Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B6443A0FC4C11F0A44685D0DAE4EC9C.roa
File: 8B6443A0FC4C11F0A44685D0DAE4EC9C.roa (raw, json)
Hash identifier: LOdyvb1yR34l7jQvD+g3tikBaMxp1IsCcQ4raG0crws=
Subject key identifier: 0F:56:BC:83:7E:00:F5:C1:94:61:13:F5:F2:AC:AC:BB:2E:36:CA:53
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019A73
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B6443A0FC4C11F0A44685D0DAE4EC9C.roa
Signing time: Wed 28 Jan 2026 13:23:34 +0000
ROA not before: Wed 28 Jan 2026 13:23:29 +0000
ROA not after: Mon 02 Mar 2026 13:23:29 +0000
asID: 401783
IP address blocks: 156.231.63.0/24 maxlen: 24
156.231.106.0/24 maxlen: 24
156.231.128.0/24 maxlen: 24
156.231.129.0/24 maxlen: 24
156.231.133.0/24 maxlen: 24
156.249.162.0/24 maxlen: 24
156.249.170.0/24 maxlen: 24
156.249.183.0/24 maxlen: 24
156.249.185.0/24 maxlen: 24
156.249.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 02 Mar 2026 13:23:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105075 (0x19a73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 28 13:23:29 2026 GMT
Not After : Mar 2 13:23:29 2026 GMT
Subject: CN=697a0dd6-d78e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a9:0c:a5:49:b1:21:da:07:4d:49:95:89:ce:
7d:20:c5:e0:8c:8b:b8:46:36:92:41:a4:b7:ee:15:
d9:68:08:83:56:a4:35:94:72:ae:7f:c7:f2:38:b7:
21:48:8c:19:0e:55:e3:a2:e5:50:1a:3f:bb:ee:31:
41:c1:aa:f0:23:16:36:13:70:3f:d9:77:42:c8:db:
85:73:b0:ec:f2:05:e0:29:6b:1e:82:8d:ac:8f:12:
ff:c2:22:9d:12:90:6d:07:f3:f5:c3:fd:d4:90:05:
9a:88:cd:85:95:db:77:9a:51:b9:b2:38:fc:e4:11:
c6:a6:65:6f:82:9a:c4:d0:31:a6:26:a1:bd:3d:98:
15:9f:8b:85:dd:23:15:c2:ff:8e:b2:3b:48:01:3f:
b5:62:e0:05:69:57:0c:b2:73:46:8b:60:1d:67:f3:
f6:02:a1:e1:53:03:14:ac:83:d8:b1:3a:51:7b:46:
66:5a:91:67:72:5a:00:f2:24:fa:18:d9:26:8b:a1:
d8:0e:6e:ab:ce:58:86:8a:22:9b:12:23:51:60:08:
f7:68:ab:73:1a:8e:8e:a3:5c:f3:36:84:1a:92:a1:
45:1c:53:a0:2e:ae:7e:1d:71:a2:27:60:ab:02:ed:
d7:29:bc:5e:ba:dc:f1:95:c4:79:07:5d:e3:85:66:
00:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:56:BC:83:7E:00:F5:C1:94:61:13:F5:F2:AC:AC:BB:2E:36:CA:53
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B6443A0FC4C11F0A44685D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.63.0/24
156.231.106.0/24
156.231.128.0/23
156.231.133.0/24
156.249.162.0/24
156.249.170.0/24
156.249.183.0/24
156.249.185.0/24
156.249.187.0/24
Signature Algorithm: sha256WithRSAEncryption
66:b0:75:5d:a3:32:a0:b0:a3:a7:95:c2:e1:e5:e5:de:70:c5:
06:c6:cc:6f:70:ee:c0:8b:96:8f:55:65:81:e0:18:e1:42:36:
d7:ee:e7:c4:e4:d8:47:08:6b:ee:ea:ad:ce:e1:e5:2f:b7:10:
d2:8d:89:e0:37:40:45:63:35:c4:f3:af:73:0f:e7:ad:5a:31:
40:0f:d7:26:c2:1a:07:82:ce:7b:8b:8f:fd:1a:b2:07:59:28:
c7:3f:ac:69:2d:19:f2:c5:32:9e:63:88:94:d6:b4:89:eb:0d:
c8:d1:e7:96:18:2e:91:d0:ff:6a:83:e5:2a:7c:34:a1:0a:c6:
ee:5c:e2:f7:5d:33:90:80:60:b9:a6:ab:09:52:f1:c8:85:80:
f2:fb:0f:5a:b9:d2:68:20:bb:cf:db:66:7c:29:6f:c0:23:e7:
8e:f2:9e:8f:1f:9a:8e:4d:b5:a1:c6:12:7a:20:a8:97:a4:41:
a3:11:a8:d2:e9:8a:af:5a:27:72:c0:47:3c:c4:70:64:7f:25:
b7:89:e0:6c:d1:7b:50:5d:40:eb:5a:1b:25:c5:03:7d:98:ab:
c2:dc:86:0a:5f:36:69:ed:94:0f:37:66:33:83:1e:1f:33:b0:
de:7b:65:ff:a5:bc:4f:de:07:d6:d2:b1:38:6d:f6:bb:fd:2d:
cc:12:7a:de
-----BEGIN CERTIFICATE-----
MIIFsTCCBJmgAwIBAgIDAZpzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMTI4MTMyMzI5WhcNMjYwMzAyMTMyMzI5WjAYMRYw
FAYDVQQDEw02OTdhMGRkNi1kNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx6kMpUmxIdoHTUmVic59IMXgjIu4RjaSQaS37hXZaAiDVqQ1lHKuf8fy
OLchSIwZDlXjouVQGj+77jFBwarwIxY2E3A/2XdCyNuFc7Ds8gXgKWsego2sjxL/
wiKdEpBtB/P1w/3UkAWaiM2Fldt3mlG5sjj85BHGpmVvgprE0DGmJqG9PZgVn4uF
3SMVwv+OsjtIAT+1YuAFaVcMsnNGi2AdZ/P2AqHhUwMUrIPYsTpRe0ZmWpFncloA
8iT6GNkmi6HYDm6rzliGiiKbEiNRYAj3aKtzGo6Oo1zzNoQakqFFHFOgLq5+HXGi
J2CrAu3XKbxeutzxlcR5B13jhWYAjwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFA9W
vIN+APXBlGET9fKsrLsuNspTMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84QjY0NDNBMEZDNEMxMUYwQTQ0Njg1RDBEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
ME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAnOc/AwQAnOdqAwQBnOeAAwQA
nOeFAwQAnPmiAwQAnPmqAwQAnPm3AwQAnPm5AwQAnPm7MA0GCSqGSIb3DQEBCwUA
A4IBAQBmsHVdozKgsKOnlcLh5eXecMUGxsxvcO7Ai5aPVWWB4BjhQjbX7ufE5NhH
CGvu6q3O4eUvtxDSjYngN0BFYzXE869zD+etWjFAD9cmwhoHgs57i4/9GrIHWSjH
P6xpLRnyxTKeY4iU1rSJ6w3I0eeWGC6R0P9qg+UqfDShCsbuXOL3XTOQgGC5pqsJ
UvHIhYDy+w9audJoILvP22Z8KW/AI+eO8p6PH5qOTbWhxhJ6IKiXpEGjEajS6Yqv
WidywEc8xHBkfyW3ieBs0XtQXUDrWhslxQN9mKvC3IYKXzZp7ZQPN2Yzgx4fM7De
e2X/pbxP3gfW0rE4bfa7/S3MEnre
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:41 2026 by rpki-client