Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CA2F1F8491E11F197231AFDCE1D38B0.roa
File: 2CA2F1F8491E11F197231AFDCE1D38B0.roa (raw, json)
Hash identifier: bK14LWN+I/AIPj9fUEwqkIOzBm98VrrLBstbsPhEIvM=
Subject key identifier: 9D:AB:12:5C:CF:FF:51:CD:15:4F:6C:DB:83:88:69:8A:A8:73:F7:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B1A8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CA2F1F8491E11F197231AFDCE1D38B0.roa
Signing time: Wed 06 May 2026 07:35:38 +0000
ROA not before: Wed 06 May 2026 07:35:33 +0000
ROA not after: Sun 06 May 2029 07:35:33 +0000
asID: 17561
IP address blocks: 156.235.158.0/24 maxlen: 24
156.235.159.0/24 maxlen: 24
156.235.160.0/24 maxlen: 24
156.235.161.0/24 maxlen: 24
156.235.162.0/24 maxlen: 24
156.235.163.0/24 maxlen: 24
156.235.164.0/24 maxlen: 24
156.235.165.0/24 maxlen: 24
156.235.166.0/24 maxlen: 24
156.235.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111016 (0x1b1a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 07:35:33 2026 GMT
Not After : May 6 07:35:33 2029 GMT
Subject: CN=69faef49-51b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b4:aa:a3:cd:c3:48:a8:6e:f1:6e:14:23:ae:
a6:49:84:70:ad:da:1f:39:56:6c:9c:3d:54:01:99:
6a:74:8c:23:1e:63:ba:43:e7:f2:50:c6:d4:db:c7:
24:9b:20:59:2a:57:1b:1d:14:df:a9:f4:49:a1:29:
45:d6:75:45:8f:f6:ac:93:0f:bf:5a:90:2a:ba:d9:
a3:64:67:e4:5d:f1:76:6a:3e:76:ce:2c:54:66:c2:
06:11:35:ab:53:a4:27:89:40:db:9e:b3:06:e6:d3:
25:0d:58:b7:c2:ce:ab:2b:17:93:39:4c:d3:d8:5f:
19:d0:0a:95:c1:4e:7c:26:55:ac:9e:81:51:71:1c:
73:cf:db:bc:86:1b:26:9a:2b:d2:57:54:e4:6e:6a:
6a:85:87:0f:d4:fc:cf:35:b3:b5:00:5e:bf:5a:5f:
4b:03:72:c0:19:a4:97:db:3f:73:86:42:7e:12:eb:
4e:d1:45:9a:0b:7c:a2:ef:b2:a1:a3:fb:40:b6:61:
55:2c:9b:10:19:4b:34:9f:8a:49:1f:11:e6:5d:bb:
81:ca:75:3e:f1:e5:8b:4d:17:7a:e9:49:32:21:dd:
33:8f:12:80:49:d8:ae:f2:dc:fe:ae:20:23:69:37:
3f:b1:98:29:a2:bb:a0:28:32:ba:8c:ce:3b:96:f3:
8d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AB:12:5C:CF:FF:51:CD:15:4F:6C:DB:83:88:69:8A:A8:73:F7:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CA2F1F8491E11F197231AFDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.158.0-156.235.167.255
Signature Algorithm: sha256WithRSAEncryption
1e:2a:b1:0d:49:4b:72:c7:32:a1:65:74:5a:2c:34:62:93:8d:
ba:d5:84:af:28:79:b3:b2:d7:e4:57:21:ec:2c:ec:f7:1c:73:
b5:f9:12:b3:02:55:b1:e8:f3:08:01:45:57:3c:56:df:c7:80:
5c:eb:63:29:04:06:74:2b:2c:22:b2:92:bb:0e:5d:38:36:dd:
de:e3:df:f2:52:2a:44:96:cb:2c:4f:5b:61:98:43:ad:7c:35:
6f:ee:3f:ac:9e:8e:66:fb:b0:42:93:b1:89:6b:c9:a4:ae:0e:
9a:72:bc:99:e6:f2:e2:64:7f:72:11:06:15:27:da:92:50:2e:
a4:68:05:8c:90:d8:5a:4c:5a:90:a0:6a:03:1e:56:d0:cf:60:
d7:2c:b6:b0:3c:e5:11:e0:4b:47:84:62:c5:e7:4d:5a:6a:bb:
2b:98:14:e6:33:ab:29:65:52:e6:70:3f:f9:f1:51:5b:c4:38:
3b:46:32:b1:45:87:35:f0:46:f0:37:df:21:c5:d4:d3:7d:e6:
21:04:92:b8:df:d5:89:a8:0e:55:78:db:11:ef:b1:ed:30:d1:
38:8f:3a:7e:ff:00:3b:68:3c:06:92:fc:d8:cc:59:ea:71:fc:
42:22:a1:5c:89:cf:b6:3f:1f:ec:f6:ec:8f:cf:f1:85:c0:ae:
1e:c0:93:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:48:24 2026 by rpki-client