Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/746E9768377011F195A74EFECE1D38B0.roa
File: 746E9768377011F195A74EFECE1D38B0.roa (raw, json)
Hash identifier: 2BUVtnGqMqwe2eKCGfhy/C5Uat4JMo7L3x6ncyMIPfQ=
Subject key identifier: FB:4F:A9:38:4C:D9:3C:95:A0:90:BF:02:AA:BB:05:71:3F:54:08:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC82
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/746E9768377011F195A74EFECE1D38B0.roa
Signing time: Mon 13 Apr 2026 19:39:16 +0000
ROA not before: Mon 13 Apr 2026 19:39:10 +0000
ROA not after: Sun 17 May 2026 19:39:10 +0000
asID: 22773
IP address blocks: 156.229.52.0/23 maxlen: 24
156.229.55.0/24 maxlen: 24
156.239.144.0/22 maxlen: 24
156.248.30.0/23 maxlen: 24
156.248.64.0/21 maxlen: 24
156.248.92.0/22 maxlen: 24
156.249.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109698 (0x1ac82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 19:39:10 2026 GMT
Not After : May 17 19:39:10 2026 GMT
Subject: CN=69dd4664-55dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cf:ab:3f:02:17:db:ed:dd:3f:1e:dc:c7:5c:
c8:6a:ec:3d:15:c5:85:48:be:d3:6f:bb:9b:0c:22:
97:ff:5c:53:fd:6f:20:d4:eb:67:4a:61:cc:75:86:
6c:d0:f2:73:6d:ef:d5:4b:cb:c4:f0:b2:35:ad:5c:
63:8a:ee:d7:93:bb:86:3a:a3:e3:1b:5c:5c:53:97:
a3:dd:aa:c7:72:71:13:a5:55:7b:f8:29:b5:31:ef:
5e:2c:d8:09:53:c6:9e:01:2d:a9:7f:27:21:da:ec:
17:cf:3e:d6:34:0a:21:f5:cf:27:8f:a1:b8:4e:76:
d7:28:a3:04:e7:5d:be:0d:c6:49:fd:be:2b:3e:24:
ba:49:6f:50:63:ca:41:12:7c:51:7f:6a:dc:40:dd:
c7:91:77:5e:62:73:9d:88:e1:f1:6e:cb:99:22:4b:
ec:56:6d:0d:8a:20:5c:76:7e:fc:fb:15:d4:fa:40:
c8:6c:6d:a1:9a:71:c2:8b:e8:f8:31:43:9e:99:c4:
84:b5:43:2e:dd:6a:48:ea:04:24:8f:9a:1d:05:10:
06:b4:63:6f:b4:ae:4d:c9:4a:b0:5b:80:59:bd:8b:
5c:3a:12:86:a2:8b:27:f8:8c:b9:75:14:0c:8e:fa:
7c:42:c9:5f:02:f7:b9:5c:4c:72:36:e7:07:b2:1b:
88:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4F:A9:38:4C:D9:3C:95:A0:90:BF:02:AA:BB:05:71:3F:54:08:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/746E9768377011F195A74EFECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.52.0/23
156.229.55.0/24
156.239.144.0/22
156.248.30.0/23
156.248.64.0/21
156.248.92.0/22
156.249.2.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:12:7e:94:36:c1:a0:9b:34:5a:d4:22:12:6a:45:80:82:4b:
16:24:26:86:4f:c9:6a:e9:93:d8:54:4f:e7:f3:14:99:85:0a:
80:16:42:65:c5:bf:41:e8:95:d9:d1:a5:52:9b:f9:0f:69:14:
3d:0d:dc:10:58:63:fc:b5:7a:28:84:c4:9b:46:a3:58:61:40:
89:48:7d:5b:b9:d6:1e:3b:24:b8:cc:f4:6d:36:ff:eb:7b:84:
51:8a:82:f5:ea:e5:50:64:b1:c9:05:ca:43:e7:4d:11:cc:1e:
6b:99:d8:7f:91:0c:56:1c:e8:5b:cb:b5:a7:4c:14:55:39:8c:
4a:cc:ff:9f:d9:11:01:13:71:6d:62:4a:25:8a:11:82:04:d3:
bd:48:55:63:4c:f2:ad:a3:f4:ed:16:53:84:0b:f5:30:4f:9a:
76:b4:1d:2f:ee:a6:19:b9:6c:4c:98:87:05:0b:f4:e1:38:b0:
be:3e:5e:42:71:18:d5:87:7f:91:10:82:a1:39:37:40:15:ac:
e1:1b:b6:54:55:30:9f:30:36:74:56:da:77:51:a9:01:b6:d0:
18:a7:46:1b:81:7e:85:f3:5e:c7:c6:ed:39:9c:a1:d4:07:80:
d1:d3:5a:50:0a:39:5d:b9:ce:f7:dd:30:d1:92:3b:3b:86:3f:
26:19:8e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:21:04 2026 by rpki-client