Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4431A332131D11F1BD807083DAE4EC9C.roa
File: 4431A332131D11F1BD807083DAE4EC9C.roa (raw, json)
Hash identifier: MEE9vn2K6YVwJA0vuj8XgXNUYsJDT4LcDO4nT9qvsaM=
Subject key identifier: FD:16:66:04:AC:AB:81:98:5C:93:D3:40:26:A6:A1:D7:6E:AC:76:AE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A0D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4431A332131D11F1BD807083DAE4EC9C.roa
Signing time: Thu 26 Feb 2026 14:13:06 +0000
ROA not before: Thu 26 Feb 2026 14:13:00 +0000
ROA not after: Thu 26 Mar 2026 14:13:00 +0000
asID: 395793
IP address blocks: 156.230.159.0/24 maxlen: 24
156.243.225.0/24 maxlen: 24
156.243.241.0/24 maxlen: 24
156.243.245.0/24 maxlen: 24
156.243.250.0/24 maxlen: 24
156.243.251.0/24 maxlen: 24
156.243.252.0/24 maxlen: 24
156.243.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106707 (0x1a0d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 26 14:13:00 2026 GMT
Not After : Mar 26 14:13:00 2026 GMT
Subject: CN=69a054f1-f19f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a4:91:6d:26:49:6b:e6:b9:bf:0c:e5:42:3b:
31:af:e5:1b:ad:db:48:65:06:80:ce:2f:f4:40:e9:
76:e6:bc:21:b7:8c:0b:d3:9e:f1:ee:67:69:e5:0f:
90:b8:cd:59:de:8f:41:07:08:32:47:c4:1a:60:5b:
6b:22:cd:2b:d0:bf:aa:7f:1a:0c:0e:d3:86:13:56:
9c:04:4a:9f:64:9c:d0:e9:74:9b:8d:a5:fe:08:62:
09:67:b8:b5:de:56:47:53:0f:7f:71:ce:bb:ff:50:
ee:1d:9a:a8:ce:f3:95:55:d4:dd:7e:b2:61:6a:9e:
64:ce:a1:d3:9c:1f:1e:aa:0d:0f:3a:75:2f:a5:69:
df:f8:90:1e:f5:d2:9d:e7:41:15:4e:bc:ee:9c:ed:
4f:07:d4:0d:8a:47:60:de:6a:a5:bc:7d:a3:8f:35:
b1:39:37:88:ac:13:a2:39:cf:ca:7a:eb:aa:17:b2:
97:ee:f3:ee:d0:e8:b9:e5:72:5f:91:c2:14:25:66:
ce:e2:9f:a3:e0:5f:bb:e7:8c:33:2c:6b:8f:37:ab:
b5:c5:cd:b1:b0:99:c5:fb:17:0c:e9:12:1f:ee:e9:
30:2a:71:4e:5a:8b:99:d9:8c:b7:2b:a4:84:84:f3:
3d:cd:f7:de:a7:ac:fa:41:da:d7:52:5b:4a:8c:30:
5b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:16:66:04:AC:AB:81:98:5C:93:D3:40:26:A6:A1:D7:6E:AC:76:AE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4431A332131D11F1BD807083DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.159.0/24
156.243.225.0/24
156.243.241.0/24
156.243.245.0/24
156.243.250.0-156.243.253.255
Signature Algorithm: sha256WithRSAEncryption
95:c9:b5:55:b4:9d:aa:09:79:52:06:c9:2e:d9:5b:e8:99:f1:
28:b8:55:f5:d6:45:52:47:b2:5f:a0:df:89:93:5e:8f:e6:1f:
f2:fc:11:9f:25:e7:23:1c:6a:9d:43:8d:d2:fc:dc:72:80:4a:
e6:bb:cf:ec:32:c4:8d:6d:0b:58:37:76:83:bf:f1:82:0a:a0:
ea:5d:71:e8:1a:da:33:a3:f3:d0:b9:51:36:ba:4e:b7:ed:02:
7c:e6:95:d0:f9:1d:a5:04:f8:81:05:85:5e:59:c7:53:9b:9e:
ba:6b:7e:40:a9:7b:27:ed:ce:f9:2e:fc:09:3d:b7:54:27:9a:
60:92:1d:90:4e:a6:44:51:9f:74:00:c7:66:6c:d4:96:30:c9:
cb:aa:f0:74:ed:5a:03:67:6d:f0:d2:c8:2c:26:be:c1:f1:93:
ae:f3:08:3c:e7:5d:71:6d:81:9c:8e:cf:a6:41:09:88:41:ab:
a6:cd:ed:f8:b7:79:cb:97:4c:66:7c:3b:45:aa:6f:bf:36:8a:
f1:8f:77:ea:41:c5:f8:03:ba:ab:06:af:17:f9:18:6a:96:39:
69:5a:6f:41:e3:a5:62:0d:b5:d8:ec:e8:98:c4:0b:a7:23:5a:
ec:9e:2d:f5:c8:67:d8:96:15:a7:e3:db:40:3b:87:41:39:2a:
ef:0e:26:8a
-----BEGIN CERTIFICATE-----
MIIFoTCCBImgAwIBAgIDAaDTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjI2MTQxMzAwWhcNMjYwMzI2MTQxMzAwWjAYMRYw
FAYDVQQDEw02OWEwNTRmMS1mMTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzqSRbSZJa+a5vwzlQjsxr+UbrdtIZQaAzi/0QOl25rwht4wL057x7mdp
5Q+QuM1Z3o9BBwgyR8QaYFtrIs0r0L+qfxoMDtOGE1acBEqfZJzQ6XSbjaX+CGIJ
Z7i13lZHUw9/cc67/1DuHZqozvOVVdTdfrJhap5kzqHTnB8eqg0POnUvpWnf+JAe
9dKd50EVTrzunO1PB9QNikdg3mqlvH2jjzWxOTeIrBOiOc/KeuuqF7KX7vPu0Oi5
5XJfkcIUJWbO4p+j4F+754wzLGuPN6u1xc2xsJnF+xcM6RIf7ukwKnFOWouZ2Yy3
K6SEhPM9zffep6z6QdrXUltKjDBbUQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFP0W
ZgSsq4GYXJPTQCamoddurHauMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80NDMxQTMzMjEzMUQxMUYxQkQ4MDcwODNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQAnOafAwQAnPPhAwQAnPPxAwQA
nPP1MAwDBAGc8/oDBAGc8/wwDQYJKoZIhvcNAQELBQADggEBAJXJtVW0naoJeVIG
yS7ZW+iZ8Si4VfXWRVJHsl+g34mTXo/mH/L8EZ8l5yMcap1DjdL83HKASua7z+wy
xI1tC1g3doO/8YIKoOpdcega2jOj89C5UTa6TrftAnzmldD5HaUE+IEFhV5Zx1Ob
nrprfkCpeyftzvku/Ak9t1QnmmCSHZBOpkRRn3QAx2Zs1JYwycuq8HTtWgNnbfDS
yCwmvsHxk67zCDznXXFtgZyOz6ZBCYhBq6bN7fi3ecuXTGZ8O0Wqb782ivGPd+pB
xfgDuqsGrxf5GGqWOWlab0HjpWINtdjs6JjEC6cjWuyeLfXIZ9iWFafj20A7h0E5
Ku8OJoo=
-----END CERTIFICATE-----
Generated at Mon Mar 2 19:23:44 2026 by rpki-client