Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7112D8C341B11F19F675CCBCE1D38B0.roa
File: F7112D8C341B11F19F675CCBCE1D38B0.roa (raw, json)
Hash identifier: HfnZ/aEGZINSugUJdS7b29cPQAyGLGEy5q0AOleUKKU=
Subject key identifier: 99:D2:F4:10:9E:5F:84:14:D0:E7:8F:3A:3E:2D:8D:DC:CD:2E:6A:C6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB67
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7112D8C341B11F19F675CCBCE1D38B0.roa
Signing time: Thu 09 Apr 2026 13:56:54 +0000
ROA not before: Thu 09 Apr 2026 13:56:50 +0000
ROA not after: Sun 19 Apr 2026 13:56:50 +0000
asID: 401783
IP address blocks: 156.249.166.0/24 maxlen: 24
156.249.167.0/24 maxlen: 24
156.249.170.0/24 maxlen: 24
156.249.183.0/24 maxlen: 24
156.249.185.0/24 maxlen: 24
156.249.187.0/24 maxlen: 24
156.249.190.0/24 maxlen: 24
156.249.191.0/24 maxlen: 24
156.253.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 13:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109415 (0x1ab67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 13:56:50 2026 GMT
Not After : Apr 19 13:56:50 2026 GMT
Subject: CN=69d7b026-0022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cd:be:e7:cb:f4:3e:43:27:c9:9c:9d:1d:85:
6e:a7:e0:2c:ed:ac:0f:3b:75:42:7a:06:e4:bd:5e:
35:a0:5d:bf:cd:61:8b:3a:12:39:6a:76:f6:4a:69:
e7:f0:54:99:47:17:0d:8f:1d:f5:e4:b4:26:35:99:
f3:b0:dd:5b:d2:02:a9:cc:8f:88:1f:2c:24:bf:72:
73:39:80:5b:22:b1:26:88:9f:db:39:44:f3:af:fa:
aa:b2:93:70:ba:26:66:bd:1a:71:32:b2:1f:82:4b:
00:88:1d:52:f4:8d:77:5f:81:b9:a9:ce:64:7c:bd:
4b:b6:bd:80:ca:d2:bd:90:b6:3c:e0:3f:cf:78:4a:
46:5d:2b:31:d0:0f:25:eb:52:1f:b8:bb:fc:df:d2:
d4:3b:a0:5e:06:be:a5:02:80:39:cb:8a:48:44:b1:
dc:18:6f:1b:47:c9:82:19:3e:b5:77:7c:b3:10:b4:
90:4e:ab:7e:42:6b:72:3f:80:39:cd:0d:9a:44:ff:
30:ac:7e:78:c5:e7:67:9f:95:d0:c4:b2:b7:89:56:
d4:5b:ca:11:5c:3a:69:43:b2:5a:fb:c8:7b:23:32:
74:d3:56:2b:c7:d9:70:ae:3d:61:e3:73:42:16:0a:
1f:87:20:59:df:58:f9:bf:12:cd:ef:65:33:72:60:
5c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D2:F4:10:9E:5F:84:14:D0:E7:8F:3A:3E:2D:8D:DC:CD:2E:6A:C6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7112D8C341B11F19F675CCBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.166.0/23
156.249.170.0/24
156.249.183.0/24
156.249.185.0/24
156.249.187.0/24
156.249.190.0/23
156.253.187.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:5d:a8:23:db:50:80:96:5e:81:d2:50:78:8d:92:e1:51:b8:
19:ee:d0:81:fd:55:1f:c8:41:c4:d1:be:5d:3d:55:a4:15:e8:
fd:a3:07:46:89:30:05:75:9c:4a:7f:20:a4:8d:06:a1:1b:cf:
32:8e:61:5d:f4:d8:82:e5:dc:3e:5c:5e:5b:08:5d:d4:d4:47:
ea:13:80:85:e2:2c:25:97:7a:c2:06:07:59:da:48:4a:d5:4a:
1b:8b:f9:cc:39:18:08:5a:45:74:40:2d:96:3d:c9:ff:27:4f:
38:d7:26:20:70:c5:17:e0:f8:98:b1:87:97:75:3a:e8:ff:db:
9e:66:5c:87:4c:93:1e:27:68:6c:15:2d:c4:46:0a:7e:f1:e6:
66:57:4b:ca:bd:26:82:43:fa:bc:91:89:04:82:d1:af:cc:01:
d4:ef:b8:5c:80:f9:f8:d1:0a:3a:2f:1c:3c:26:dd:ba:f3:13:
a7:b4:14:ac:5f:94:03:7d:9e:0d:55:97:e8:57:83:84:b1:11:
5b:af:81:af:eb:c5:5b:9a:fc:7a:78:29:d4:c0:10:d5:e7:b7:
98:be:9e:b8:d6:6c:8d:29:a0:a8:67:5d:ff:3f:f8:39:ea:91:
02:d7:91:f7:68:62:04:86:93:d7:dc:38:f4:7c:bb:84:c5:a6:
13:27:9e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:06:36 2026 by rpki-client