Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369974A/9D26BD945B2811F1B1BC5AC6CE1D38B0/975437D25B3911F18053D3A9CE1D38B0.roa
File: 975437D25B3911F18053D3A9CE1D38B0.roa (raw, json)
Hash identifier: hFEADkUreZnc+ySAiY55VjIk9lOVBC1tNBubIFk+Gdo=
Subject key identifier: FF:F1:80:C8:8E:D1:A1:EB:08:C2:61:0E:12:2C:77:21:E0:37:1F:E4
Certificate issuer: /CN=F369974AAR/serialNumber=5EE04B7F8CA0D2C5B6239F41D3C7CCF7C5EE354D
Certificate serial: 07
Authority key identifier: 5E:E0:4B:7F:8C:A0:D2:C5:B6:23:9F:41:D3:C7:CC:F7:C5:EE:35:4D
Authority info access: rsync://rpki.afrinic.net/repository/arin/XuBLf4yg0sW2I59B08fM98XuNU0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369974A/9D26BD945B2811F1B1BC5AC6CE1D38B0/975437D25B3911F18053D3A9CE1D38B0.roa
Signing time: Fri 29 May 2026 08:37:14 +0000
ROA not before: Fri 29 May 2026 08:36:59 +0000
ROA not after: Thu 29 May 2036 08:36:59 +0000
asID: 327791
IP address blocks: 165.73.128.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369974A/9D26BD945B2811F1B1BC5AC6CE1D38B0/XuBLf4yg0sW2I59B08fM98XuNU0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369974A/9D26BD945B2811F1B1BC5AC6CE1D38B0/XuBLf4yg0sW2I59B08fM98XuNU0.mft
rsync://rpki.afrinic.net/repository/arin/XuBLf4yg0sW2I59B08fM98XuNU0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369974AAR, serialNumber=5EE04B7F8CA0D2C5B6239F41D3C7CCF7C5EE354D
Validity
Not Before: May 29 08:36:59 2026 GMT
Not After : May 29 08:36:59 2036 GMT
Subject: CN=6a19503a-31a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b1:da:5d:e2:a1:6b:32:d5:8a:2e:2b:3e:9e:
d9:16:75:8d:2d:d5:a6:61:e6:0c:5c:5b:21:5f:b1:
dd:ac:65:88:6e:f4:b5:a9:7d:99:67:81:c1:92:70:
6a:a2:53:bf:6d:f4:79:ca:6d:58:0d:dd:a4:e2:50:
a9:cd:bb:2d:fc:e8:3c:bf:21:da:53:c4:a2:a3:59:
d1:29:1c:ff:db:eb:3e:ca:a2:ff:96:64:a8:cd:92:
74:3b:af:93:fc:88:cf:c4:59:73:b9:48:78:fd:7a:
af:05:bd:62:db:a2:6e:6c:85:eb:31:d2:11:f7:93:
ef:08:47:0e:e4:a8:6e:c8:d0:24:f6:71:7f:ae:18:
91:09:4f:90:b1:d9:d3:57:ed:88:25:d5:02:93:60:
d1:8b:2b:8e:6c:44:78:51:cd:1a:8e:cd:5d:04:46:
9a:6a:58:ad:73:f6:a3:9b:1b:46:a9:8b:ff:6e:bb:
60:24:47:e1:f5:f4:48:b4:49:24:38:e7:4f:07:e4:
5e:cc:67:be:76:42:12:13:2d:73:38:3a:f6:06:d0:
c3:41:70:e1:ae:1b:1a:c6:03:1b:da:cc:80:c8:15:
25:9f:7e:79:a7:5b:f1:d9:06:21:2c:c0:8d:18:af:
40:ce:c4:23:ad:85:f3:25:28:00:93:b2:ab:64:fb:
4e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F1:80:C8:8E:D1:A1:EB:08:C2:61:0E:12:2C:77:21:E0:37:1F:E4
X509v3 Authority Key Identifier:
keyid:5E:E0:4B:7F:8C:A0:D2:C5:B6:23:9F:41:D3:C7:CC:F7:C5:EE:35:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369974A/9D26BD945B2811F1B1BC5AC6CE1D38B0/XuBLf4yg0sW2I59B08fM98XuNU0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/XuBLf4yg0sW2I59B08fM98XuNU0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369974A/9D26BD945B2811F1B1BC5AC6CE1D38B0/975437D25B3911F18053D3A9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.73.128.0/22
Signature Algorithm: sha256WithRSAEncryption
21:b4:50:1a:ae:80:c1:cb:71:06:88:5d:0d:9e:d8:6c:a1:16:
6d:87:78:93:92:d4:94:50:5d:09:08:4d:3d:79:54:6f:5b:b5:
99:49:bc:79:68:ff:a8:24:a9:5e:9c:0e:f6:34:18:fb:44:99:
01:a2:87:2f:92:a6:57:d8:35:d5:c8:55:55:48:95:36:8a:4a:
90:a3:ac:bf:10:45:8c:a9:4f:b2:6c:b1:c6:1d:70:b1:2e:e2:
5b:16:f8:8c:25:4a:27:d0:3c:f2:49:4d:53:2f:8b:f2:a4:31:
26:9b:91:7c:16:17:db:13:db:cc:56:ea:40:77:7d:a7:2b:b1:
e9:48:48:72:7d:5a:3d:72:9c:7a:6a:51:34:71:2f:75:b7:3b:
9e:c4:f6:cd:54:0d:a6:91:6f:62:3f:88:ec:2a:6a:62:ec:49:
e6:d6:e8:b2:7d:c1:e1:36:1a:28:14:ab:a0:fb:c5:4e:0f:1c:
d3:6c:48:d6:fa:0a:71:13:8b:98:d8:4c:3c:a6:7e:1a:59:b1:
12:84:e4:ad:7c:4c:68:a1:6f:4f:81:c8:38:9e:f8:8c:de:62:
a1:82:0b:02:4d:83:75:42:63:17:64:d9:aa:f9:50:ee:60:bb:
b2:89:e5:66:13:bd:6b:47:26:1e:ad:90:67:72:c2:3b:7b:26:
9b:36:4b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:27:30 2026 by rpki-client