Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12BA34CA1EAF11F1B5DFF7B7DAE4EC9C.roa
File: 12BA34CA1EAF11F1B5DFF7B7DAE4EC9C.roa (raw, json)
Hash identifier: hKTIDqXA39kQxpE6dcHWFv662Y+KcqnxlN3VVzFxtdQ=
Subject key identifier: CB:28:0C:B4:B4:C9:A1:58:D8:C1:A9:93:4A:63:CF:0E:DA:A3:D4:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A4D7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12BA34CA1EAF11F1B5DFF7B7DAE4EC9C.roa
Signing time: Fri 13 Mar 2026 07:34:31 +0000
ROA not before: Fri 13 Mar 2026 07:34:25 +0000
ROA not after: Mon 20 Apr 2026 07:34:25 +0000
asID: 211265
IP address blocks: 156.231.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107735 (0x1a4d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 13 07:34:25 2026 GMT
Not After : Apr 20 07:34:25 2026 GMT
Subject: CN=69b3be07-308f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:72:1e:90:de:19:95:fe:0a:79:15:83:d0:80:
1e:03:e8:8f:fb:59:0a:1e:d6:64:b3:1d:ea:55:73:
94:70:1c:a2:af:b3:09:6a:7c:b3:cf:f1:29:83:9b:
52:56:b2:6c:3e:e0:c5:a2:8d:4c:d1:7f:11:49:c0:
75:2c:a6:25:3b:62:65:8a:a0:9d:9b:70:bb:d5:89:
13:41:b4:50:6d:fe:20:8f:41:91:04:c7:01:fd:71:
71:97:28:cd:4c:83:84:dd:0d:90:bc:01:d3:af:be:
3c:d7:cf:20:95:11:7f:c2:81:78:55:58:2b:92:35:
76:78:7a:5d:c3:c3:ed:62:79:29:13:47:26:0d:b0:
76:c8:b8:3a:b1:20:bb:9a:fd:97:e2:2a:3e:62:51:
d9:dc:79:b3:09:0f:01:a6:0e:b5:40:8f:58:95:7a:
58:30:3a:21:4b:49:d8:dc:c9:e0:1a:5a:82:d3:10:
3e:54:2b:92:9c:5f:3e:d0:8e:1f:19:e2:36:52:38:
b9:b5:1c:ff:c4:2a:1c:75:66:f8:89:79:09:16:ce:
66:68:99:c3:06:3e:fd:bc:f5:ba:12:68:8e:f4:62:
e5:d5:d6:39:3a:13:b4:3b:c4:00:27:68:18:79:71:
7e:7e:f5:f0:74:08:29:64:f8:33:db:bb:c0:ea:99:
c1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:28:0C:B4:B4:C9:A1:58:D8:C1:A9:93:4A:63:CF:0E:DA:A3:D4:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12BA34CA1EAF11F1B5DFF7B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.163.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:1d:d6:cc:84:31:bd:8a:2b:c8:f4:ea:b1:d1:1a:a4:44:6d:
11:c1:42:86:f6:5c:b8:b5:cc:77:2f:52:4d:01:db:f3:58:5e:
ab:63:7e:2e:73:7a:1b:ce:4f:d0:4c:80:5e:82:74:c5:cc:d9:
ca:14:3e:17:3e:e5:98:9b:2c:a9:84:d9:0d:78:22:36:fc:2f:
3a:ef:28:de:d3:31:c3:cc:d0:53:5f:82:c8:22:21:30:2c:e0:
3e:40:0e:79:99:c7:bc:97:c2:a6:b9:ef:b7:36:f6:46:3c:d5:
50:92:1d:ce:13:b4:6f:46:a5:04:f3:4f:79:66:92:25:82:b3:
c7:9f:4f:db:ce:2d:35:02:f3:99:eb:ce:2d:80:f6:be:97:06:
17:d0:5c:f6:2b:3b:34:a1:90:1e:1b:bb:dd:63:cc:88:ec:2a:
6c:b7:b6:a8:c3:d9:b5:83:d8:5a:44:f2:91:89:82:31:5f:68:
87:e9:7e:ca:2c:cf:bf:a3:c0:e4:b8:ba:90:b9:70:2c:d4:86:
cf:40:40:ec:13:73:53:1b:78:fa:46:b2:8b:fd:42:ba:ec:a6:
be:2b:7f:77:e1:e8:ab:65:f2:88:19:e8:20:00:2f:02:14:fc:
18:7a:ae:45:2b:78:7b:fd:74:be:1b:93:36:d9:28:30:ca:21:
3e:52:f5:33
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAaTXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzEzMDczNDI1WhcNMjYwNDIwMDczNDI1WjAYMRYw
FAYDVQQDEw02OWIzYmUwNy0zMDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxHIekN4Zlf4KeRWD0IAeA+iP+1kKHtZksx3qVXOUcByir7MJanyzz/Ep
g5tSVrJsPuDFoo1M0X8RScB1LKYlO2JliqCdm3C71YkTQbRQbf4gj0GRBMcB/XFx
lyjNTIOE3Q2QvAHTr748188glRF/woF4VVgrkjV2eHpdw8PtYnkpE0cmDbB2yLg6
sSC7mv2X4io+YlHZ3HmzCQ8Bpg61QI9YlXpYMDohS0nY3MngGlqC0xA+VCuSnF8+
0I4fGeI2Uji5tRz/xCocdWb4iXkJFs5maJnDBj79vPW6EmiO9GLl1dY5OhO0O8QA
J2gYeXF+fvXwdAgpZPgz27vA6pnBiQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMso
DLS0yaFY2MGpk0pjzw7ao9SwMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xMkJBMzRDQTFFQUYxMUYxQjVERkY3QjdEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOejMA0GCSqGSIb3DQEBCwUA
A4IBAQCiHdbMhDG9iivI9Oqx0RqkRG0RwUKG9ly4tcx3L1JNAdvzWF6rY34uc3ob
zk/QTIBegnTFzNnKFD4XPuWYmyyphNkNeCI2/C867yje0zHDzNBTX4LIIiEwLOA+
QA55mce8l8Kmue+3NvZGPNVQkh3OE7RvRqUE8095ZpIlgrPHn0/bzi01AvOZ684t
gPa+lwYX0Fz2Kzs0oZAeG7vdY8yI7Cpst7aow9m1g9haRPKRiYIxX2iH6X7KLM+/
o8DkuLqQuXAs1IbPQEDsE3NTG3j6RrKL/UK67Ka+K3934eirZfKIGeggAC8CFPwY
eq5FK3h7/XS+G5M22SgwyiE+UvUz
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:53 2026 by rpki-client