb:79:61:c7:6e:ae:16:f9:d2:e1:72:48:62:
34:aa:4c:78:1e:48:93:58:a9:96:7f:d2:6f:e1:5a:36:c3:06:
df:af:b5:56:0a:cd:33:82:10:92:45:ed:6b:46:fd:5c:e1:63:
4f:04:6d:6d:13:8b:f6:a0:58:23:50:8a:70:05:b5:69:e5:dd:
5b:07:a5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:18:55 2026 by rpki-client