Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35A2D2D4446C11F1A7158FEECE1D38B0.roa
File: 35A2D2D4446C11F1A7158FEECE1D38B0.roa (raw, json)
Hash identifier: 18EkDPRyFOvSu8cjJSYxSrG9gNFbjE9Vp7bJLsRrnCA=
Subject key identifier: 66:BE:B4:93:D4:A9:E7:1F:42:E1:35:BE:67:6F:5B:9F:8F:9F:17:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B000
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35A2D2D4446C11F1A7158FEECE1D38B0.roa
Signing time: Thu 30 Apr 2026 08:11:37 +0000
ROA not before: Thu 30 Apr 2026 08:11:33 +0000
ROA not after: Fri 05 Jun 2026 08:11:33 +0000
asID: 40779
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110592 (0x1b000)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 08:11:33 2026 GMT
Not After : Jun 5 08:11:33 2026 GMT
Subject: CN=69f30eb9-3f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:39:d5:e1:8c:fb:9b:42:4e:7b:ac:66:79:1d:
43:5e:dd:31:5f:e1:b1:33:3b:b9:92:e6:60:ab:0a:
eb:cd:f8:17:80:83:9c:7b:90:4a:ce:46:ac:3c:a1:
da:2f:c4:0e:c7:0e:16:51:4f:ac:8a:fa:8e:1b:40:
6b:cd:73:af:c1:98:92:1d:54:6f:4a:be:05:5a:74:
76:04:48:c2:4e:a5:be:e4:7f:51:e8:5b:2b:86:f5:
9a:c3:ca:16:da:14:01:6d:2b:2b:7a:64:3c:2a:de:
0f:b1:e8:7a:af:4a:81:73:4e:31:1e:a6:a4:c8:17:
39:95:49:5b:af:90:2a:61:23:bb:02:47:e5:ee:00:
b8:dd:f2:5d:3f:e5:e6:ef:7b:55:27:e1:1b:06:e7:
ff:1c:e1:7b:65:79:ab:e1:cf:ba:39:70:76:97:9e:
16:d7:51:0b:f1:35:a2:01:e9:cd:ae:08:3c:b7:f3:
a0:09:e2:74:fe:f3:da:21:38:87:f0:11:3f:f5:7a:
28:e2:78:0f:ee:01:5b:83:ba:9c:32:fc:64:6d:50:
95:23:6b:25:cc:ee:bd:af:e9:6a:4d:cd:46:74:bc:
e1:81:8f:f2:18:8d:cb:05:b9:c2:4c:bd:ff:28:e0:
20:63:c8:71:05:12:48:7f:4b:f7:39:db:86:a9:6d:
68:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:BE:B4:93:D4:A9:E7:1F:42:E1:35:BE:67:6F:5B:9F:8F:9F:17:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35A2D2D4446C11F1A7158FEECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
b1:ad:ff:bb:40:50:f7:d9:ee:9d:73:44:99:04:7c:f5:f7:a5:
0d:be:d7:3f:2a:96:3f:d8:40:1f:e5:7e:3e:9f:fd:80:c0:d2:
a7:6a:f7:b7:06:e5:a9:e1:84:e6:d3:66:0c:66:71:70:1d:7c:
24:37:94:99:30:2d:39:8b:68:45:9f:22:ac:fa:fa:86:94:11:
57:36:a7:f8:d9:dd:6a:a9:be:08:ee:83:c5:26:ab:a1:0c:69:
9b:65:22:bd:48:e4:21:5b:15:d0:96:0d:57:6b:78:84:85:c9:
3f:88:8f:b9:23:02:5a:49:5f:9d:49:10:69:e5:2c:b0:b3:55:
c2:d2:20:e7:bd:d1:7e:62:f4:ce:b1:04:8c:51:bc:59:5a:e0:
04:fb:3f:62:6b:dc:b6:d8:a0:35:ae:5e:67:5d:1b:09:d3:dd:
9e:92:64:ee:d0:68:e8:6e:58:79:77:ee:4e:54:15:ca:05:fc:
03:a5:4e:1e:6d:21:b6:79:18:4a:5e:24:b7:1c:fb:d4:a9:47:
9b:05:a4:fa:f1:d8:6e:63:06:0d:89:5d:c7:63:a5:28:95:fc:
97:8d:27:82:49:5b:9d:1b:ba:56:32:55:ac:9a:87:6b:6d:9b:
24:76:7f:cb:83:fb:aa:83:89:f1:db:6c:0e:35:ba:04:42:bd:
45:da:4a:67
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbAAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDMwMDgxMTMzWhcNMjYwNjA1MDgxMTMzWjAYMRYw
FAYDVQQDEw02OWYzMGViOS0zZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAojnV4Yz7m0JOe6xmeR1DXt0xX+GxMzu5kuZgqwrrzfgXgIOce5BKzkas
PKHaL8QOxw4WUU+sivqOG0BrzXOvwZiSHVRvSr4FWnR2BEjCTqW+5H9R6FsrhvWa
w8oW2hQBbSsremQ8Kt4Pseh6r0qBc04xHqakyBc5lUlbr5AqYSO7Akfl7gC43fJd
P+Xm73tVJ+EbBuf/HOF7ZXmr4c+6OXB2l54W11EL8TWiAenNrgg8t/OgCeJ0/vPa
ITiH8BE/9Xoo4ngP7gFbg7qcMvxkbVCVI2slzO69r+lqTc1GdLzhgY/yGI3LBbnC
TL3/KOAgY8hxBRJIf0v3OduGqW1o1wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGa+
tJPUqecfQuE1vmdvW5+PnxcpMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zNUEyRDJENDQ0NkMxMUYxQTcxNThGRUVDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnO7gMA0GCSqGSIb3DQEBCwUA
A4IBAQCxrf+7QFD32e6dc0SZBHz196UNvtc/KpY/2EAf5X4+n/2AwNKnave3BuWp
4YTm02YMZnFwHXwkN5SZMC05i2hFnyKs+vqGlBFXNqf42d1qqb4I7oPFJquhDGmb
ZSK9SOQhWxXQlg1Xa3iEhck/iI+5IwJaSV+dSRBp5Syws1XC0iDnvdF+YvTOsQSM
UbxZWuAE+z9ia9y22KA1rl5nXRsJ092ekmTu0Gjoblh5d+5OVBXKBfwDpU4ebSG2
eRhKXiS3HPvUqUebBaT68dhuYwYNiV3HY6UolfyXjSeCSVudG7pWMlWsmodrbZsk
dn/Lg/uqg4nx22wONboEQr1F2kpn
-----END CERTIFICATE-----
Generated at Wed May 13 08:28:42 2026 by rpki-client