Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13BCB1364C5911F19ADF18A3CE1D38B0.roa
File: 13BCB1364C5911F19ADF18A3CE1D38B0.roa (raw, json)
Hash identifier: Xkl9fxRClYb6zh15rYSU1Ffs5AM8YpYAgJrxd/JU7Io=
Subject key identifier: 9A:95:C5:1C:47:1E:6B:66:6C:7D:A6:50:8B:11:B4:2B:D9:FE:BF:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B33D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13BCB1364C5911F19ADF18A3CE1D38B0.roa
Signing time: Sun 10 May 2026 10:14:49 +0000
ROA not before: Sun 10 May 2026 10:14:45 +0000
ROA not after: Tue 16 Jun 2026 10:14:45 +0000
asID: 401615
IP address blocks: 156.226.170.0/23 maxlen: 24
156.231.140.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111421 (0x1b33d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 10 10:14:45 2026 GMT
Not After : Jun 16 10:14:45 2026 GMT
Subject: CN=6a005a99-5634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d2:c7:8d:fd:a8:5a:d5:da:fd:31:27:92:e6:
98:cb:c8:d5:84:68:0c:15:0d:92:0f:1d:ff:78:b5:
7e:cf:c0:d7:b3:44:90:c2:5b:e8:ee:6e:15:ff:9f:
30:db:d1:e1:a4:30:2e:b5:6d:2a:80:fe:1e:ad:d0:
0d:61:36:1f:53:7e:cf:17:f5:09:5d:52:26:1f:38:
72:28:90:54:b3:8b:1d:a1:15:9a:ba:41:a4:74:c7:
b3:64:ab:07:95:66:f3:f2:38:f7:8e:fa:5c:0f:b6:
3f:cd:6f:00:be:f3:38:5b:c2:ee:59:53:68:12:d2:
ac:28:48:12:50:34:92:14:f2:06:52:a4:de:9e:25:
a2:bf:81:64:5a:44:c7:fe:97:3e:9e:b5:58:a3:61:
2f:09:5b:29:7c:5f:1f:4f:72:c3:df:db:33:b6:6d:
55:d4:e1:4d:b2:58:1c:3d:41:b1:19:45:95:14:9c:
b9:6f:9f:df:f1:68:ac:aa:37:e8:27:91:4f:27:81:
ec:4f:6f:90:d2:02:00:83:eb:b3:7a:86:68:e5:cf:
b3:a8:3d:77:1b:61:57:3c:6a:72:35:f9:b5:de:97:
07:1f:39:a7:d8:5b:7b:37:ac:de:43:34:d4:2c:a6:
e5:3e:ac:ea:2b:92:a8:2d:ea:d2:94:46:8d:dd:d0:
ef:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:95:C5:1C:47:1E:6B:66:6C:7D:A6:50:8B:11:B4:2B:D9:FE:BF:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13BCB1364C5911F19ADF18A3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.170.0/23
156.231.140.0/23
Signature Algorithm: sha256WithRSAEncryption
98:d2:1e:46:8d:91:b4:2d:74:0c:12:1f:c6:e9:34:f1:50:74:
1f:95:6f:b0:b9:eb:e3:87:c5:6b:71:a2:e0:f5:7f:88:6c:c5:
d6:50:43:13:6f:50:ad:d7:bb:4c:4f:28:5f:ac:35:b2:8d:0c:
e7:23:20:12:d9:0d:50:4f:63:09:2b:66:2e:98:32:57:bb:45:
35:76:6b:2a:a5:29:4b:87:fa:15:57:11:86:be:f6:ab:e5:b6:
5f:75:5d:14:24:e6:a4:8d:5e:3e:90:65:b9:ae:c6:d3:d8:4f:
73:a7:e6:44:b7:9f:21:52:f3:ca:6c:1c:da:b7:5f:af:34:c9:
bc:d7:c5:84:7e:95:b0:ed:c7:45:2e:9f:96:ce:4f:d3:13:11:
8a:61:d7:91:67:ae:92:33:a4:c7:97:87:7a:53:87:3f:60:75:
7c:f3:10:7b:b4:e0:0c:e6:32:89:db:9a:57:69:90:54:33:72:
60:b1:bb:20:0e:a7:19:2b:06:3b:68:1e:f7:4f:e7:5a:a4:af:
ad:ca:b8:e3:f0:8c:bd:d3:50:b9:5d:75:4a:16:41:80:3c:b2:
07:2c:cc:f7:8d:d2:2e:81:44:c1:af:ef:52:d2:98:03:d8:ca:
5c:d3:5d:19:c4:c7:e7:23:3f:1a:e0:ca:20:eb:e1:48:89:68:
59:f6:ec:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:42:01 2026 by rpki-client