Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9C1497E108511F198DBE8A5DAE4EC9C.roa
File: D9C1497E108511F198DBE8A5DAE4EC9C.roa (raw, json)
Hash identifier: M8rM66Qj9Oh7ZK+eve6a4nLYrvlNv4R92/CDQrLqn9g=
Subject key identifier: 63:62:94:0D:53:5A:58:72:DF:7F:86:2C:F6:3D:55:3B:B8:84:94:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019FC1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9C1497E108511F198DBE8A5DAE4EC9C.roa
Signing time: Mon 23 Feb 2026 07:04:09 +0000
ROA not before: Mon 23 Feb 2026 07:04:06 +0000
ROA not after: Fri 23 Feb 2029 07:04:06 +0000
asID: 17561
IP address blocks: 156.224.64.0/24 maxlen: 24
156.224.65.0/24 maxlen: 24
156.224.66.0/24 maxlen: 24
156.224.67.0/24 maxlen: 24
156.224.68.0/24 maxlen: 24
156.224.69.0/24 maxlen: 24
156.224.70.0/24 maxlen: 24
156.224.71.0/24 maxlen: 24
156.225.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106433 (0x19fc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 23 07:04:06 2026 GMT
Not After : Feb 23 07:04:06 2029 GMT
Subject: CN=699bfbe9-3547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:ba:ae:07:0f:81:a3:7f:ad:58:7d:4b:23:
66:51:15:72:2c:76:02:b6:92:02:79:42:93:59:b5:
ee:fe:ce:7c:94:c5:ff:7a:2f:a1:3c:fc:8f:8a:5f:
a0:e7:f1:2a:21:41:f5:18:30:47:3e:c3:ca:03:bf:
77:07:01:8e:f3:da:e6:77:9b:54:9d:e8:97:b7:be:
ff:15:0c:4b:05:31:60:42:e5:9b:11:16:ac:8c:b8:
2f:e7:f2:0a:09:ea:8b:50:85:b0:86:6e:5f:78:1e:
56:51:9f:d2:70:b1:44:2f:7b:4e:36:86:78:50:43:
85:fa:8a:69:10:4a:ac:4d:18:dc:7b:fa:e6:ff:61:
da:69:86:1a:a7:21:d5:10:e0:91:f6:a1:4a:8b:15:
1a:d0:d1:0e:5e:bd:a2:54:06:55:93:ab:ef:c2:36:
65:c4:ed:8e:48:a7:fc:b5:33:8a:6e:75:c1:ec:69:
bc:8b:2e:ef:a6:91:36:8b:56:b7:2a:d6:71:5e:6c:
2c:78:4b:e9:c6:a9:42:df:02:f8:53:3e:7d:d0:d7:
6b:18:28:dd:04:40:99:5f:aa:fc:99:ee:d7:85:77:
09:72:c5:3d:ac:df:24:47:f0:c0:23:75:fd:75:f5:
25:7b:c6:ba:89:6f:1d:7e:80:76:66:e7:18:e1:84:
8a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:62:94:0D:53:5A:58:72:DF:7F:86:2C:F6:3D:55:3B:B8:84:94:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9C1497E108511F198DBE8A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.64.0/21
156.225.178.0/24
Signature Algorithm: sha256WithRSAEncryption
59:98:7b:e4:a8:5f:ef:67:48:cb:30:c5:86:fe:3d:de:18:8f:
6e:14:e5:eb:8c:f1:f0:46:7f:31:59:b2:12:7d:f2:bd:b8:8c:
62:d0:97:9a:88:9b:09:f0:a1:e2:f3:66:63:98:b2:f6:f2:9f:
0f:62:0b:60:77:8f:36:8f:f2:ce:07:ff:78:83:f2:42:13:bc:
e9:de:29:d5:3a:16:91:d0:a0:e8:ff:8f:73:cc:f5:38:8d:17:
64:7b:34:88:c1:a1:65:ba:39:7d:47:c5:44:1e:b9:72:d1:38:
4a:24:f0:78:db:5d:ee:6b:8e:2c:70:c3:ba:35:a0:1d:1c:6a:
41:fa:e9:af:0f:5e:fb:b8:3a:c8:c0:57:85:4e:6a:fa:9b:7b:
29:23:1e:03:af:6a:67:98:04:72:ab:f4:c8:ca:42:d7:37:87:
e8:45:87:21:05:88:33:7d:1a:f0:4b:ca:3b:21:89:7c:94:ce:
2a:e6:42:05:a4:53:3b:2e:02:ef:dc:09:59:8f:13:ce:06:4f:
cb:ab:43:98:74:eb:96:fb:c6:eb:b1:a6:9b:c9:ce:d6:25:5a:
90:58:ec:af:3e:7c:6f:9b:1e:16:c5:0b:2b:d3:a2:29:87:56:
c5:3b:18:e5:41:d6:3a:7e:20:62:de:17:42:a9:57:83:ba:a0:
f1:2c:d6:e9
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgIDAZ/BMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjIzMDcwNDA2WhcNMjkwMjIzMDcwNDA2WjAYMRYw
FAYDVQQDEw02OTliZmJlOS0zNTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt7e6rgcPgaN/rVh9SyNmURVyLHYCtpICeUKTWbXu/s58lMX/ei+hPPyP
il+g5/EqIUH1GDBHPsPKA793BwGO89rmd5tUneiXt77/FQxLBTFgQuWbERasjLgv
5/IKCeqLUIWwhm5feB5WUZ/ScLFEL3tONoZ4UEOF+oppEEqsTRjce/rm/2HaaYYa
pyHVEOCR9qFKixUa0NEOXr2iVAZVk6vvwjZlxO2OSKf8tTOKbnXB7Gm8iy7vppE2
i1a3KtZxXmwseEvpxqlC3wL4Uz590NdrGCjdBECZX6r8me7XhXcJcsU9rN8kR/DA
I3X9dfUle8a6iW8dfoB2ZucY4YSK7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNi
lA1TWlhy33+GLPY9VTu4hJSlMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EOUMxNDk3RTEwODUxMUYxOThEQkU4QTVEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDnOBAAwQAnOGyMA0GCSqGSIb3
DQEBCwUAA4IBAQBZmHvkqF/vZ0jLMMWG/j3eGI9uFOXrjPHwRn8xWbISffK9uIxi
0JeaiJsJ8KHi82ZjmLL28p8PYgtgd482j/LOB/94g/JCE7zp3inVOhaR0KDo/49z
zPU4jRdkezSIwaFlujl9R8VEHrly0ThKJPB4213ua44scMO6NaAdHGpB+umvD177
uDrIwFeFTmr6m3spIx4Dr2pnmARyq/TIykLXN4foRYchBYgzfRrwS8o7IYl8lM4q
5kIFpFM7LgLv3AlZjxPOBk/Lq0OYdOuW+8brsaabyc7WJVqQWOyvPnxvmx4WxQsr
06Iph1bFOxjlQdY6fiBi3hdCqVeDuqDxLNbp
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:08:34 2026 by rpki-client