Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E671918492411F1BE452FA3CE1D38B0.roa
File: 3E671918492411F1BE452FA3CE1D38B0.roa (raw, json)
Hash identifier: OAJzUO4kPWSLJiBOniaJRahDqd6gmhNjDCV8of3WAzQ=
Subject key identifier: 4A:A9:AC:5E:BE:8D:C5:F8:23:D7:11:64:89:C6:15:26:AC:1A:9B:0D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B1BC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E671918492411F1BE452FA3CE1D38B0.roa
Signing time: Wed 06 May 2026 08:19:04 +0000
ROA not before: Wed 06 May 2026 08:19:00 +0000
ROA not after: Sun 06 May 2029 08:19:00 +0000
asID: 17561
IP address blocks: 156.235.228.0/24 maxlen: 24
156.235.229.0/24 maxlen: 24
156.235.230.0/24 maxlen: 24
156.235.231.0/24 maxlen: 24
156.235.232.0/24 maxlen: 24
156.235.233.0/24 maxlen: 24
156.235.234.0/24 maxlen: 24
156.235.235.0/24 maxlen: 24
156.235.236.0/24 maxlen: 24
156.235.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111036 (0x1b1bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 08:19:00 2026 GMT
Not After : May 6 08:19:00 2029 GMT
Subject: CN=69faf978-7bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0d:ab:88:ad:34:55:f9:32:dc:3a:75:5a:61:
28:c6:8e:33:10:df:72:94:b8:3c:a1:38:6c:62:1e:
cb:d0:38:33:7f:a2:a7:09:fc:aa:15:a6:64:34:4d:
d3:79:0e:0a:66:70:44:41:c2:08:e2:6b:36:84:1f:
f6:f5:f2:bb:17:3c:a2:fc:ed:02:c3:b5:f2:be:ed:
82:86:1d:bd:4d:d6:58:fc:a8:0d:91:90:18:aa:e0:
08:0f:3c:79:bc:e1:e4:3d:c1:23:6b:a6:c4:ed:8a:
25:b3:3c:f1:4e:32:39:0c:c9:dc:42:3a:6f:b2:dc:
c5:00:89:0d:86:4a:c6:f6:f9:eb:50:cc:45:ca:8c:
07:ce:b9:da:78:59:69:5c:3d:75:95:17:71:7e:39:
62:c8:86:1a:77:86:a0:81:f0:dc:29:1e:cb:9b:8a:
cf:e5:d6:a8:48:95:fa:0b:a4:f1:4a:f6:f4:36:e8:
0f:b4:63:76:80:16:a0:a4:79:c0:0a:e6:d3:a4:21:
d9:3b:0e:94:55:ed:24:a6:df:10:5f:f1:59:7c:a9:
86:be:24:b8:82:49:d5:ff:8d:df:4d:db:cf:7d:ff:
17:fc:7e:e5:b0:37:da:ee:7d:0b:73:58:e8:c6:3a:
d2:57:74:bc:fe:44:1f:c0:52:6b:86:78:5c:8e:f8:
c0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A9:AC:5E:BE:8D:C5:F8:23:D7:11:64:89:C6:15:26:AC:1A:9B:0D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E671918492411F1BE452FA3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.228.0-156.235.237.255
Signature Algorithm: sha256WithRSAEncryption
1f:20:7f:b4:fb:6c:89:e3:43:17:c8:42:ff:d8:10:b7:74:d8:
f8:a7:9b:9d:3c:18:99:04:bb:48:55:6a:75:81:67:d1:c9:b7:
79:45:62:c4:1b:ab:42:09:a1:9c:cb:65:da:d3:bf:d9:c7:e2:
7d:12:27:7f:ac:10:c4:de:45:35:a2:1b:87:4b:ae:da:b6:aa:
cd:26:f5:1e:2d:4d:88:1c:6d:f1:1e:b7:12:29:fd:98:b7:58:
8b:3b:d3:4e:dd:a0:70:bb:65:68:03:3e:4c:22:1f:32:a7:eb:
7a:05:64:7a:b5:98:b2:bd:f4:c0:72:78:a6:e3:92:b9:45:7d:
f8:1c:4d:77:4e:4e:c0:fd:10:e4:f2:34:e8:18:ac:20:23:52:
b4:42:85:ff:21:52:c1:8a:b2:b6:a8:46:92:0c:aa:f8:6e:e7:
fc:37:cf:13:87:0c:55:4e:d9:59:50:04:9d:ef:f3:ba:86:36:
84:a7:2c:ac:dd:de:ae:06:df:30:43:c6:e2:04:2f:49:f2:fd:
4d:b9:a5:89:40:05:5f:a0:1a:d8:1d:46:ad:98:51:30:7d:f9:
9f:62:34:91:75:89:60:94:b1:ef:31:ea:da:1d:18:9a:d3:ef:
74:f5:0b:1a:94:b0:35:e2:be:06:7f:7f:13:06:39:72:1e:6e:
ef:de:7a:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:14:52 2026 by rpki-client