Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B7637BC341A11F19736ECBFCE1D38B0.roa
File: 3B7637BC341A11F19736ECBFCE1D38B0.roa (raw, json)
Hash identifier: yZORMhFfZYpHSS9skiSjUMpvjt28mjop903jRkxqEx8=
Subject key identifier: D8:DE:27:7D:11:7D:54:32:94:41:7D:E1:8D:B5:F0:EB:81:EC:53:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB63
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B7637BC341A11F19736ECBFCE1D38B0.roa
Signing time: Thu 09 Apr 2026 13:44:30 +0000
ROA not before: Thu 09 Apr 2026 13:44:25 +0000
ROA not after: Sun 19 Apr 2026 13:44:25 +0000
asID: 401783
IP address blocks: 156.227.132.0/24 maxlen: 24
156.227.136.0/24 maxlen: 24
156.227.139.0/24 maxlen: 24
156.227.140.0/24 maxlen: 24
156.227.159.0/24 maxlen: 24
156.231.4.0/24 maxlen: 24
156.231.5.0/24 maxlen: 24
156.231.6.0/24 maxlen: 24
156.231.8.0/24 maxlen: 24
156.231.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 13:44:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109411 (0x1ab63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 13:44:25 2026 GMT
Not After : Apr 19 13:44:25 2026 GMT
Subject: CN=69d7ad3e-3c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b7:d8:0b:47:2c:37:59:58:5d:c1:4e:a0:6b:
41:e7:e8:ad:b3:05:43:03:b6:38:3b:a2:1e:a3:5b:
0a:c4:8f:54:50:fc:f5:3b:df:3f:ac:9f:e3:cd:c4:
7a:a0:29:a4:0d:33:c2:42:48:2c:1b:0b:cc:22:83:
46:da:f8:27:00:25:47:27:18:54:d2:d1:d3:43:59:
c2:81:4b:27:f5:a2:54:a2:a8:e9:21:27:14:78:69:
12:a0:59:de:d3:05:64:2f:cd:c8:ac:52:e9:eb:e8:
11:17:e9:ec:6c:61:65:31:43:aa:fb:3d:76:53:6d:
c8:f2:60:82:44:e2:54:53:cb:da:19:c0:e0:93:5e:
3f:46:e0:12:fa:10:ff:52:f8:74:6c:b0:58:c2:7e:
e4:d1:58:5d:25:f3:58:9b:39:4a:6b:e0:1d:58:46:
07:12:b8:79:ab:eb:ae:94:5f:fd:88:91:eb:35:fd:
a2:f0:b3:2a:b9:00:d0:d7:9d:e5:7a:68:9e:6c:9e:
3b:f8:5a:ba:08:59:35:93:86:e1:7a:76:f8:9f:23:
e4:d6:62:86:87:3c:b7:db:f1:88:02:69:ac:6e:22:
a4:83:e6:cc:78:33:3c:92:c6:71:e4:ce:95:da:f4:
35:e7:e2:b6:fc:8f:76:77:b3:ba:65:dd:e6:c2:12:
a2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DE:27:7D:11:7D:54:32:94:41:7D:E1:8D:B5:F0:EB:81:EC:53:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B7637BC341A11F19736ECBFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.132.0/24
156.227.136.0/24
156.227.139.0-156.227.140.255
156.227.159.0/24
156.231.4.0-156.231.6.255
156.231.8.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:67:20:78:08:95:2f:68:19:c4:f7:79:5f:2b:bc:1f:ea:f3:
8d:00:9b:f4:2c:40:9f:94:df:07:e2:55:3f:13:f2:b8:35:ca:
17:83:1c:ae:3e:73:46:cc:fa:00:f1:00:c9:48:02:d1:fd:11:
03:c5:8f:d4:51:f8:17:40:a3:43:88:f4:8d:0f:1f:d2:0f:18:
d9:36:9e:8e:f3:df:65:b4:5c:c0:6f:0d:6a:e2:11:53:dd:3a:
42:02:dc:8e:22:a4:80:4f:a9:73:14:89:47:52:17:c1:37:2a:
37:47:6e:5a:2b:8b:2c:7e:69:bb:a6:23:66:39:5a:1c:5d:15:
c9:5b:cf:52:bb:c1:62:7a:b6:a9:6e:55:50:b1:57:ed:12:0e:
a8:5c:ee:af:09:f8:ec:16:f7:c7:88:31:17:5c:57:93:a7:a9:
b9:df:b6:de:81:ac:fa:72:8a:e8:a9:87:d9:d7:05:bf:8b:e7:
71:d8:66:c5:d4:28:81:2f:e9:75:48:69:9b:dd:15:49:76:8b:
ae:17:2c:9b:e0:56:d8:76:f5:70:a2:ff:48:31:58:9b:5c:f5:
03:33:fa:41:c4:1a:0c:1f:a3:0e:16:d7:b3:ae:d2:f7:4d:1b:
22:82:d7:8d:b9:57:c1:05:e7:59:ce:3d:da:3b:4e:cd:1e:b9:
cb:4e:a8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:47:42 2026 by rpki-client