Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/7322325A60B211F1A94AA0EFCE1D38B0.roa
File: 7322325A60B211F1A94AA0EFCE1D38B0.roa (raw, json)
Hash identifier: DkUrhY6mM2jhhT/wIQ7n53CMBa8i3Sa+6z/2TT6AAqk=
Subject key identifier: 26:1D:5C:FE:45:93:D6:00:3D:48:90:DF:64:97:C9:73:5C:63:0A:EB
Certificate issuer: /CN=F36A2303AR/serialNumber=AF035FC490695DAFB796F9C7375F738A3112FC3B
Certificate serial: 0945
Authority key identifier: AF:03:5F:C4:90:69:5D:AF:B7:96:F9:C7:37:5F:73:8A:31:12:FC:3B
Authority info access: rsync://rpki.afrinic.net/repository/arin/rwNfxJBpXa-3lvnHN19zijES_Ds.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/7322325A60B211F1A94AA0EFCE1D38B0.roa
Signing time: Fri 05 Jun 2026 07:44:58 +0000
ROA not before: Fri 05 Jun 2026 07:44:42 +0000
ROA not after: Thu 05 Jun 2036 07:44:42 +0000
asID: 328631
IP address blocks: 156.0.236.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/rwNfxJBpXa-3lvnHN19zijES_Ds.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/rwNfxJBpXa-3lvnHN19zijES_Ds.mft
rsync://rpki.afrinic.net/repository/arin/rwNfxJBpXa-3lvnHN19zijES_Ds.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2373 (0x945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2303AR, serialNumber=AF035FC490695DAFB796F9C7375F738A3112FC3B
Validity
Not Before: Jun 5 07:44:42 2026 GMT
Not After : Jun 5 07:44:42 2036 GMT
Subject: CN=6a227e7a-8743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:48:c1:1f:5f:4a:eb:5f:de:37:82:a3:af:84:
92:03:6a:6b:af:82:64:ad:df:25:86:22:f3:91:ee:
0f:ad:56:d9:96:0e:ad:df:10:5f:33:34:3e:24:0e:
4a:af:e6:1d:fe:1c:fe:3d:f1:8d:e9:33:7a:6b:a1:
37:bd:12:4c:45:16:f5:7f:9f:b5:d7:a7:4d:17:77:
b8:be:2c:dd:08:24:31:1d:94:f2:38:1e:45:66:83:
b6:00:d1:25:7b:e1:56:73:f7:91:74:61:01:3c:10:
2b:4c:0b:9e:71:8b:f4:9a:56:53:82:3f:17:ff:9e:
31:ef:85:bf:fd:f6:3b:b3:9f:06:b6:38:cc:b8:04:
05:0a:69:f9:f6:07:b1:90:13:0c:a7:84:7a:0b:bd:
31:b0:b6:00:e4:77:dd:73:43:91:99:73:a2:ea:82:
16:1e:e8:e6:ca:9e:23:94:1b:3b:19:3d:8a:1e:9a:
a5:08:ba:61:97:64:ba:65:7d:4c:fd:46:8b:49:30:
bb:2b:b9:2a:29:30:b4:b8:8e:78:b7:7b:40:da:c0:
fd:38:8e:42:f2:4c:1c:a5:9f:9e:a8:1e:b5:b2:56:
96:7c:f2:3a:92:42:14:7c:d6:93:e7:3c:15:1e:d2:
ab:89:55:26:f7:0a:97:43:ad:ea:87:c1:e4:9b:76:
a9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:1D:5C:FE:45:93:D6:00:3D:48:90:DF:64:97:C9:73:5C:63:0A:EB
X509v3 Authority Key Identifier:
keyid:AF:03:5F:C4:90:69:5D:AF:B7:96:F9:C7:37:5F:73:8A:31:12:FC:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/rwNfxJBpXa-3lvnHN19zijES_Ds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/rwNfxJBpXa-3lvnHN19zijES_Ds.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/7322325A60B211F1A94AA0EFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.236.0/22
Signature Algorithm: sha256WithRSAEncryption
13:59:02:14:98:86:2f:9d:81:5b:c5:9b:bf:dd:bf:31:a3:f5:
79:c0:06:e7:d0:5c:f3:cc:48:ac:9c:27:f8:82:e3:ac:cc:7e:
fa:15:fc:cd:e9:be:43:ae:a3:fd:82:14:64:79:19:45:7f:1b:
1e:9b:20:1f:96:bd:c8:ac:42:cf:55:85:8b:44:9a:98:0d:00:
cc:0b:5b:5d:21:f5:2b:a4:73:c5:5c:a6:f5:01:97:9d:dd:25:
80:0d:35:1c:32:4e:86:94:b8:24:1c:2a:af:ba:75:b6:62:e3:
3f:18:6a:2c:2b:1c:a6:38:42:7c:06:e0:19:15:66:2d:4b:60:
04:fe:df:2a:fb:a6:c7:25:26:43:a9:7a:bd:13:cf:82:e4:ea:
6b:7e:e3:3a:63:2e:9b:6f:1e:e5:32:75:59:2a:68:f5:f5:37:
f5:63:3c:37:f2:e6:5d:9f:d1:d8:9e:31:92:9b:c6:76:ab:e6:
0d:02:b8:34:a3:b2:a7:88:30:bb:4f:b8:41:8a:58:ae:19:67:
dc:40:16:46:93:66:d1:b5:f2:9c:d0:05:81:c1:27:20:22:74:
b5:af:47:8b:c4:2f:e9:00:94:06:be:38:ad:8c:70:2f:5a:de:
99:d2:a2:9a:f9:f0:a4:2f:9d:92:f7:16:e3:e9:f9:0a:dc:74:
71:ff:af:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:26:37 2026 by rpki-client