Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D2737AAFF4311F08BE08090DAE4EC9C.roa
File: 5D2737AAFF4311F08BE08090DAE4EC9C.roa (raw, json)
Hash identifier: hEGu1oYW9MAW/V3ZAvSAB4WAZZ2hUHhtMoPTK0z4MxE=
Subject key identifier: 03:0A:09:29:DA:27:CA:99:E5:4D:E8:B3:F4:EE:C6:12:58:FA:27:AC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019B1E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D2737AAFF4311F08BE08090DAE4EC9C.roa
Signing time: Sun 01 Feb 2026 07:55:24 +0000
ROA not before: Sun 01 Feb 2026 07:55:19 +0000
ROA not after: Sun 08 Mar 2026 07:55:19 +0000
asID: 48031
IP address blocks: 156.254.97.0/24 maxlen: 24
156.254.98.0/24 maxlen: 24
156.254.99.0/24 maxlen: 24
156.254.100.0/24 maxlen: 24
156.254.101.0/24 maxlen: 24
156.254.102.0/24 maxlen: 24
156.254.103.0/24 maxlen: 24
156.254.104.0/24 maxlen: 24
156.254.105.0/24 maxlen: 24
156.254.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105246 (0x19b1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 1 07:55:19 2026 GMT
Not After : Mar 8 07:55:19 2026 GMT
Subject: CN=697f06ec-c155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d1:60:c7:ec:13:1d:fa:66:9d:e2:cd:c2:10:
d1:30:02:09:d4:99:0f:ab:90:32:07:f0:dc:29:f1:
40:a3:88:39:1e:e4:d3:ba:a7:ce:a8:2d:a5:78:52:
40:a9:2d:b1:30:a5:c2:ef:c8:8c:91:1d:6d:01:03:
89:7e:bd:f0:d7:3c:21:6d:b4:b6:b2:55:54:2f:6c:
ad:5c:b6:ce:9f:68:37:fa:65:c8:4a:30:b7:fe:33:
0d:95:a2:6d:68:f9:91:08:26:4a:b6:dd:96:39:a2:
6c:3e:91:a1:d9:43:87:72:51:32:b1:2f:d1:9e:3c:
20:58:46:4f:d5:77:a9:42:3c:0c:f4:3f:cc:f7:45:
00:33:74:8c:77:11:cd:f2:0a:c8:a2:6a:85:d5:89:
4b:1b:04:14:94:a9:95:e6:fc:6d:30:f2:0b:75:69:
3d:f9:06:78:ee:ca:8d:8b:f5:46:98:76:39:78:48:
11:d1:21:f1:81:8a:0d:2c:3e:83:ce:84:87:3f:d9:
f2:c6:91:69:8f:a4:c7:e1:5d:4c:41:57:fe:b6:fc:
59:6f:92:54:e3:c8:fd:20:44:8d:61:c6:97:9f:4d:
e1:95:d8:b9:dd:df:36:88:a0:98:68:7f:a4:81:d0:
8b:50:ac:b5:55:7d:1a:96:e0:45:41:40:eb:e9:03:
82:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0A:09:29:DA:27:CA:99:E5:4D:E8:B3:F4:EE:C6:12:58:FA:27:AC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D2737AAFF4311F08BE08090DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.97.0-156.254.106.255
Signature Algorithm: sha256WithRSAEncryption
a7:14:f3:bb:41:44:4b:16:55:a8:07:3e:3c:c3:2d:e2:74:c4:
a7:38:56:50:04:1d:e1:b3:96:9f:94:ed:28:01:b6:f6:c5:98:
5a:39:a8:5e:75:51:42:11:e5:41:f2:6d:7a:a3:79:8b:80:04:
f9:ae:7f:4c:54:f7:cf:fc:ae:1f:d1:3e:be:b7:1b:f5:0b:11:
56:1f:47:b9:c5:36:e4:5b:f5:48:7d:d4:d0:40:42:07:44:0a:
6d:bd:b2:0f:3f:d6:ce:73:ef:42:86:63:9a:18:5f:a1:de:53:
8e:f8:57:2d:6d:33:15:59:61:2b:79:2d:ee:a6:c1:5d:bf:04:
05:be:1b:f6:dd:d5:0b:74:0e:16:cc:32:4e:68:29:c7:7c:c9:
e8:96:7c:51:34:21:b5:ac:a1:6d:0c:86:20:c1:14:33:cc:86:
11:d0:9c:0e:13:a2:8a:72:06:72:4f:ab:fd:ea:93:24:5d:5b:
61:6a:7e:ea:c4:7c:70:38:a5:4f:90:96:04:2b:f7:44:30:5e:
8e:93:66:d2:20:ff:56:41:23:32:c2:1b:99:5d:36:7a:c4:d6:
5f:41:8b:65:5f:0e:06:d4:c7:ce:2c:6c:41:b0:f3:a4:42:dc:
36:48:c1:ff:fc:1e:46:d5:00:7c:f1:fa:0b:ae:31:a4:af:4e:
c2:7e:b8:1f
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAZseMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjAxMDc1NTE5WhcNMjYwMzA4MDc1NTE5WjAYMRYw
FAYDVQQDEw02OTdmMDZlYy1jMTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqdFgx+wTHfpmneLNwhDRMAIJ1JkPq5AyB/DcKfFAo4g5HuTTuqfOqC2l
eFJAqS2xMKXC78iMkR1tAQOJfr3w1zwhbbS2slVUL2ytXLbOn2g3+mXISjC3/jMN
laJtaPmRCCZKtt2WOaJsPpGh2UOHclEysS/RnjwgWEZP1XepQjwM9D/M90UAM3SM
dxHN8grIomqF1YlLGwQUlKmV5vxtMPILdWk9+QZ47sqNi/VGmHY5eEgR0SHxgYoN
LD6DzoSHP9nyxpFpj6TH4V1MQVf+tvxZb5JU48j9IESNYcaXn03hldi53d82iKCY
aH+kgdCLUKy1VX0aluBFQUDr6QOCywIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAMK
CSnaJ8qZ5U3os/TuxhJY+iesMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81RDI3MzdBQUZGNDMxMUYwOEJFMDgwOTBEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACc/mEDBACc/mowDQYJKoZI
hvcNAQELBQADggEBAKcU87tBREsWVagHPjzDLeJ0xKc4VlAEHeGzlp+U7SgBtvbF
mFo5qF51UUIR5UHybXqjeYuABPmuf0xU98/8rh/RPr63G/ULEVYfR7nFNuRb9Uh9
1NBAQgdECm29sg8/1s5z70KGY5oYX6HeU474Vy1tMxVZYSt5Le6mwV2/BAW+G/bd
1Qt0DhbMMk5oKcd8yeiWfFE0IbWsoW0MhiDBFDPMhhHQnA4ToopyBnJPq/3qkyRd
W2FqfurEfHA4pU+QlgQr90QwXo6TZtIg/1ZBIzLCG5ldNnrE1l9Bi2VfDgbUx84s
bEGw86RC3DZIwf/8HkbVAHzx+guuMaSvTsJ+uB8=
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:16:49 2026 by rpki-client