Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6405CE155511F1831543A5DAE4EC9C.roa
File: 2E6405CE155511F1831543A5DAE4EC9C.roa (raw, json)
Hash identifier: tPkL82tDIRDjwKrEv9gjg2mJLm38oUiN+JVZhqP91w8=
Subject key identifier: 2A:2D:AF:F1:DF:D8:0A:43:BF:6C:FD:10:05:27:0D:4E:C4:4B:1B:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A17C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6405CE155511F1831543A5DAE4EC9C.roa
Signing time: Sun 01 Mar 2026 09:58:22 +0000
ROA not before: Sun 01 Mar 2026 09:58:18 +0000
ROA not after: Wed 08 Apr 2026 09:58:18 +0000
asID: 48031
IP address blocks: 156.236.22.0/24 maxlen: 24
156.236.23.0/24 maxlen: 24
156.254.97.0/24 maxlen: 24
156.254.98.0/24 maxlen: 24
156.254.99.0/24 maxlen: 24
156.254.100.0/24 maxlen: 24
156.254.101.0/24 maxlen: 24
156.254.102.0/24 maxlen: 24
156.254.103.0/24 maxlen: 24
156.254.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106876 (0x1a17c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 1 09:58:18 2026 GMT
Not After : Apr 8 09:58:18 2026 GMT
Subject: CN=69a40dbe-a448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:54:9d:6a:d3:20:45:bd:e3:32:b5:49:d8:45:
d6:cb:aa:10:aa:96:21:93:f3:e4:d1:72:d9:73:52:
95:37:6d:90:41:38:25:36:c6:0b:ac:b5:83:bb:45:
d8:c1:1c:5c:c7:d4:60:b1:41:e5:75:77:65:d5:3a:
b8:e7:80:9d:35:3b:2c:5f:df:82:d4:37:ba:3c:cd:
5f:60:82:6a:ef:7b:31:f6:fc:3a:29:18:18:7c:bb:
af:a1:a6:52:ae:82:46:57:c3:cc:be:e0:69:99:69:
20:1e:a2:3c:33:d0:9a:1e:b4:ba:b9:44:4f:26:0f:
6d:ff:b6:36:d8:ee:38:3c:62:b2:96:61:8c:2f:62:
2b:b8:31:fe:c5:dd:c8:0c:b3:38:07:c9:b6:a7:4c:
6d:20:62:84:0d:92:8f:49:ba:76:88:07:49:36:05:
5d:60:3b:bc:2c:8a:c1:39:f4:9b:a3:7c:c4:dd:0b:
92:08:61:26:cb:d4:2b:55:5a:e5:e0:71:75:41:85:
5f:75:a8:c1:41:33:9a:0c:d2:df:b6:56:23:1f:bb:
26:ef:94:75:a9:05:47:86:bf:94:dc:8c:e1:df:41:
78:75:65:67:5a:01:ae:5f:97:fc:61:3c:31:98:7d:
fb:b9:2a:04:4e:a3:ad:d6:73:09:e9:ff:96:96:a9:
e8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2D:AF:F1:DF:D8:0A:43:BF:6C:FD:10:05:27:0D:4E:C4:4B:1B:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6405CE155511F1831543A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.22.0/23
156.254.97.0-156.254.104.255
Signature Algorithm: sha256WithRSAEncryption
9b:fb:6c:b3:81:af:96:51:07:bf:a7:a3:a7:ea:82:d6:1d:83:
e1:09:8b:3e:be:47:be:e0:b3:54:34:aa:26:6d:da:0b:74:d3:
66:99:c8:28:6e:bc:04:60:61:5e:6e:7f:59:04:da:68:69:c3:
55:14:97:8f:f8:90:d6:f5:cc:ed:0e:51:fb:3e:5a:30:3b:00:
fe:6f:e4:4e:8d:b1:a5:24:f7:a2:2c:47:42:cf:d1:ba:86:fa:
6f:5c:47:8c:5a:9c:cd:f2:1e:f9:8f:97:1b:32:9b:db:51:5d:
48:7d:22:53:23:5d:96:ce:3e:46:83:b9:0e:37:51:e3:a6:31:
11:50:a9:52:90:a2:38:2e:d8:50:14:27:9a:ad:99:79:b9:24:
9c:21:d0:6c:5b:0b:43:4b:d3:86:6d:be:a6:bd:66:68:a9:72:
09:a6:28:8e:4f:72:9d:fc:f3:4d:30:56:54:dd:79:4a:2c:f5:
0b:4d:60:5a:55:8d:69:11:ab:2b:bf:23:c8:45:09:a2:d7:f3:
11:98:8f:42:e5:f6:66:b4:2a:d5:28:ce:e3:42:56:df:5e:7c:
c9:7b:93:4b:65:da:46:5b:38:14:3f:fb:64:1d:03:7f:e7:2a:
85:6b:de:72:3c:6f:05:cc:5a:ce:07:16:9e:a6:6d:f9:16:6b:
93:65:bc:db
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgIDAaF8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzAxMDk1ODE4WhcNMjYwNDA4MDk1ODE4WjAYMRYw
FAYDVQQDEw02OWE0MGRiZS1hNDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8FSdatMgRb3jMrVJ2EXWy6oQqpYhk/Pk0XLZc1KVN22QQTglNsYLrLWD
u0XYwRxcx9RgsUHldXdl1Tq454CdNTssX9+C1De6PM1fYIJq73sx9vw6KRgYfLuv
oaZSroJGV8PMvuBpmWkgHqI8M9CaHrS6uURPJg9t/7Y22O44PGKylmGML2IruDH+
xd3IDLM4B8m2p0xtIGKEDZKPSbp2iAdJNgVdYDu8LIrBOfSbo3zE3QuSCGEmy9Qr
VVrl4HF1QYVfdajBQTOaDNLftlYjH7sm75R1qQVHhr+U3Izh30F4dWVnWgGuX5f8
YTwxmH37uSoETqOt1nMJ6f+Wlqno8QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFCot
r/Hf2ApDv2z9EAUnDU7ESxswMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yRTY0MDVDRTE1NTUxMUYxODMxNTQzQTVEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQBnOwWMAwDBACc/mEDBACc/mgw
DQYJKoZIhvcNAQELBQADggEBAJv7bLOBr5ZRB7+no6fqgtYdg+EJiz6+R77gs1Q0
qiZt2gt002aZyChuvARgYV5uf1kE2mhpw1UUl4/4kNb1zO0OUfs+WjA7AP5v5E6N
saUk96IsR0LP0bqG+m9cR4xanM3yHvmPlxsym9tRXUh9IlMjXZbOPkaDuQ43UeOm
MRFQqVKQojgu2FAUJ5qtmXm5JJwh0GxbC0NL04Ztvqa9ZmipcgmmKI5Pcp38800w
VlTdeUos9QtNYFpVjWkRqyu/I8hFCaLX8xGYj0Ll9ma0KtUozuNCVt9efMl7k0tl
2kZbOBQ/+2QdA3/nKoVr3nI8bwXMWs4HFp6mbfkWa5NlvNs=
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:56:21 2026 by rpki-client