Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68F5237A5FF211F1814C98DCCE1D38B0.roa
File: 68F5237A5FF211F1814C98DCCE1D38B0.roa (raw, json)
Hash identifier: xDKj62d/ca+rWmmEN3aP00osQeosAaQrWzCd4fYB2k4=
Subject key identifier: 52:A1:E7:14:31:F0:F4:16:80:D2:EE:72:F2:A7:AF:01:5C:23:F7:9D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BBBE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68F5237A5FF211F1814C98DCCE1D38B0.roa
Signing time: Thu 04 Jun 2026 08:50:18 +0000
ROA not before: Thu 04 Jun 2026 08:50:13 +0000
ROA not after: Fri 10 Jul 2026 08:50:13 +0000
asID: 138915
IP address blocks: 156.244.9.0/24 maxlen: 24
156.244.10.0/24 maxlen: 24
156.244.11.0/24 maxlen: 24
156.244.12.0/24 maxlen: 24
156.244.13.0/24 maxlen: 24
156.244.14.0/24 maxlen: 24
156.244.15.0/24 maxlen: 24
156.244.16.0/24 maxlen: 24
156.244.17.0/24 maxlen: 24
156.244.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113598 (0x1bbbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 08:50:13 2026 GMT
Not After : Jul 10 08:50:13 2026 GMT
Subject: CN=6a213c49-2ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0a:e9:9a:b5:f8:24:f3:48:c6:dc:69:72:3f:
d9:5c:a1:f4:18:16:79:99:cd:74:37:54:a3:e1:c8:
54:e7:48:4f:ec:b8:40:ff:a0:1c:91:6a:44:aa:96:
ad:f2:21:03:7f:56:b0:49:03:7a:83:1f:67:84:05:
d9:62:52:a4:72:aa:3e:0e:cf:0d:5a:6a:69:c7:e9:
87:1f:32:c4:52:b1:3d:4c:7e:a3:51:11:00:9b:d6:
93:71:d2:99:33:32:50:4b:8a:84:69:4a:7b:6e:9a:
1b:31:5b:7f:76:59:ea:6a:33:ef:c1:4d:fb:e7:c5:
dc:b3:32:6a:19:c9:6b:98:88:ee:0a:f2:b2:0e:d3:
12:3b:73:dc:5c:40:e4:8c:be:b4:e1:13:3a:10:9a:
45:09:76:4f:c4:7f:fd:7f:99:79:24:af:bb:d3:e3:
71:77:d1:24:35:06:c8:a8:3d:f0:f3:fd:4e:05:20:
51:be:e0:fa:6b:3b:4f:5e:c8:9e:b7:c2:15:7b:00:
85:84:8f:ad:d4:11:f9:1d:71:56:64:9d:ef:8f:32:
bd:62:e4:86:12:1b:89:c9:22:dc:3e:c3:fd:73:74:
8c:90:06:c1:a2:7a:a7:48:58:63:b2:20:b2:77:00:
6c:99:41:ed:b8:5d:91:85:53:20:5a:77:9e:38:92:
78:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A1:E7:14:31:F0:F4:16:80:D2:EE:72:F2:A7:AF:01:5C:23:F7:9D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68F5237A5FF211F1814C98DCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.9.0-156.244.18.255
Signature Algorithm: sha256WithRSAEncryption
76:b5:8e:03:a3:9e:f5:23:0d:8f:b2:d8:a0:22:27:b6:a2:39:
6d:5b:0d:65:cd:e1:f9:00:4f:7d:59:95:98:f5:c6:c3:89:22:
22:48:e8:ff:24:f2:af:f7:a0:4b:86:48:44:fa:27:c5:39:46:
e4:f9:b0:30:55:07:57:2c:39:5f:48:74:96:c5:40:9c:18:4a:
b1:18:0e:b9:4c:23:2b:ef:5b:68:ac:ec:81:3a:99:37:d9:6e:
09:fb:84:91:36:e8:a9:3d:27:67:b5:2e:88:e1:07:e3:07:fe:
ae:2a:c3:a6:bb:c7:ad:a4:9e:c7:ed:0e:9f:18:ed:2d:c8:c0:
10:9b:2b:ad:93:ed:5c:18:a7:36:c7:0d:26:1a:08:93:0f:df:
d4:72:c6:94:da:da:98:50:16:d2:cd:f9:68:fc:7d:b1:f6:22:
fa:5a:30:2b:42:bd:d2:c3:fa:02:8c:9f:ab:60:db:12:22:d0:
b5:cc:69:75:85:b4:d3:8c:51:ff:7e:0f:f3:a4:57:ee:7c:a2:
15:10:6b:cc:7b:fd:80:80:28:e8:ff:c5:fe:e7:66:b3:98:e2:
a1:37:cb:e5:3a:4f:77:df:41:3b:4f:cf:79:43:43:2b:e9:25:
fc:c3:77:61:95:21:cc:80:07:9a:05:87:9b:02:da:b1:5b:49:
d1:43:79:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:42:04 2026 by rpki-client