Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A35E100C397411F1B6FFB3DCCE1D38B0.roa
File: A35E100C397411F1B6FFB3DCCE1D38B0.roa (raw, json)
Hash identifier: YorYJPvSSsBkWlY7tmaSzsPFowqyguFBso6xsafwyLQ=
Subject key identifier: 52:D8:FC:83:07:04:9C:39:BC:0C:B3:89:14:0F:37:2E:8D:8A:81:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AD07
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A35E100C397411F1B6FFB3DCCE1D38B0.roa
Signing time: Thu 16 Apr 2026 09:14:15 +0000
ROA not before: Thu 16 Apr 2026 09:14:09 +0000
ROA not after: Wed 29 Apr 2026 09:14:09 +0000
asID: 214143
IP address blocks: 156.230.136.0/21 maxlen: 24
156.231.13.0/24 maxlen: 24
156.231.176.0/21 maxlen: 24
156.249.192.0/23 maxlen: 24
156.249.198.0/23 maxlen: 24
156.249.210.0/23 maxlen: 24
156.252.27.0/24 maxlen: 24
156.252.28.0/24 maxlen: 24
156.254.112.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109831 (0x1ad07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 09:14:09 2026 GMT
Not After : Apr 29 09:14:09 2026 GMT
Subject: CN=69e0a867-6c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:79:3a:c9:63:e6:53:b0:1e:b5:6b:d4:52:6e:
b3:d8:0f:6b:62:68:6a:ed:1b:74:44:54:67:45:c1:
46:da:06:47:1a:af:6a:dc:21:2e:9b:14:94:fa:d0:
41:e3:9b:e0:c8:b0:90:9e:c0:95:9e:e8:f3:9a:18:
bd:04:12:b3:6b:1a:5d:17:c1:28:31:5a:dd:66:00:
9a:3e:07:41:39:8a:aa:48:ab:d6:e4:86:f0:4d:48:
a5:a3:ef:5e:c6:3e:a4:33:13:5f:f0:91:71:8e:e2:
b8:4f:f1:03:99:a8:7b:f8:50:69:24:3b:f2:23:1a:
23:80:3a:2a:f6:cc:ba:54:a0:e6:17:d1:4f:df:c9:
6b:4b:9e:d9:bf:f5:68:72:44:55:53:3d:88:78:e8:
7a:3e:f1:47:56:7b:68:88:6f:ec:ba:ed:83:c7:93:
87:aa:02:a9:35:00:a5:40:20:e7:4b:d2:9b:c4:d4:
cb:fb:bd:c9:0b:cd:ff:4f:40:89:77:42:4a:2e:d7:
25:7a:d2:49:11:2d:99:22:63:0c:d7:72:c7:a6:98:
79:22:da:da:cb:d9:0b:7d:40:d3:1a:0e:47:21:d3:
b1:d5:41:d2:7d:32:64:85:fe:1d:85:bf:cd:53:03:
51:f7:10:fd:cc:56:d7:a0:bd:93:0e:6a:ac:c9:22:
c6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D8:FC:83:07:04:9C:39:BC:0C:B3:89:14:0F:37:2E:8D:8A:81:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A35E100C397411F1B6FFB3DCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.136.0/21
156.231.13.0/24
156.231.176.0/21
156.249.192.0/23
156.249.198.0/23
156.249.210.0/23
156.252.27.0-156.252.28.255
156.254.112.0/23
Signature Algorithm: sha256WithRSAEncryption
93:d2:38:69:0d:f7:52:ff:ea:1e:08:c0:e6:70:2e:cf:fa:ee:
33:b5:a8:d9:9e:24:23:22:29:b0:f8:0b:54:73:57:98:19:f7:
e6:52:69:4a:7a:da:bb:39:bd:d6:34:d5:8f:3c:e0:89:82:46:
fb:bf:99:d7:69:1d:e1:36:88:f2:b3:03:1a:24:34:7a:1e:65:
16:c4:96:e2:32:53:e6:8c:1a:05:8a:69:31:4f:c2:ee:c2:4e:
00:ae:ca:f7:7c:53:b5:ec:62:2c:d9:46:f3:84:fc:9e:27:a4:
09:a5:cd:bb:a1:e7:54:fb:34:34:76:5e:91:89:64:07:9f:d3:
68:cf:1f:54:30:46:b9:b1:e6:6c:fe:b0:24:8b:ff:6b:a3:04:
5f:4a:de:88:3a:36:8f:09:6e:13:e9:25:88:5a:24:2f:3f:94:
04:ce:a7:0c:a1:f5:70:2d:ce:0a:d2:39:e3:9b:28:80:bf:9f:
ed:86:bf:b7:f2:73:41:c4:c8:ad:36:20:8d:13:3a:0e:08:ec:
4b:00:2a:56:da:19:ea:4c:f6:e2:55:21:0f:36:2c:66:d4:3c:
88:bf:58:14:52:47:17:94:c8:56:05:29:9c:03:01:f4:99:36:
7d:e6:65:98:ad:ec:bb:71:61:a0:ff:87:c5:85:8c:44:13:0b:
ab:14:2c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:35:30 2026 by rpki-client