Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/263D35062A9411F1B400468FDAE4EC9C.roa
File: 263D35062A9411F1B400468FDAE4EC9C.roa (raw, json)
Hash identifier: X5nhziUZQ7kaohMRcOhkmrMtuw2qTjvjQ9nsJgKY83w=
Subject key identifier: 77:FD:F3:38:F1:00:46:D4:71:D4:C5:97:F7:A9:6F:CD:FC:67:6F:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A7E3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/263D35062A9411F1B400468FDAE4EC9C.roa
Signing time: Sat 28 Mar 2026 10:52:02 +0000
ROA not before: Sat 28 Mar 2026 10:51:56 +0000
ROA not after: Sat 25 Apr 2026 10:51:56 +0000
asID: 271355
IP address blocks: 156.236.224.0/24 maxlen: 24
156.236.230.0/24 maxlen: 24
156.236.231.0/24 maxlen: 24
156.236.232.0/24 maxlen: 24
156.236.233.0/24 maxlen: 24
156.236.234.0/24 maxlen: 24
156.236.235.0/24 maxlen: 24
156.236.236.0/24 maxlen: 24
156.236.237.0/24 maxlen: 24
156.236.238.0/24 maxlen: 24
156.236.241.0/24 maxlen: 24
156.236.242.0/24 maxlen: 24
156.236.243.0/24 maxlen: 24
156.236.244.0/24 maxlen: 24
156.236.245.0/24 maxlen: 24
156.236.246.0/24 maxlen: 24
156.236.247.0/24 maxlen: 24
156.236.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108515 (0x1a7e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 10:51:56 2026 GMT
Not After : Apr 25 10:51:56 2026 GMT
Subject: CN=69c7b2d1-16cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c6:3a:36:f4:75:f0:ff:20:38:d1:16:48:2b:
91:25:f8:d6:76:e4:1f:7a:32:1c:d4:d0:52:51:11:
51:36:e5:a4:f7:3b:a3:c9:47:98:12:f9:77:19:20:
d5:25:16:d6:32:9a:9c:53:03:46:59:ff:8e:3d:06:
3e:da:62:66:b2:1d:90:1b:3d:2b:4c:b6:05:53:a4:
76:a8:12:9f:02:78:e6:da:5e:43:ef:56:af:e7:28:
ca:e0:32:df:7c:06:54:e1:a8:14:e0:ae:76:14:8c:
74:ea:2b:ea:6b:69:48:81:99:ed:87:3a:47:e8:dc:
24:d3:68:9f:9c:23:b4:eb:4c:31:c1:79:51:5b:2e:
5a:f7:c2:ec:86:9e:73:04:d7:76:ac:39:41:48:66:
f0:c7:bb:7d:35:6a:7d:e6:90:57:73:ab:b8:85:5d:
95:16:99:7c:91:26:fb:de:4a:91:65:96:f4:83:f5:
c1:ad:d1:00:69:8e:08:49:e3:18:a6:8b:fd:c8:a3:
b3:ed:0a:64:6a:92:31:70:94:37:a3:8f:6c:80:42:
dc:00:c6:03:79:d2:97:52:41:bf:f2:4a:5c:88:ec:
2e:ff:11:94:ac:0a:ec:27:bb:6b:44:00:9e:d7:e5:
73:2a:dd:b1:0a:20:af:f3:7d:9d:30:35:04:4b:b5:
f7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FD:F3:38:F1:00:46:D4:71:D4:C5:97:F7:A9:6F:CD:FC:67:6F:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/263D35062A9411F1B400468FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.224.0/24
156.236.230.0-156.236.238.255
156.236.241.0-156.236.248.255
Signature Algorithm: sha256WithRSAEncryption
3d:1f:aa:28:51:48:15:3c:3a:51:ee:b6:dd:d9:a8:f9:15:47:
7c:e4:8c:3e:ae:80:2b:5f:2c:97:86:ae:ad:c1:40:36:ea:78:
31:5d:5d:84:ca:ed:8f:d3:98:4b:9a:a4:c9:2c:8c:00:19:eb:
33:73:4b:02:58:bd:26:e6:c8:e5:9e:eb:cc:7d:39:56:f7:b1:
8e:04:e7:56:95:83:ad:7d:23:f7:76:18:76:48:41:36:5a:3d:
7d:93:97:b3:48:f4:b3:51:a7:13:16:59:ef:f0:a0:b2:e6:76:
ba:22:7f:0e:6a:59:c1:c3:a9:3b:7b:2b:e1:5c:0d:29:22:1e:
19:59:72:33:5c:a9:08:2e:3d:67:2c:15:41:c0:44:03:8f:5d:
c5:7e:64:a2:03:05:c6:ec:fc:44:91:e2:a4:05:ee:52:86:4d:
21:cd:34:3f:3a:ff:c8:b0:67:c5:e9:5c:5a:65:a1:22:1e:ee:
60:d7:92:b9:da:20:73:28:de:af:2d:6d:ec:a3:83:8a:87:bc:
77:69:ef:d5:1a:b6:3d:72:a0:ed:f6:09:29:c4:38:79:70:51:
a1:b8:04:4e:38:26:1c:55:db:cb:1d:dc:d6:56:57:75:24:63:
6d:33:5d:77:55:02:a6:1d:f2:47:3a:71:ad:6b:ad:30:f9:d3:
fd:c4:a3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 02:25:31 2026 by rpki-client