Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35F495AC059111F1A2C6C5CADAE4EC9C.roa
File: 35F495AC059111F1A2C6C5CADAE4EC9C.roa (raw, json)
Hash identifier: QxHn901NGCTesYMe2CEnpEJiiBj8Rug8UjHbOvpTAn0=
Subject key identifier: 7C:F6:84:AE:E8:0D:98:10:63:0C:64:27:ED:1E:29:8B:99:AE:44:40
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019C61
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35F495AC059111F1A2C6C5CADAE4EC9C.roa
Signing time: Mon 09 Feb 2026 08:27:46 +0000
ROA not before: Mon 09 Feb 2026 08:27:40 +0000
ROA not after: Tue 10 Mar 2026 08:27:40 +0000
asID: 141159
IP address blocks: 156.233.224.0/24 maxlen: 24
156.233.225.0/24 maxlen: 24
156.233.230.0/24 maxlen: 24
156.233.231.0/24 maxlen: 24
156.233.236.0/22 maxlen: 24
156.233.236.0/24 maxlen: 24
156.233.237.0/24 maxlen: 24
156.233.238.0/24 maxlen: 24
156.233.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105569 (0x19c61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 9 08:27:40 2026 GMT
Not After : Mar 10 08:27:40 2026 GMT
Subject: CN=69899a82-cdbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:d6:8e:42:78:2c:7f:a0:54:fb:ff:16:cf:
f8:80:23:bc:38:5e:cd:51:20:93:47:9a:17:81:97:
c3:7c:25:01:92:f4:34:3b:b9:92:ac:7d:20:38:97:
66:6d:21:fe:14:7c:b1:d0:4a:d7:a1:30:99:0b:e4:
eb:b3:29:7c:0e:64:b5:e6:fd:1a:28:10:01:d9:1d:
3e:14:07:08:49:06:99:7a:77:94:3e:07:72:73:69:
24:2d:08:62:9b:d2:ae:b7:4e:eb:2a:17:2b:e8:7f:
e2:a9:4c:2f:8b:94:55:1b:ce:0f:db:48:f6:af:da:
72:29:5d:43:1b:08:10:81:0d:40:34:61:0a:1c:2b:
c0:b2:04:24:fb:e2:93:c9:d3:dc:5d:e9:45:0c:69:
8d:a0:32:f7:45:ea:d4:0f:5b:4b:09:f7:68:b3:f7:
16:31:16:7f:d1:3a:2c:2e:57:18:4c:0d:29:f2:de:
77:97:99:b4:4d:39:d6:d7:65:8e:05:1a:c9:2e:a5:
b1:fe:a0:4c:d5:9f:63:63:ab:5e:41:89:2c:52:c8:
f0:e2:f0:d4:db:ad:a2:4e:a9:19:7c:52:0c:c2:8c:
49:a9:b9:5a:1a:7c:18:4a:e1:72:3a:1a:41:9f:cd:
15:18:f2:75:2d:e7:47:7e:04:6f:cb:9f:a2:39:ab:
5a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F6:84:AE:E8:0D:98:10:63:0C:64:27:ED:1E:29:8B:99:AE:44:40
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35F495AC059111F1A2C6C5CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/23
156.233.230.0/23
156.233.236.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:47:86:f3:77:fd:2c:db:d5:89:67:69:f5:18:ef:3f:76:4d:
f0:84:fa:ae:83:ab:36:89:f4:dd:db:ae:05:b1:0b:1a:d1:5f:
60:1a:2f:27:62:dc:c8:cd:d0:c9:14:29:9c:18:38:75:c9:e0:
49:19:cd:d9:67:cd:1f:f4:a2:ab:df:f6:7d:ca:27:8c:27:62:
4f:1f:69:5e:73:b6:fe:23:c3:9f:d3:1e:5a:da:6f:88:8d:75:
bc:72:98:bc:81:4a:cf:c9:51:bb:d8:bf:4d:03:7d:5c:4e:e2:
55:92:28:75:02:07:9b:1a:84:c5:13:0d:5d:df:71:b9:11:81:
a4:3a:ab:e9:dc:23:9c:e8:06:b5:51:c0:1d:a4:09:a3:ac:0e:
9d:03:89:8c:e4:60:7e:49:67:f0:81:48:e0:1a:e0:aa:ae:e6:
26:96:e6:38:6f:2c:1c:0c:af:3b:0a:0e:d3:b3:98:0c:7d:3c:
21:91:05:84:54:53:1c:7f:d5:a2:c4:b4:c8:19:e9:6b:81:64:
1f:88:47:18:fe:9b:8c:63:98:67:2b:fb:88:0e:c1:6d:67:01:
45:73:28:f4:73:d0:16:8e:81:32:86:80:2d:76:30:88:54:db:
33:9a:8b:55:43:61:97:1d:7c:24:4b:31:3d:16:99:3d:e8:92:
c6:db:3f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:05 2026 by rpki-client