Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E28DCFA118511F19CF2FDBCDAE4EC9C.roa
File: 4E28DCFA118511F19CF2FDBCDAE4EC9C.roa (raw, json)
Hash identifier: 1TzzE+29dxJwlKLnJpaf1AMaDLkIPkhSmrnghZLGOao=
Subject key identifier: AD:0C:4D:CC:1E:0E:AA:F7:01:D5:7B:E1:36:B1:71:E9:6E:2B:74:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A021
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E28DCFA118511F19CF2FDBCDAE4EC9C.roa
Signing time: Tue 24 Feb 2026 13:32:46 +0000
ROA not before: Tue 24 Feb 2026 13:32:41 +0000
ROA not after: Tue 31 Mar 2026 13:32:41 +0000
asID: 44559
IP address blocks: 156.233.8.0/24 maxlen: 24
156.233.9.0/24 maxlen: 24
156.233.33.0/24 maxlen: 24
156.243.150.0/24 maxlen: 24
156.243.151.0/24 maxlen: 24
156.243.156.0/24 maxlen: 24
156.243.158.0/24 maxlen: 24
156.243.224.0/24 maxlen: 24
156.243.226.0/24 maxlen: 24
156.249.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106529 (0x1a021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 24 13:32:41 2026 GMT
Not After : Mar 31 13:32:41 2026 GMT
Subject: CN=699da87e-446c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c1:77:47:a3:f9:94:54:45:2a:94:23:83:ce:
13:ee:03:6c:73:df:90:bb:cc:59:a3:bc:a6:a0:f1:
0e:30:4f:91:08:b2:b6:2c:e6:67:99:72:21:fe:f2:
bb:f2:d6:1a:b6:c2:19:58:a6:f9:b4:d7:68:82:0a:
d6:38:19:f8:16:e3:2a:2d:76:c5:a4:38:ea:01:8b:
56:84:16:df:2e:d8:85:81:b3:ce:71:13:ca:df:30:
1e:86:49:a7:78:d4:6b:09:0c:e1:a1:23:ff:18:9d:
ee:5a:2f:58:72:72:b6:00:68:f2:ae:5a:0b:82:51:
6d:11:2a:ec:ad:e8:0a:f1:ac:fe:07:0a:82:fa:d2:
c8:57:6c:93:44:8b:c0:43:da:41:9e:9d:b7:fb:da:
92:44:6f:6c:0b:cc:55:64:46:90:07:5c:8c:53:5c:
92:fa:67:d9:67:b2:b5:57:57:c1:39:a6:06:9a:1c:
35:19:3b:db:b0:aa:7e:39:87:c8:fd:ec:75:1a:9f:
c8:f3:f3:c2:1b:ea:c7:3d:83:c7:de:97:d1:30:b9:
32:49:e0:6a:ab:83:77:c6:50:74:4a:e7:8a:b7:81:
5c:28:f3:42:21:90:8d:ae:da:10:e4:ad:e2:dc:46:
3c:42:a3:84:57:8f:65:dc:40:bf:90:06:25:f5:cd:
62:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:0C:4D:CC:1E:0E:AA:F7:01:D5:7B:E1:36:B1:71:E9:6E:2B:74:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E28DCFA118511F19CF2FDBCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.8.0/23
156.233.33.0/24
156.243.150.0/23
156.243.156.0/24
156.243.158.0/24
156.243.224.0/24
156.243.226.0/24
156.249.114.0/24
Signature Algorithm: sha256WithRSAEncryption
10:dc:45:57:3e:40:02:dc:76:15:f7:4c:2f:fe:23:cc:49:cd:
71:70:76:77:7a:c2:2d:10:26:4d:e5:c9:03:c9:7c:48:70:d1:
46:c4:25:4d:3a:11:44:cd:00:56:ec:14:61:21:e1:29:4e:dc:
ea:79:6a:54:29:3f:9c:59:b7:9f:f1:8e:11:56:02:db:54:55:
f6:b5:f6:fd:de:5b:00:6c:04:47:a4:d9:e7:22:70:74:b4:4f:
57:88:71:d0:20:2a:3c:ee:8c:0b:5e:76:aa:58:48:fc:75:4f:
cc:90:aa:0f:d1:75:00:99:af:f1:cc:ff:fe:c6:2a:36:2a:9f:
9b:2d:a3:71:48:4f:dc:ff:b8:fe:ff:ed:f7:72:c2:ef:28:eb:
d4:be:9d:72:a4:0a:23:f2:88:68:e9:85:06:13:d7:86:84:d4:
15:e9:27:07:d3:37:dd:29:5c:10:1d:80:40:ab:01:d2:3a:8d:
bc:fc:30:6f:bb:4a:f8:9b:29:ef:55:ae:b0:58:2b:27:be:5c:
7f:56:df:57:7c:90:a5:4f:30:2b:3a:c6:c2:14:1b:aa:08:5c:
ab:94:a5:21:05:63:87:c9:45:0c:5a:4c:b2:df:fa:b2:8c:a9:
fd:13:88:53:bc:6d:0f:7b:57:94:a1:64:dc:32:b7:69:4b:7d:
9c:df:44:54
-----BEGIN CERTIFICATE-----
MIIFqzCCBJOgAwIBAgIDAaAhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjI0MTMzMjQxWhcNMjYwMzMxMTMzMjQxWjAYMRYw
FAYDVQQDEw02OTlkYTg3ZS00NDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1MF3R6P5lFRFKpQjg84T7gNsc9+Qu8xZo7ymoPEOME+RCLK2LOZnmXIh
/vK78tYatsIZWKb5tNdoggrWOBn4FuMqLXbFpDjqAYtWhBbfLtiFgbPOcRPK3zAe
hkmneNRrCQzhoSP/GJ3uWi9YcnK2AGjyrloLglFtESrsregK8az+BwqC+tLIV2yT
RIvAQ9pBnp23+9qSRG9sC8xVZEaQB1yMU1yS+mfZZ7K1V1fBOaYGmhw1GTvbsKp+
OYfI/ex1Gp/I8/PCG+rHPYPH3pfRMLkySeBqq4N3xlB0SueKt4FcKPNCIZCNrtoQ
5K3i3EY8QqOEV49l3EC/kAYl9c1iCQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFK0M
TcweDqr3AdV74TaxceluK3T0MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80RTI4RENGQTExODUxMUYxOUNGMkZEQkNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQBnOkIAwQAnOkhAwQBnPOWAwQA
nPOcAwQAnPOeAwQAnPPgAwQAnPPiAwQAnPlyMA0GCSqGSIb3DQEBCwUAA4IBAQAQ
3EVXPkAC3HYV90wv/iPMSc1xcHZ3esItECZN5ckDyXxIcNFGxCVNOhFEzQBW7BRh
IeEpTtzqeWpUKT+cWbef8Y4RVgLbVFX2tfb93lsAbARHpNnnInB0tE9XiHHQICo8
7owLXnaqWEj8dU/MkKoP0XUAma/xzP/+xio2Kp+bLaNxSE/c/7j+/+33csLvKOvU
vp1ypAoj8oho6YUGE9eGhNQV6ScH0zfdKVwQHYBAqwHSOo28/DBvu0r4mynvVa6w
WCsnvlx/Vt9XfJClTzArOsbCFBuqCFyrlKUhBWOHyUUMWkyy3/qyjKn9E4hTvG0P
e1eUoWTcMrdpS32c30RU
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:07:07 2026 by rpki-client