Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56F333E8158211F1BE9001B5DAE4EC9C.roa
File: 56F333E8158211F1BE9001B5DAE4EC9C.roa (raw, json)
Hash identifier: ENbnfPff7r1kLoBjjUlSDssgScGI/Aw2jWzkUZqMPcA=
Subject key identifier: 8F:A1:E2:1C:4E:FB:E3:3B:5D:E3:C3:06:86:88:3F:40:1B:BF:A9:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A18E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56F333E8158211F1BE9001B5DAE4EC9C.roa
Signing time: Sun 01 Mar 2026 15:21:37 +0000
ROA not before: Sun 01 Mar 2026 15:21:32 +0000
ROA not after: Wed 08 Apr 2026 15:21:32 +0000
asID: 213999
IP address blocks: 156.253.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106894 (0x1a18e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 1 15:21:32 2026 GMT
Not After : Apr 8 15:21:32 2026 GMT
Subject: CN=69a45981-4b32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:da:8a:6e:88:44:12:2f:18:04:b1:d6:5e:44:
25:12:e0:94:eb:e4:2d:0a:75:ce:88:f6:27:50:6c:
ad:7f:1b:be:16:f1:d5:09:06:01:3e:8e:c0:28:05:
ab:89:ba:c4:1e:e1:65:94:e0:61:4f:41:af:fd:1f:
33:5e:48:ee:e2:31:77:da:d5:38:d1:c0:36:c4:55:
e1:f2:79:94:eb:1a:8a:97:ae:ec:e0:8f:85:a3:4a:
a6:3d:6d:38:57:f4:bc:6a:ec:f5:82:5f:fe:4f:44:
91:32:0c:a9:33:c9:c6:2a:11:1b:da:bd:b4:e8:52:
77:c2:a6:2e:17:7b:da:41:94:78:71:6b:17:e0:2f:
e4:3b:06:0f:eb:38:3c:82:bf:58:c3:c8:6c:4e:83:
d0:77:e3:83:11:65:5f:b5:85:3f:13:d8:49:ca:8f:
3f:99:7a:fb:14:88:e4:e9:e1:5b:86:48:04:f0:7c:
0c:ee:e6:af:1e:09:19:4e:7c:52:7e:bf:5a:78:15:
d8:74:4c:c5:5c:5a:f4:cd:65:76:2f:da:e5:e8:e0:
f1:9d:52:9b:9a:ae:3d:35:33:85:f2:b4:e2:c6:55:
02:b1:75:3c:c9:61:38:63:21:f8:4b:8e:bf:c9:bb:
48:6e:1b:71:9a:2d:42:5f:4f:95:af:5b:47:65:5c:
35:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A1:E2:1C:4E:FB:E3:3B:5D:E3:C3:06:86:88:3F:40:1B:BF:A9:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56F333E8158211F1BE9001B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.1.0/24
Signature Algorithm: sha256WithRSAEncryption
08:10:fd:db:0c:d3:36:b1:af:1a:25:13:3b:8c:9c:de:9d:f0:
b0:42:15:0c:b9:67:12:26:02:3a:fa:09:19:5f:65:80:7a:c0:
4f:ec:c3:fb:f7:2b:4a:90:7c:5f:7d:c8:3d:65:5b:b6:66:2f:
0d:75:1f:9f:50:3b:3f:f2:28:c7:a2:50:bd:7a:f2:07:f7:21:
48:63:87:a1:6a:d4:03:a5:eb:50:e1:74:f6:22:0b:b7:0d:85:
b5:e6:d2:58:17:8d:1d:4f:0e:46:37:6d:cb:ad:b2:88:4b:13:
c8:8c:b7:d0:a8:cf:3e:30:f5:2c:31:96:9f:8c:ac:a6:d6:f2:
f3:7d:b2:e4:c9:62:58:3a:25:99:6a:43:94:bb:f3:51:a2:9a:
dd:e4:19:17:c8:16:9d:8b:1a:9b:ff:f9:02:dd:dd:3b:33:e7:
a1:6f:96:2c:f2:f1:60:4c:15:9c:ca:1c:2e:c4:59:f1:d2:df:
bc:bc:ec:78:24:5a:dc:31:e8:91:39:6d:96:f0:18:86:de:21:
50:1b:f8:43:01:0d:f6:d7:f8:a1:06:02:d4:ea:1a:43:38:eb:
62:fa:5d:e8:fe:bb:3b:5a:8f:42:ce:62:3d:c4:86:b9:97:f5:
aa:c9:2d:77:c3:de:22:5c:c0:1f:7e:d5:06:88:66:e9:57:a6:
42:ff:54:31
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAaGOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzAxMTUyMTMyWhcNMjYwNDA4MTUyMTMyWjAYMRYw
FAYDVQQDEw02OWE0NTk4MS00YjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAudqKbohEEi8YBLHWXkQlEuCU6+QtCnXOiPYnUGytfxu+FvHVCQYBPo7A
KAWribrEHuFllOBhT0Gv/R8zXkju4jF32tU40cA2xFXh8nmU6xqKl67s4I+Fo0qm
PW04V/S8auz1gl/+T0SRMgypM8nGKhEb2r206FJ3wqYuF3vaQZR4cWsX4C/kOwYP
6zg8gr9Yw8hsToPQd+ODEWVftYU/E9hJyo8/mXr7FIjk6eFbhkgE8HwM7uavHgkZ
TnxSfr9aeBXYdEzFXFr0zWV2L9rl6ODxnVKbmq49NTOF8rTixlUCsXU8yWE4YyH4
S46/ybtIbhtxmi1CX0+Vr1tHZVw1GwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFI+h
4hxO++M7XePDBoaIP0Abv6kGMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81NkYzMzNFODE1ODIxMUYxQkU5MDAxQjVEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnP0BMA0GCSqGSIb3DQEBCwUA
A4IBAQAIEP3bDNM2sa8aJRM7jJzenfCwQhUMuWcSJgI6+gkZX2WAesBP7MP79ytK
kHxffcg9ZVu2Zi8NdR+fUDs/8ijHolC9evIH9yFIY4ehatQDpetQ4XT2Igu3DYW1
5tJYF40dTw5GN23LrbKISxPIjLfQqM8+MPUsMZafjKym1vLzfbLkyWJYOiWZakOU
u/NRoprd5BkXyBadixqb//kC3d07M+ehb5Ys8vFgTBWcyhwuxFnx0t+8vOx4JFrc
MeiROW2W8BiG3iFQG/hDAQ321/ihBgLU6hpDOOti+l3o/rs7Wo9CzmI9xIa5l/Wq
yS13w94iXMAfftUGiGbpV6ZC/1Qx
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:44:25 2026 by rpki-client