Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DD6312A341B11F1BCC925C7CE1D38B0.roa
File: 1DD6312A341B11F1BCC925C7CE1D38B0.roa (raw, json)
Hash identifier: eOkZ3UVgLFU51vytAVFBOIDPirj/Ws2THJVA0Bsh+LI=
Subject key identifier: 17:E4:C6:32:5D:EF:08:0F:65:B2:12:65:39:B4:F0:40:CA:6A:C1:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB65
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DD6312A341B11F1BCC925C7CE1D38B0.roa
Signing time: Thu 09 Apr 2026 13:50:50 +0000
ROA not before: Thu 09 Apr 2026 13:50:45 +0000
ROA not after: Sun 19 Apr 2026 13:50:45 +0000
asID: 401783
IP address blocks: 156.231.63.0/24 maxlen: 24
156.231.106.0/24 maxlen: 24
156.231.128.0/24 maxlen: 24
156.231.129.0/24 maxlen: 24
156.231.133.0/24 maxlen: 24
156.233.66.0/24 maxlen: 24
156.249.133.0/24 maxlen: 24
156.249.153.0/24 maxlen: 24
156.249.154.0/24 maxlen: 24
156.249.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 13:50:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109413 (0x1ab65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 13:50:45 2026 GMT
Not After : Apr 19 13:50:45 2026 GMT
Subject: CN=69d7aeba-f211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:40:58:a7:c7:ff:95:49:a9:2b:f5:78:28:
51:b2:ff:e2:4a:83:b4:70:e6:a2:10:a1:e9:e6:f3:
ea:3d:65:46:d1:1d:11:70:21:26:6d:e9:0f:b4:fd:
b0:6d:88:a5:ef:28:6f:45:15:2c:80:e5:2d:73:5e:
35:64:97:97:16:58:d8:4f:6a:60:7b:a7:9c:7b:2c:
1d:7d:06:cb:04:37:91:76:fd:37:06:92:a0:3c:9b:
e7:99:b1:81:b9:b9:1f:82:17:3b:44:46:84:8c:d3:
2d:bf:c4:40:c3:87:73:f9:f6:eb:09:d6:92:84:6d:
75:18:e3:8b:c0:6b:41:bc:f6:f7:9f:07:3d:a6:55:
1a:dd:e0:ec:f3:ad:c2:bf:ca:bc:69:e6:2c:bb:03:
44:ca:e6:6c:d6:23:8f:a9:c5:d0:a2:22:5f:cb:a4:
6a:6b:59:fd:84:43:95:30:56:34:31:0d:e9:d5:9f:
68:3e:0d:28:a6:9d:cc:d7:3f:d4:95:78:d2:24:c5:
b7:41:10:5e:6e:94:6e:d0:bf:f4:6c:c3:ae:f0:c4:
14:88:dd:4b:e2:b6:8e:00:34:08:af:76:fd:fc:4b:
d4:07:d1:39:70:f5:47:bc:29:eb:ed:ea:1c:71:a8:
ac:9a:6e:22:ad:d9:5f:5d:4e:81:cc:57:a1:47:00:
43:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E4:C6:32:5D:EF:08:0F:65:B2:12:65:39:B4:F0:40:CA:6A:C1:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DD6312A341B11F1BCC925C7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.63.0/24
156.231.106.0/24
156.231.128.0/23
156.231.133.0/24
156.233.66.0/24
156.249.133.0/24
156.249.153.0-156.249.154.255
156.249.162.0/24
Signature Algorithm: sha256WithRSAEncryption
58:eb:9f:d5:2c:00:ef:b9:2d:4a:84:8b:7f:75:27:b3:0f:01:
fc:a8:ea:5e:73:1d:9c:43:38:ea:2a:32:83:d0:9e:ed:5f:bf:
f5:a4:b8:87:35:49:ff:c7:79:2d:70:62:03:05:e2:81:df:4a:
2a:53:df:78:20:df:2a:1f:58:b9:cb:38:44:9e:94:09:a5:22:
6a:de:c0:78:01:51:56:40:e4:04:75:80:77:45:a6:40:44:11:
5f:28:7f:37:68:e6:25:fd:38:8a:36:fa:fd:39:56:f5:69:5e:
a0:8e:8b:c7:07:f3:10:6d:47:97:c7:2e:84:e6:92:d7:57:57:
e9:5b:69:15:5e:9e:f7:2b:6c:f9:34:9b:a7:c2:75:68:18:bf:
19:d3:c7:54:9c:b6:28:11:9e:b9:c5:92:0a:8d:4a:d5:ae:67:
90:d2:4a:43:78:06:cb:b5:11:94:71:64:39:20:a6:61:88:bf:
65:b4:0e:f0:0d:99:42:d9:ca:5d:60:10:b1:80:13:47:69:66:
fd:a3:46:9f:70:b1:2e:4d:c7:4e:f1:f9:17:f8:88:55:f3:75:
24:68:7c:4d:3e:b3:ad:4a:cb:e0:d9:d4:2d:dc:b5:9d:47:45:
78:99:5f:61:1a:76:c7:4c:ac:3d:54:9b:87:b0:58:af:33:c7:
fc:a1:ca:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:26:11 2026 by rpki-client