Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B061D4FC341811F1BA26A4B7CE1D38B0.roa
File: B061D4FC341811F1BA26A4B7CE1D38B0.roa (raw, json)
Hash identifier: gIVYx9EWRIEupeRqvvBP4E5xNi3hosvOzo3TfBHCzK0=
Subject key identifier: C6:30:98:8F:2D:0C:56:31:ED:48:E1:40:2D:D4:7A:B2:0A:B3:34:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB5D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B061D4FC341811F1BA26A4B7CE1D38B0.roa
Signing time: Thu 09 Apr 2026 13:33:27 +0000
ROA not before: Thu 09 Apr 2026 13:33:22 +0000
ROA not after: Sun 19 Apr 2026 13:33:22 +0000
asID: 9304
IP address blocks: 156.245.211.0/24 maxlen: 24
156.245.224.0/24 maxlen: 24
156.249.133.0/24 maxlen: 24
156.249.153.0/24 maxlen: 24
156.249.154.0/24 maxlen: 24
156.249.162.0/24 maxlen: 24
156.249.166.0/24 maxlen: 24
156.249.167.0/24 maxlen: 24
156.249.170.0/24 maxlen: 24
156.249.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109405 (0x1ab5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 13:33:22 2026 GMT
Not After : Apr 19 13:33:22 2026 GMT
Subject: CN=69d7aaa7-2650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:26:01:a1:71:03:bc:2e:99:af:48:a5:f8:33:
40:34:9d:78:89:7b:ee:5d:a5:71:6c:73:73:8f:c5:
78:67:46:b8:75:f1:ff:e7:90:b2:d1:fe:0b:76:21:
00:20:c8:9d:76:40:d4:c6:16:fd:98:0e:63:51:bb:
15:41:29:4a:8e:92:9b:41:c4:a9:82:6e:59:98:3c:
13:06:f3:8a:5d:37:3b:38:86:68:7f:52:25:51:c5:
3e:c5:19:31:32:dd:09:3a:43:05:01:ba:58:12:b9:
a5:48:68:2f:41:aa:af:ea:a1:95:e6:26:c3:c7:5b:
2e:20:83:02:cb:36:ba:fc:85:d7:dc:74:c7:84:54:
11:6c:f9:e8:7d:ce:49:21:5a:c4:2e:d6:05:0b:ab:
2e:1c:84:ff:b3:00:2b:3a:a2:41:a9:79:5b:0d:69:
4c:e3:28:75:00:dd:37:f0:52:8a:46:3c:b8:f8:d3:
39:b3:d0:5f:5e:32:41:fb:e6:5d:74:da:56:4b:5b:
c4:fd:62:ce:ca:7e:b1:25:5c:9f:f6:e1:a0:62:01:
dd:86:8c:f4:7e:bd:dc:b2:6d:6f:c6:16:4b:11:29:
da:f3:a1:dc:b7:3b:86:b8:44:b1:a8:9e:53:2e:c0:
33:65:2e:09:46:9a:e7:73:ce:38:6d:03:c5:54:e0:
6b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:30:98:8F:2D:0C:56:31:ED:48:E1:40:2D:D4:7A:B2:0A:B3:34:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B061D4FC341811F1BA26A4B7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.211.0/24
156.245.224.0/24
156.249.133.0/24
156.249.153.0-156.249.154.255
156.249.162.0/24
156.249.166.0/23
156.249.170.0/24
156.249.180.0/24
Signature Algorithm: sha256WithRSAEncryption
16:db:1b:50:0b:c5:35:43:37:0a:9c:2a:d8:8c:97:2b:2d:58:
03:bb:e2:6c:26:ad:31:ca:ea:e6:6a:f0:cc:ed:22:57:f2:a9:
5e:0c:69:12:5f:2e:9a:54:a5:e3:e9:71:65:a8:b3:f2:e9:81:
38:33:e4:f6:2c:ad:d0:5a:44:4e:70:a3:ab:85:e9:cc:c0:64:
16:58:c4:6e:8c:e8:eb:7d:25:7c:d2:a9:7d:ea:ee:93:ff:a9:
ae:16:95:c0:8d:e9:b4:f1:27:ed:44:96:1b:88:10:79:fb:bd:
4e:dc:a8:e5:a1:c6:e6:30:b1:2b:36:ba:bb:1e:92:79:d6:18:
3a:99:67:c8:ce:24:7b:f9:15:e6:83:8c:1e:97:fb:1b:60:46:
58:7d:f6:35:36:a9:3a:53:cf:6a:1f:e8:68:03:55:2c:92:03:
93:f6:31:82:84:b0:80:73:09:06:86:a1:15:44:b3:2d:b6:19:
c0:c1:d0:2c:0d:7d:26:ea:19:6f:de:84:1d:e9:ac:a5:a5:4a:
34:27:7a:8f:a6:ae:11:4e:7e:a7:19:27:5b:b1:42:4b:d2:7d:
a4:8e:6a:9b:49:e6:2f:87:fa:bb:d2:18:a4:fb:d3:af:aa:d2:
77:e1:a9:c0:3a:d9:1c:5c:44:23:d7:63:01:59:59:72:c5:df:
10:1c:2b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:00:14 2026 by rpki-client