Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1876FE1C3FD311F190470FE8CE1D38B0.roa
File: 1876FE1C3FD311F190470FE8CE1D38B0.roa (raw, json)
Hash identifier: P6nTHoQ+R1Nhp0gX+FeeytC45EuEaZKVEnPaIc/Y8pw=
Subject key identifier: 4F:0A:43:23:50:E2:CF:86:A5:4E:34:50:FA:BC:AA:7A:35:08:22:B9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AEEC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1876FE1C3FD311F190470FE8CE1D38B0.roa
Signing time: Fri 24 Apr 2026 11:45:31 +0000
ROA not before: Fri 24 Apr 2026 11:45:26 +0000
ROA not after: Sun 31 May 2026 11:45:26 +0000
asID: 44559
IP address blocks: 156.233.35.0/24 maxlen: 24
156.233.40.0/24 maxlen: 24
156.233.46.0/24 maxlen: 24
156.233.49.0/24 maxlen: 24
156.233.50.0/24 maxlen: 24
156.243.227.0/24 maxlen: 24
156.243.231.0/24 maxlen: 24
156.243.233.0/24 maxlen: 24
156.243.234.0/24 maxlen: 24
156.243.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110316 (0x1aeec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 11:45:26 2026 GMT
Not After : May 31 11:45:26 2026 GMT
Subject: CN=69eb57db-8b4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e8:66:ff:f8:8f:cb:2c:a2:c7:73:a5:15:f8:
11:19:73:45:18:a0:65:63:ec:ca:02:fa:c0:e1:01:
87:33:4e:a0:c9:c4:53:7c:12:84:4f:ef:69:c2:34:
e4:b0:b6:65:b3:f7:3a:d3:20:68:15:e1:63:63:3d:
78:db:00:4d:0c:3f:51:88:1b:82:86:59:93:a0:94:
2d:30:ce:f3:74:89:a0:a7:73:5b:c3:90:b7:67:6a:
a2:fd:98:d7:52:fe:7d:6c:64:32:27:8c:04:e6:b7:
47:e3:2e:84:71:b1:58:61:88:90:9a:13:e6:28:93:
08:2a:ca:b4:97:6b:9a:f4:29:fe:48:3f:07:93:3c:
59:b5:ad:1e:38:61:02:2b:fc:e5:57:0b:68:1e:5f:
c6:ba:a6:cd:20:eb:14:21:c8:23:e5:8f:86:69:cf:
e1:f8:b0:7b:85:74:60:45:90:e5:a9:60:06:3d:f2:
b7:91:d1:4a:40:d6:26:7a:0a:91:45:32:65:43:99:
36:00:2f:07:e4:28:9a:88:aa:22:8e:3c:c4:8b:cc:
2f:4f:39:46:23:ed:a3:4a:c0:2c:5c:7d:4f:6a:b6:
09:f6:86:3f:71:ac:0a:be:6e:d2:cd:28:4f:ef:4d:
a1:b2:fd:ea:91:04:03:ff:f8:63:c8:3a:02:df:1e:
8b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0A:43:23:50:E2:CF:86:A5:4E:34:50:FA:BC:AA:7A:35:08:22:B9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1876FE1C3FD311F190470FE8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.35.0/24
156.233.40.0/24
156.233.46.0/24
156.233.49.0-156.233.50.255
156.243.227.0/24
156.243.231.0/24
156.243.233.0-156.243.234.255
156.243.240.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a3:18:42:22:60:4c:a1:07:90:e1:c0:70:97:40:b5:83:28:
e4:01:65:0b:22:cd:0b:21:c3:62:a3:00:be:f5:a9:61:8b:60:
98:61:55:de:3e:ed:e8:9c:1a:1a:eb:19:91:2f:dd:d5:c0:76:
2c:05:4e:cc:88:cc:7f:e4:8b:8a:c1:5d:63:30:cc:12:02:82:
a3:34:ba:3a:ac:bb:dc:c3:0b:dc:c0:7a:36:42:a2:46:a9:ee:
74:ee:d0:0e:3a:1b:55:f6:7c:9e:8d:13:5f:d0:d4:56:f1:0f:
50:f8:e7:3c:dc:70:e5:00:d8:72:39:a6:7f:7a:d0:31:70:85:
68:44:b4:f2:91:5a:5a:e8:d4:66:ea:bb:01:b2:cf:58:ba:7a:
a6:7f:40:da:d3:7d:55:5f:bb:bc:d9:57:d2:b2:2e:cd:e2:0a:
ba:2c:b0:15:cc:28:96:c0:27:26:37:b8:6b:92:7b:63:99:ec:
c9:e9:2f:dd:c3:71:d8:80:a4:43:53:45:24:10:d1:1c:9f:78:
d3:72:1b:e9:79:68:9d:7e:1b:bb:41:d2:cc:4f:40:91:95:0a:
59:ac:9b:e5:e8:60:86:2e:a5:6e:cb:47:5a:5b:14:84:e3:04:
77:c6:18:a4:23:8f:76:19:37:4b:a5:d1:da:be:b2:48:08:3f:
9d:6b:4a:86
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgIDAa7sMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDI0MTE0NTI2WhcNMjYwNTMxMTE0NTI2WjAYMRYw
FAYDVQQDEw02OWViNTdkYi04YjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1ehm//iPyyyix3OlFfgRGXNFGKBlY+zKAvrA4QGHM06gycRTfBKET+9p
wjTksLZls/c60yBoFeFjYz142wBNDD9RiBuChlmToJQtMM7zdImgp3Nbw5C3Z2qi
/ZjXUv59bGQyJ4wE5rdH4y6EcbFYYYiQmhPmKJMIKsq0l2ua9Cn+SD8HkzxZta0e
OGECK/zlVwtoHl/GuqbNIOsUIcgj5Y+Gac/h+LB7hXRgRZDlqWAGPfK3kdFKQNYm
egqRRTJlQ5k2AC8H5CiaiKoijjzEi8wvTzlGI+2jSsAsXH1ParYJ9oY/cawKvm7S
zShP702hsv3qkQQD//hjyDoC3x6LuwIDAQABo4IC3DCCAtgwHQYDVR0OBBYEFE8K
QyNQ4s+GpU40UPq8qno1CCK5MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xODc2RkUxQzNGRDMxMUYxOTA0NzBGRThDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MFkGCCsGAQUFBwEHAQH/BEowSDBGBAIAATBAAwQAnOkjAwQAnOkoAwQAnOkuMAwD
BACc6TEDBACc6TIDBACc8+MDBACc8+cwDAMEAJzz6QMEAJzz6gMEAJzz8DANBgkq
hkiG9w0BAQsFAAOCAQEAj6MYQiJgTKEHkOHAcJdAtYMo5AFlCyLNCyHDYqMAvvWp
YYtgmGFV3j7t6JwaGusZkS/d1cB2LAVOzIjMf+SLisFdYzDMEgKCozS6Oqy73MML
3MB6NkKiRqnudO7QDjobVfZ8no0TX9DUVvEPUPjnPNxw5QDYcjmmf3rQMXCFaES0
8pFaWujUZuq7AbLPWLp6pn9A2tN9VV+7vNlX0rIuzeIKuiywFcwolsAnJje4a5J7
Y5nsyekv3cNx2ICkQ1NFJBDRHJ9403Ib6XlonX4bu0HSzE9AkZUKWayb5ehghi6l
bstHWlsUhOMEd8YYpCOPdhk3S6XR2r6ySAg/nWtKhg==
-----END CERTIFICATE-----
Generated at Wed May 13 07:11:18 2026 by rpki-client