Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD96677E376E11F1B95BEBF3CE1D38B0.roa
File: BD96677E376E11F1B95BEBF3CE1D38B0.roa (raw, json)
Hash identifier: 0yNM0e8MQxZynV1ZUX6zuKRnijPi1TyzXU7kVOq0ApI=
Subject key identifier: 2F:A6:EE:D6:3F:40:9C:05:42:04:6D:A0:7F:29:4C:7E:83:21:C1:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC7E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD96677E376E11F1B95BEBF3CE1D38B0.roa
Signing time: Mon 13 Apr 2026 19:26:59 +0000
ROA not before: Mon 13 Apr 2026 19:26:54 +0000
ROA not after: Sun 17 May 2026 19:26:54 +0000
asID: 22773
IP address blocks: 156.242.20.0/23 maxlen: 24
156.242.22.0/24 maxlen: 24
156.242.24.0/23 maxlen: 24
156.243.35.0/24 maxlen: 24
156.243.36.0/23 maxlen: 24
156.243.82.0/24 maxlen: 24
156.243.84.0/24 maxlen: 24
156.243.96.0/22 maxlen: 24
156.243.130.0/24 maxlen: 24
156.244.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109694 (0x1ac7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 19:26:54 2026 GMT
Not After : May 17 19:26:54 2026 GMT
Subject: CN=69dd4383-2404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:80:19:a7:e4:a3:27:44:93:94:b9:34:c1:27:
49:ce:90:8a:cf:5e:7b:51:76:f5:e5:90:6c:cf:60:
95:74:e8:aa:70:5a:1c:eb:12:f2:33:a2:ec:e5:1b:
7f:63:a3:83:31:db:1c:73:64:68:b8:e6:6c:20:b4:
0c:43:0c:96:46:67:e9:73:a1:e7:5f:6a:fa:98:cd:
e3:aa:7c:0e:30:73:97:2d:f3:a6:32:d2:f9:a6:08:
0b:05:cb:73:e5:93:46:e2:4d:f3:b0:a3:51:91:90:
3b:c9:3d:c4:f1:9b:be:4b:bf:f8:11:66:27:25:d9:
ea:b0:e0:21:01:9d:e7:a4:49:60:10:87:5f:1c:f4:
a5:cf:de:f8:27:a0:32:50:2f:6b:7e:e5:09:ac:f7:
7c:7f:4f:b1:d2:17:62:5c:88:74:b5:66:e1:10:6d:
d8:9b:de:e4:52:86:ef:ed:79:4b:65:4a:d2:05:80:
21:66:56:a0:5f:bb:32:d8:ac:f5:89:34:b2:39:5a:
4d:b6:e2:47:b3:bd:2d:db:88:84:c6:31:71:d9:6e:
68:42:11:4e:eb:53:a4:40:81:40:b7:1d:2a:9d:df:
e8:01:95:1f:7a:4e:f5:17:69:99:f4:10:34:00:a0:
a8:ab:7b:8d:61:01:d2:1f:10:5a:db:28:3f:f2:82:
33:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A6:EE:D6:3F:40:9C:05:42:04:6D:A0:7F:29:4C:7E:83:21:C1:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD96677E376E11F1B95BEBF3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.20.0-156.242.22.255
156.242.24.0/23
156.243.35.0-156.243.37.255
156.243.82.0/24
156.243.84.0/24
156.243.96.0/22
156.243.130.0/24
156.244.144.0/20
Signature Algorithm: sha256WithRSAEncryption
04:be:89:ed:c9:08:74:41:1d:8c:29:4d:b0:51:cb:47:f5:c4:
69:92:e1:25:56:ab:1e:5e:5f:a9:90:6e:e3:53:99:85:0d:90:
27:e1:71:0e:9f:54:e5:ae:79:7f:db:58:e0:56:9d:5f:a8:6f:
8a:dc:56:cb:a0:db:64:be:b1:fb:76:c0:d4:4b:87:2e:f6:31:
79:72:2d:cc:4c:a4:69:85:09:f0:a4:c9:69:a0:e2:d7:2a:37:
fe:57:6d:a4:49:51:b8:2f:13:9c:23:c5:fa:84:de:be:8e:5f:
9b:ca:bb:9a:5d:e3:01:d2:18:49:b4:b1:64:5f:bc:25:64:da:
1a:2e:eb:cb:f7:cb:f3:35:bb:ae:69:98:38:8f:87:a6:9c:8d:
2d:0f:05:dd:72:cb:03:45:a8:b7:7f:9f:b2:93:c5:19:11:44:
40:69:e2:77:b1:45:b8:df:10:3c:8e:b3:ed:f6:79:c4:ef:35:
d8:87:26:40:bc:da:f7:65:2c:c3:31:f0:2b:c9:d3:d6:c3:40:
38:9b:58:8b:44:12:cb:58:55:8f:e9:1a:1a:fa:b2:61:3e:fc:
42:fd:4f:be:8f:84:8f:8a:70:cb:6f:79:c8:44:52:13:87:d8:
88:8a:12:89:9f:d3:38:e1:fe:c0:d1:f9:32:e5:2e:2d:00:d6:
83:c4:18:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:41:27 2026 by rpki-client