Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76CA3FB037AE11F189BF0CFECE1D38B0.roa
File: 76CA3FB037AE11F189BF0CFECE1D38B0.roa (raw, json)
Hash identifier: jqU0WwoFivoiTo/uBbAIjcVH8RlljJgMtSItE819WbA=
Subject key identifier: CD:5F:AA:EF:88:0A:6E:DE:EB:B1:3D:96:A1:20:27:1D:FF:49:64:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC9B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76CA3FB037AE11F189BF0CFECE1D38B0.roa
Signing time: Tue 14 Apr 2026 03:03:09 +0000
ROA not before: Tue 14 Apr 2026 03:03:04 +0000
ROA not after: Wed 13 May 2026 03:03:04 +0000
asID: 20473
IP address blocks: 156.231.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109723 (0x1ac9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 14 03:03:04 2026 GMT
Not After : May 13 03:03:04 2026 GMT
Subject: CN=69ddae6c-fa11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:83:af:b5:20:ac:c5:b9:6c:d3:d5:97:7d:6a:
58:bc:7d:ec:ba:c7:11:40:0e:d7:44:b4:64:69:b0:
5a:0c:86:c8:ec:7d:44:06:6e:20:cf:77:c8:59:4c:
dc:bb:ff:81:c3:8b:94:5e:78:0b:31:27:ef:ab:55:
b1:8a:92:98:5c:b7:de:79:d4:43:b8:ef:de:d2:eb:
4e:55:db:40:8c:02:d1:8f:f9:81:57:f3:50:0e:b6:
17:09:5e:5b:c4:9d:a7:6f:e6:d4:f3:c4:d0:d8:92:
17:ba:18:79:e1:14:29:3e:c2:a0:31:a4:fa:61:1b:
ef:df:e6:6c:31:62:d3:33:93:c6:ef:17:4f:3b:35:
3a:0b:d7:d4:a3:46:07:92:a2:20:20:05:fa:5a:a3:
14:6a:36:4c:43:7d:98:34:ff:20:e3:e1:29:da:52:
1a:51:f2:bb:0c:96:45:e1:c9:a5:bc:93:1f:18:b5:
44:48:26:ad:27:58:7c:bf:21:52:c8:5f:f1:7f:35:
57:aa:97:70:c1:17:42:f8:44:c0:10:07:51:8c:36:
49:6e:9a:27:b8:28:e9:ee:c9:12:ea:9c:c9:7e:cb:
b5:bd:be:b9:b4:b1:86:6b:b0:25:86:e9:8b:52:11:
93:1c:fb:24:a1:0c:c5:7b:5a:cd:a8:c5:07:58:09:
ce:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:5F:AA:EF:88:0A:6E:DE:EB:B1:3D:96:A1:20:27:1D:FF:49:64:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76CA3FB037AE11F189BF0CFECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.10.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:7b:c0:a9:12:da:12:30:2b:c6:75:ab:e4:20:78:ab:a4:b9:
c9:ce:09:f7:7f:59:10:46:98:65:d9:5b:20:cd:dc:e2:4b:d0:
d6:54:69:46:20:79:06:a7:bf:eb:63:c6:d6:ca:13:e8:a6:ec:
6c:c5:49:9d:8b:97:25:49:bc:b1:04:e4:13:97:dd:f5:20:89:
a4:3f:a3:d5:7a:04:6d:d1:6c:d5:1e:ac:17:93:76:d4:f5:6b:
02:31:33:b2:5c:f9:a3:38:b3:94:fe:67:ae:1b:f7:da:c7:27:
89:f7:e1:56:52:6f:ad:a6:e3:24:16:a7:80:0d:7c:4d:97:2b:
6f:a1:9d:10:70:49:ae:1e:85:6c:2b:b2:08:5c:33:54:d0:5c:
ba:d3:79:d9:57:69:12:a7:35:a1:b9:50:c1:73:5c:a9:21:b7:
71:2e:74:b0:5f:2f:1a:d2:8b:49:bb:58:bb:35:15:bb:b8:0d:
81:b6:5d:94:c4:fa:56:a7:b1:ea:56:b1:b4:d5:01:05:60:5d:
4d:d4:f9:45:a5:aa:b3:57:49:98:4e:a3:be:9e:09:7f:8f:64:
06:e7:60:19:58:c4:fc:77:51:d1:c4:12:72:0d:06:e0:8b:7a:
6f:ad:b1:70:43:6b:75:f3:62:6d:45:3a:74:a7:2f:be:d7:3b:
f6:79:9f:08
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAaybMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDE0MDMwMzA0WhcNMjYwNTEzMDMwMzA0WjAYMRYw
FAYDVQQDEw02OWRkYWU2Yy1mYTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtYOvtSCsxbls09WXfWpYvH3suscRQA7XRLRkabBaDIbI7H1EBm4gz3fI
WUzcu/+Bw4uUXngLMSfvq1WxipKYXLfeedRDuO/e0utOVdtAjALRj/mBV/NQDrYX
CV5bxJ2nb+bU88TQ2JIXuhh54RQpPsKgMaT6YRvv3+ZsMWLTM5PG7xdPOzU6C9fU
o0YHkqIgIAX6WqMUajZMQ32YNP8g4+Ep2lIaUfK7DJZF4cmlvJMfGLVESCatJ1h8
vyFSyF/xfzVXqpdwwRdC+ETAEAdRjDZJbponuCjp7skS6pzJfsu1vb65tLGGa7Al
humLUhGTHPskoQzFe1rNqMUHWAnOTwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFM1f
qu+ICm7e67E9lqEgJx3/SWQcMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83NkNBM0ZCMDM3QUUxMUYxODlCRjBDRkVDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOcKMA0GCSqGSIb3DQEBCwUA
A4IBAQC2e8CpEtoSMCvGdavkIHirpLnJzgn3f1kQRphl2VsgzdziS9DWVGlGIHkG
p7/rY8bWyhPopuxsxUmdi5clSbyxBOQTl931IImkP6PVegRt0WzVHqwXk3bU9WsC
MTOyXPmjOLOU/meuG/faxyeJ9+FWUm+tpuMkFqeADXxNlytvoZ0QcEmuHoVsK7II
XDNU0Fy603nZV2kSpzWhuVDBc1ypIbdxLnSwXy8a0otJu1i7NRW7uA2Btl2UxPpW
p7HqVrG01QEFYF1N1PlFpaqzV0mYTqO+ngl/j2QG52AZWMT8d1HRxBJyDQbgi3pv
rbFwQ2t182JtRTp0py++1zv2eZ8I
-----END CERTIFICATE-----
Generated at Fri Apr 17 23:55:28 2026 by rpki-client