Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/186ABFD83E4011F1AF4785C4CE1D38B0.roa
File: 186ABFD83E4011F1AF4785C4CE1D38B0.roa (raw, json)
Hash identifier: Mmj7G06IjdHAGUxPlK5RCeHVER3rnRZIB8ttR+3QxF8=
Subject key identifier: 29:DD:FA:93:B7:F5:23:C7:62:74:F5:1E:7A:13:99:49:39:4F:F8:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE05
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/186ABFD83E4011F1AF4785C4CE1D38B0.roa
Signing time: Wed 22 Apr 2026 11:40:44 +0000
ROA not before: Wed 22 Apr 2026 11:40:39 +0000
ROA not after: Thu 28 May 2026 11:40:39 +0000
asID: 48031
IP address blocks: 156.246.128.0/24 maxlen: 24
156.246.129.0/24 maxlen: 24
156.246.130.0/24 maxlen: 24
156.246.131.0/24 maxlen: 24
156.246.132.0/24 maxlen: 24
156.246.133.0/24 maxlen: 24
156.246.134.0/24 maxlen: 24
156.246.135.0/24 maxlen: 24
156.246.136.0/24 maxlen: 24
156.246.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110085 (0x1ae05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 11:40:39 2026 GMT
Not After : May 28 11:40:39 2026 GMT
Subject: CN=69e8b3bc-9901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:88:41:9b:26:87:3f:4c:59:47:fb:27:44:35:
9a:dd:39:eb:ac:e7:ad:03:2c:d8:6d:92:97:85:d5:
87:1b:68:2a:4f:e0:e6:8d:66:a9:6a:df:13:b2:cc:
b6:6d:2d:2f:5a:bc:f0:dc:67:5c:ec:73:f2:90:40:
a0:5a:92:ae:6c:72:f1:cb:4b:41:ce:64:26:f8:40:
d7:7c:2c:48:ee:96:6c:6b:c9:bf:f1:98:6e:0f:61:
07:f5:6d:8f:7d:73:1a:a3:d7:08:df:65:da:3e:7e:
2b:49:c8:e7:dc:9a:35:58:b5:2e:08:a9:8f:ee:78:
f8:43:ea:f2:e1:ec:c2:da:9e:36:03:8c:4c:a6:4b:
78:71:b7:65:fd:2d:43:78:7c:99:ca:f8:a2:f9:52:
78:99:33:61:02:bb:0f:b8:33:3c:02:ed:42:11:43:
73:74:2c:1a:4d:1c:4a:21:9e:8c:21:72:6c:8c:08:
54:02:69:06:f4:ae:27:26:84:30:91:b5:a0:aa:f8:
d1:f2:92:7f:77:00:17:9f:6d:0c:53:5f:a8:e1:38:
e8:c2:e0:55:8f:c1:5a:46:95:78:63:10:bd:e2:46:
7b:f1:d0:f2:f1:e9:11:aa:d1:66:12:47:01:7d:47:
4d:71:08:44:97:a3:9c:dc:00:51:2a:51:50:f4:e1:
8b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DD:FA:93:B7:F5:23:C7:62:74:F5:1E:7A:13:99:49:39:4F:F8:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/186ABFD83E4011F1AF4785C4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.128.0-156.246.137.255
Signature Algorithm: sha256WithRSAEncryption
9b:b5:d4:c4:ee:41:c8:3a:0b:8c:75:d0:bf:bc:31:b0:44:ee:
4a:db:f9:cf:84:88:ea:0a:7e:8a:cc:e2:93:36:20:f3:11:c7:
b1:ce:c0:ea:8f:1a:f9:c8:b7:54:27:e2:d6:a6:57:0e:1b:84:
47:1c:58:22:b6:b1:3f:4a:42:ee:d0:b9:ba:03:2e:55:98:20:
07:c1:5e:32:1d:78:42:4a:4a:f3:c3:da:8a:7d:e0:89:5c:4e:
8b:1c:c5:6c:a8:6d:61:16:b7:e9:5a:70:e5:aa:99:76:d4:24:
a6:eb:f8:61:cc:37:ff:c9:5e:fc:c2:18:db:54:85:0f:69:b3:
0b:7b:55:ff:17:55:c3:f4:5e:7d:c9:f3:2a:26:08:73:b8:c8:
15:70:7d:d2:09:23:46:65:0b:25:bf:9f:fe:fd:51:74:39:cc:
31:e5:31:07:93:01:52:41:40:7a:e7:3a:36:da:12:93:df:0b:
40:9d:59:69:00:12:cc:86:05:34:22:b9:90:b3:9c:5b:1c:51:
b5:0b:09:11:f4:e3:f1:27:13:37:ba:eb:59:ef:ed:c0:7b:14:
0b:02:94:2a:93:4f:db:08:56:93:29:d3:15:93:68:4c:2d:82:
ba:b4:6c:b2:e2:41:b2:1a:7d:4b:76:5f:88:42:12:12:a0:45:
09:5b:76:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:47:53 2026 by rpki-client