Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E5975A64C111F1A41A5315CF1D38B0.roa
File: 41E5975A64C111F1A41A5315CF1D38B0.roa (raw, json)
Hash identifier: Zj4aeqXas7o9DaBAMQKoXy+u+PI0MNRZNBJHI3lCE9o=
Subject key identifier: 67:19:78:E6:9F:B6:B1:2F:D1:2D:68:A7:16:49:9A:A1:92:25:1F:6D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BCBC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E5975A64C111F1A41A5315CF1D38B0.roa
Signing time: Wed 10 Jun 2026 11:41:03 +0000
ROA not before: Wed 10 Jun 2026 11:40:58 +0000
ROA not after: Thu 16 Jul 2026 11:40:58 +0000
asID: 22773
IP address blocks: 156.238.142.0/24 maxlen: 24
156.238.143.0/24 maxlen: 24
156.238.145.0/24 maxlen: 24
156.238.146.0/24 maxlen: 24
156.238.147.0/24 maxlen: 24
156.238.148.0/24 maxlen: 24
156.238.149.0/24 maxlen: 24
156.238.150.0/24 maxlen: 24
156.238.151.0/24 maxlen: 24
156.238.152.0/24 maxlen: 24
156.238.189.0/24 maxlen: 24
156.239.56.0/24 maxlen: 24
156.242.0.0/24 maxlen: 24
156.242.1.0/24 maxlen: 24
156.242.23.0/24 maxlen: 24
156.242.28.0/24 maxlen: 24
156.242.29.0/24 maxlen: 24
156.242.30.0/24 maxlen: 24
156.242.31.0/24 maxlen: 24
156.242.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113852 (0x1bcbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 10 11:40:58 2026 GMT
Not After : Jul 16 11:40:58 2026 GMT
Subject: CN=6a294d4e-5019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fe:59:59:ce:b9:50:9f:b0:83:c0:09:df:3c:
18:35:ae:52:32:f3:37:64:59:a4:9b:f8:9c:d8:b2:
dd:d9:1c:a0:d1:7a:0c:c0:c1:e9:38:82:2f:99:9e:
3a:7e:7e:39:b5:a4:41:9f:33:2f:23:9d:ee:eb:bf:
20:85:92:30:c8:64:99:b7:09:07:2d:75:3d:9e:b3:
39:62:7c:a2:16:b8:09:99:2b:1e:c2:fd:7a:4d:8c:
d6:4e:15:5a:1d:61:31:3c:7f:c0:54:e0:ed:ea:67:
1f:99:82:f6:89:ac:57:2a:a1:69:cd:9c:a8:76:28:
60:13:7b:4a:6d:85:89:1d:40:a0:43:f1:8a:03:74:
a7:8c:88:fc:a5:b8:a4:fb:4e:03:b1:ed:0d:3d:e7:
5f:a0:af:5c:56:98:76:77:a7:84:40:06:04:36:48:
72:40:13:d9:df:2b:4e:ec:e6:cd:62:81:44:35:3c:
d5:1c:45:60:6e:38:b1:58:41:97:75:2a:b2:6e:d1:
ee:e0:f1:ef:84:58:1b:c0:84:b6:77:38:fd:b9:31:
35:ad:d2:48:6f:95:40:8d:79:c7:e6:0a:1b:d2:00:
10:00:24:41:89:39:69:a4:bf:88:86:3a:5b:cf:26:
1f:a0:04:29:a2:50:be:b9:c3:f9:e9:b4:9b:90:bb:
d6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:19:78:E6:9F:B6:B1:2F:D1:2D:68:A7:16:49:9A:A1:92:25:1F:6D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E5975A64C111F1A41A5315CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.142.0/23
156.238.145.0-156.238.152.255
156.238.189.0/24
156.239.56.0/24
156.242.0.0/23
156.242.23.0/24
156.242.28.0/22
156.242.48.0/24
Signature Algorithm: sha256WithRSAEncryption
55:71:45:d1:0f:b4:be:81:49:c2:de:e7:54:a6:17:93:05:9a:
c4:56:a3:4f:58:bf:54:f6:e4:52:c7:5f:33:d3:ac:83:b7:4c:
c5:7a:65:7e:ef:3c:94:0d:30:65:bc:e2:0d:c8:bf:5d:8c:62:
47:b2:76:0e:31:f9:24:53:39:b2:93:65:63:3a:a7:7d:43:fe:
6a:93:46:ac:26:40:dc:d6:07:03:2e:91:da:26:54:84:7b:db:
2f:c5:d3:02:f3:34:4b:48:19:ab:e4:00:49:1b:a3:26:80:fa:
a4:37:29:63:71:a0:09:07:7d:ed:d1:fd:e5:08:3b:9f:70:f4:
e7:4c:55:6c:73:ef:50:51:10:eb:14:1f:90:b8:a3:81:32:95:
d7:7b:52:b0:96:26:9c:cd:2b:55:3b:ca:83:06:20:c0:76:57:
96:e1:78:1a:0c:71:c2:e4:ae:2a:67:d7:67:b3:77:2c:cc:23:
13:64:79:b0:aa:c1:3b:74:bb:e0:f8:eb:8f:0e:97:07:76:44:
75:f9:c3:76:bf:34:04:c1:92:f1:9b:b7:48:b5:4c:c9:15:6b:
ae:34:31:48:f0:11:5f:bc:22:87:f2:39:de:04:3f:5d:38:21:
be:b0:fd:38:f8:4b:6f:14:74:13:8d:ec:cd:62:63:fc:aa:06:
67:04:67:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:26:52 2026 by rpki-client