Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F50890376A11F1993B67DCCE1D38B0.roa
File: F0F50890376A11F1993B67DCCE1D38B0.roa (raw, json)
Hash identifier: QtkDPP841qfQty6/LKmHgknOZGzaOx6HvCwbR1H1KF0=
Subject key identifier: E9:98:6D:75:12:0F:FF:0D:FA:10:B2:57:40:6F:56:41:B8:F5:22:B5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC76
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F50890376A11F1993B67DCCE1D38B0.roa
Signing time: Mon 13 Apr 2026 18:59:50 +0000
ROA not before: Mon 13 Apr 2026 18:59:41 +0000
ROA not after: Sat 16 May 2026 18:59:41 +0000
asID: 22773
IP address blocks: 156.238.153.0/24 maxlen: 24
156.238.154.0/24 maxlen: 24
156.238.155.0/24 maxlen: 24
156.238.156.0/24 maxlen: 24
156.238.157.0/24 maxlen: 24
156.238.158.0/24 maxlen: 24
156.238.159.0/24 maxlen: 24
156.238.160.0/24 maxlen: 24
156.242.17.0/24 maxlen: 24
156.242.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109686 (0x1ac76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 18:59:41 2026 GMT
Not After : May 16 18:59:41 2026 GMT
Subject: CN=69dd3d26-e213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9e:db:03:16:6d:73:d9:80:54:e3:91:5b:17:
da:87:9e:22:f6:98:ad:3c:43:6f:25:8d:06:d1:d3:
ae:52:67:54:62:78:df:fd:d8:5e:76:7f:f6:2d:c5:
25:39:d3:d4:17:f6:e6:90:33:a3:4d:01:82:73:1d:
7e:cc:1b:b5:9b:b1:55:ba:b9:ee:06:4f:f0:6c:9f:
e4:00:c1:36:1a:4c:5c:ab:13:c0:b0:2e:1b:cb:07:
0b:04:de:a9:52:ff:25:8a:04:58:9f:a6:cd:cb:ee:
11:bb:bd:a0:0f:b8:7b:90:45:8e:36:8a:b7:5d:da:
9d:5d:7a:fd:2d:6e:2a:cb:5f:a0:b0:73:05:cd:7c:
16:cc:47:96:36:c4:6d:d0:29:15:be:50:85:fa:24:
e1:3f:05:97:2a:2c:73:58:6d:21:f2:20:fe:4b:b2:
c5:4f:90:ad:7e:db:49:a4:40:cb:3b:75:52:7e:5f:
cf:5f:42:53:1f:9c:0a:8c:cc:dd:3b:ec:cb:f4:1a:
67:9a:d5:87:39:e4:b7:15:3b:f1:59:65:4b:39:1e:
41:60:96:1b:30:c9:33:14:be:28:cd:15:54:c8:7b:
5a:fe:16:01:ff:09:da:16:9c:ed:73:91:72:7f:4f:
ca:19:2c:ff:23:22:67:6f:83:a2:6e:e2:27:c8:3f:
40:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:98:6D:75:12:0F:FF:0D:FA:10:B2:57:40:6F:56:41:B8:F5:22:B5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F50890376A11F1993B67DCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.153.0-156.238.160.255
156.242.17.0-156.242.18.255
Signature Algorithm: sha256WithRSAEncryption
4b:b5:ef:bb:42:36:ab:49:d3:3b:e0:84:53:91:d7:d8:9c:28:
6e:6a:3c:12:8d:67:f7:86:31:fc:de:29:e1:0f:be:49:ba:f6:
34:bf:ab:af:44:39:34:8a:9a:aa:14:55:43:ee:c2:06:f7:73:
d5:a1:67:29:9a:52:ef:43:83:4f:e0:ea:3c:54:65:ee:cc:d9:
cc:28:77:12:ca:13:53:bf:31:ee:cf:8d:16:5e:94:bd:f3:f4:
69:a4:dc:db:52:5d:c2:51:ee:3e:03:71:f2:c6:5d:31:c2:fd:
b9:0d:26:4c:39:00:dd:ef:5b:75:f1:f2:23:ec:91:ab:22:98:
3d:b9:14:95:62:d5:95:af:fb:d9:a5:5f:a6:6f:8f:cd:10:2c:
74:18:2e:da:0c:4d:2d:f5:62:d9:a2:1a:02:91:8d:8a:78:7b:
ff:a2:7d:aa:ff:c3:d2:60:ce:a9:d5:eb:08:8c:b2:26:aa:b4:
60:21:e5:42:d9:c4:91:88:32:8a:36:12:1c:2e:f1:1e:4d:13:
26:34:29:3b:0f:d3:04:f3:b0:ce:f0:74:e2:05:25:73:43:f7:
19:ac:34:44:ec:8b:41:ab:2b:e1:3d:bc:a6:f1:86:7a:e7:5b:
b2:6a:f1:34:e9:ce:e1:1c:fc:9f:cc:60:60:92:3f:4c:fb:d2:
94:1d:d5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:13:32 2026 by rpki-client