Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E16A00044A411F18F49E1BDCE1D38B0.roa
File: 5E16A00044A411F18F49E1BDCE1D38B0.roa (raw, json)
Hash identifier: +Vf4BYNOxOUE/1O5PQB6IjuKOYc9mvj+z3gui83+nIU=
Subject key identifier: 3A:82:CC:19:8E:A7:D9:90:4E:92:1C:27:04:C1:23:EC:D0:87:8D:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B044
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E16A00044A411F18F49E1BDCE1D38B0.roa
Signing time: Thu 30 Apr 2026 14:53:37 +0000
ROA not before: Thu 30 Apr 2026 14:53:32 +0000
ROA not after: Fri 05 Jun 2026 14:53:32 +0000
asID: 48031
IP address blocks: 156.236.22.0/24 maxlen: 24
156.236.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110660 (0x1b044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 14:53:32 2026 GMT
Not After : Jun 5 14:53:32 2026 GMT
Subject: CN=69f36cf1-4467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:df:2c:09:8e:2a:85:b0:15:1e:63:88:c7:c9:
0b:9f:7e:ba:d9:f0:69:78:cf:8c:6a:a3:33:6a:ac:
b5:bf:12:98:52:39:d2:43:f3:80:29:98:ba:0d:06:
ac:0d:16:25:92:78:a7:09:47:5b:d7:31:d7:68:4e:
21:2e:35:e2:95:8f:f4:45:7e:7c:0c:a9:64:f8:78:
5d:a9:34:e0:06:88:8c:5b:41:1b:77:8b:5d:aa:01:
78:a6:85:fd:ee:0d:87:b2:7a:45:bb:77:45:9c:59:
0c:94:13:06:03:57:85:60:ba:b5:09:9e:4b:95:c4:
a6:39:ca:e5:44:cb:6a:37:7e:45:1c:62:2f:f8:8c:
b7:0c:c5:04:c8:95:67:0d:40:1e:fe:a0:ab:94:3d:
2f:09:13:00:de:d0:cc:2f:b2:44:a5:f6:e3:fe:f2:
6d:4e:b9:a2:ed:61:34:94:0d:bf:56:0c:69:31:a9:
f2:e6:6a:3e:b6:a5:48:fc:a1:d5:56:f8:eb:cf:48:
c4:96:65:84:8f:d5:84:a9:17:e4:41:45:ce:87:19:
72:d8:c8:15:61:c9:13:bb:c8:95:37:c6:71:93:64:
b9:26:fb:68:db:de:fe:0a:c1:b0:ff:de:7c:1f:84:
75:bd:10:5f:c7:2e:3d:12:0a:a4:11:59:ef:bc:61:
b3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:82:CC:19:8E:A7:D9:90:4E:92:1C:27:04:C1:23:EC:D0:87:8D:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E16A00044A411F18F49E1BDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.22.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:f4:07:8c:8a:be:79:97:76:61:0c:76:95:97:5e:2d:67:e5:
13:4d:42:1b:49:00:0e:b6:9b:13:cd:8c:ca:a7:33:b0:ec:11:
11:57:18:6a:17:2a:e8:99:8e:ca:a7:84:04:6d:db:b2:55:3e:
52:97:7e:2e:24:d5:21:54:45:1c:0b:32:76:9c:a2:c6:f9:f2:
f4:56:9d:26:e7:ec:4b:10:c9:28:29:84:69:40:b3:fd:80:06:
0a:99:b3:85:a3:53:19:ac:1d:ff:f4:eb:13:8f:fe:d2:37:ef:
ad:2a:44:91:5e:9f:ee:5a:9c:13:6a:b0:4c:25:15:c4:bf:86:
41:c5:f9:b8:35:91:7b:f4:68:a3:33:ef:3f:29:fa:64:28:45:
75:01:ac:8f:5b:00:03:74:e5:5b:3e:9b:8e:0b:3e:69:71:ec:
f7:91:59:5a:9c:5b:02:e3:6e:00:a9:a6:f2:ca:74:ed:e3:1c:
ff:38:c0:2c:94:e9:71:60:0f:66:e6:12:db:16:4c:10:0c:7e:
c3:de:a4:7c:8e:bb:2d:e4:fd:a6:79:37:c7:74:54:01:38:32:
7f:da:21:5d:7d:7e:e4:ad:d8:d0:e7:29:13:a4:aa:13:69:e8:
44:f2:78:88:5c:66:8c:39:2f:ad:2f:d9:7b:ed:ee:ad:6a:81:
89:c5:1f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:58:10 2026 by rpki-client