Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6CA1FFC371011F1B22707C2CE1D38B0.roa
File: B6CA1FFC371011F1B22707C2CE1D38B0.roa (raw, json)
Hash identifier: wFzwGQ85laJ4/XY/KHALn9ApGPmsVG8LpWgqJSQGCBs=
Subject key identifier: 5B:DE:E2:E6:33:C6:AD:1D:73:83:4B:C6:A0:7E:8B:34:EF:0C:8D:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC4C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6CA1FFC371011F1B22707C2CE1D38B0.roa
Signing time: Mon 13 Apr 2026 08:13:55 +0000
ROA not before: Mon 13 Apr 2026 08:13:50 +0000
ROA not after: Sat 16 May 2026 08:13:50 +0000
asID: 22773
IP address blocks: 156.233.243.0/24 maxlen: 24
156.233.244.0/24 maxlen: 24
156.233.245.0/24 maxlen: 24
156.233.246.0/24 maxlen: 24
156.233.247.0/24 maxlen: 24
156.233.248.0/24 maxlen: 24
156.233.249.0/24 maxlen: 24
156.233.250.0/24 maxlen: 24
156.233.251.0/24 maxlen: 24
156.238.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109644 (0x1ac4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 08:13:50 2026 GMT
Not After : May 16 08:13:50 2026 GMT
Subject: CN=69dca5c3-7a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d9:15:52:50:d8:b2:04:54:08:77:4e:09:53:
50:dd:51:7d:75:53:6d:9b:89:78:1d:8f:8c:d5:62:
26:29:49:a4:9d:ef:4b:d7:0a:8d:38:28:e3:a4:39:
bb:d1:71:86:6b:62:d1:b7:35:36:79:d2:02:ab:00:
6a:32:5e:fb:5b:59:df:1e:77:be:2c:03:be:cc:1b:
e2:2e:50:7a:48:31:e2:a9:b1:18:7f:49:20:75:5c:
e3:d8:d6:85:09:92:40:e2:3d:b0:9e:25:36:95:50:
0d:5c:69:ad:3e:1c:26:55:1d:b6:bd:f3:ae:b9:44:
9d:61:77:73:3d:b3:af:df:04:bc:4b:43:4a:b1:b9:
29:dd:34:ca:f4:d5:eb:0c:ec:69:73:d7:fc:88:0f:
1b:91:07:d2:84:3a:99:91:6a:3c:65:f2:ec:8f:08:
89:0a:7b:81:3d:d7:2a:3c:d7:b4:50:45:f3:df:81:
8c:1b:2d:6e:53:13:0c:ca:fd:59:9e:92:3c:17:67:
a9:87:43:2a:d8:76:45:7f:fb:d2:0f:5a:0e:18:25:
ca:ab:af:43:10:06:d1:19:55:ce:34:28:c2:e3:4e:
0d:fe:51:4d:1f:b5:ed:00:11:05:64:4c:ae:0e:1e:
5d:d6:40:d0:e4:3a:6c:eb:77:7b:4b:96:14:2b:ef:
4f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DE:E2:E6:33:C6:AD:1D:73:83:4B:C6:A0:7E:8B:34:EF:0C:8D:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6CA1FFC371011F1B22707C2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.243.0-156.233.251.255
156.238.161.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:9f:d3:8c:98:37:8c:f5:82:f4:39:26:18:77:4a:7a:2f:f3:
ae:8a:75:55:cc:83:35:2e:b8:50:21:1c:3e:1e:74:20:33:28:
9e:14:a5:a4:56:ff:79:2e:29:04:d0:62:97:cc:44:71:a7:53:
16:b3:c6:08:4e:e0:f9:e2:05:23:7d:0a:f2:5b:5b:53:83:7a:
9f:b4:97:da:c7:93:5d:b4:ad:57:18:cb:ac:3d:ee:3c:5a:9f:
70:a4:2d:fa:c9:b2:19:07:5e:e1:b5:77:8a:ee:45:11:da:56:
1e:0a:64:dc:96:fa:26:05:b7:d3:69:dc:83:ef:6e:e8:38:26:
08:97:4d:21:47:98:96:8b:86:15:58:9b:ee:53:95:08:f6:e6:
6b:f3:4b:ac:43:83:b7:c2:b2:f7:7c:cf:67:6a:9b:d9:46:8f:
54:58:88:f9:4e:91:cb:e2:f8:d3:d5:fc:bd:dc:67:63:cc:ef:
a3:7e:ee:b0:3b:4b:85:37:1b:10:9c:aa:18:db:80:11:b5:c6:
08:35:9b:5d:62:e9:18:49:4b:c1:47:0f:94:5c:73:16:b1:8e:
2d:80:8d:cd:e5:f1:df:5b:a9:d6:29:5a:ac:15:01:4f:14:a6:
75:db:b4:88:5e:ae:df:39:17:92:22:5d:b7:0a:03:32:d0:76:
8a:b1:1f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:45:08 2026 by rpki-client