Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FD78C844A5C11F1A68F65FECE1D38B0.roa
File: 5FD78C844A5C11F1A68F65FECE1D38B0.roa (raw, json)
Hash identifier: vK3nJk25IoDyygS+FU8FTLdH6XncLroO1ZGHQfUuVvQ=
Subject key identifier: 19:D5:54:EC:66:EA:4A:E4:02:77:BC:9F:32:EC:D9:18:B9:7C:6D:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B278
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FD78C844A5C11F1A68F65FECE1D38B0.roa
Signing time: Thu 07 May 2026 21:33:23 +0000
ROA not before: Thu 07 May 2026 21:33:19 +0000
ROA not after: Mon 08 Jun 2026 21:33:19 +0000
asID: 131471
IP address blocks: 156.238.64.0/24 maxlen: 24
156.238.65.0/24 maxlen: 24
156.238.66.0/24 maxlen: 24
156.238.67.0/24 maxlen: 24
156.238.68.0/24 maxlen: 24
156.238.69.0/24 maxlen: 24
156.238.70.0/24 maxlen: 24
156.238.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111224 (0x1b278)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 21:33:19 2026 GMT
Not After : Jun 8 21:33:19 2026 GMT
Subject: CN=69fd0523-e517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:be:ed:64:6e:e4:4b:36:63:b2:c8:11:b8:19:
c9:29:1e:98:17:2a:dc:d3:ba:43:80:ba:1f:ce:d3:
69:3c:4c:f1:b7:f0:8e:ac:e5:ee:b9:e4:3e:88:48:
ef:ed:38:34:4b:49:a9:2c:02:c3:18:75:5f:89:46:
ec:73:9a:5f:d1:ce:59:0a:fc:ae:2f:32:1b:a9:ea:
76:e7:7f:e9:59:ff:fe:e3:93:ab:30:ed:0e:ab:46:
97:d4:2e:e2:36:f6:57:e0:1d:1f:48:9d:c0:f0:25:
41:d0:a4:29:76:e0:e9:9b:81:3a:8d:a3:ed:bb:71:
c9:f0:44:05:2c:c6:9c:ad:df:cf:8a:b4:09:92:c4:
c5:34:67:60:60:ee:42:29:40:64:29:26:8e:dd:be:
e4:4f:7c:9c:d6:c9:fa:66:4b:61:3b:4e:d2:cf:fb:
be:2b:c5:f0:f9:e8:c1:de:34:4c:7f:56:0b:5d:02:
92:46:bb:df:e2:c1:59:66:af:57:d1:91:65:ff:f8:
7a:e3:88:fb:8b:c6:ae:a9:fa:8f:e1:fb:38:4c:e5:
d7:7e:ac:b3:93:97:b9:64:48:9c:b5:8e:78:9c:ba:
ca:bf:b4:55:16:cc:44:7c:cf:ae:e3:a7:2b:1b:01:
a6:df:ea:ac:a9:6c:d6:12:5e:7f:24:55:c4:03:3a:
c9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D5:54:EC:66:EA:4A:E4:02:77:BC:9F:32:EC:D9:18:B9:7C:6D:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FD78C844A5C11F1A68F65FECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.64.0/21
Signature Algorithm: sha256WithRSAEncryption
12:35:83:34:8a:af:3e:9e:eb:cf:59:5d:54:8a:6d:60:2e:24:
2c:42:84:e0:32:bf:a3:31:69:53:ba:6a:00:24:16:62:01:90:
e2:77:d5:1b:c3:fd:fe:cb:0c:a9:42:46:f0:9f:78:0c:ea:40:
30:ff:b2:3a:ed:04:c0:58:34:f4:d0:1f:b8:3a:fe:ab:cf:77:
af:58:ea:17:4c:a5:f4:7d:48:ee:5a:37:d5:15:20:39:a5:c1:
45:36:97:16:93:ae:fd:eb:74:e8:22:20:17:54:02:bd:c6:aa:
18:40:ca:47:82:b2:88:54:ea:88:ec:8b:f5:ef:b1:3b:5b:df:
e2:18:a3:82:0b:b5:9d:b1:d1:cf:a6:c6:0d:c6:b9:95:c9:a7:
4f:6e:6f:4f:e0:69:0e:ca:bb:86:4e:ff:9b:1f:1b:8a:cc:4b:
34:aa:cb:73:f7:64:7d:e5:55:11:06:d9:80:47:12:8c:52:20:
e2:94:b4:41:16:52:cb:82:18:e5:6f:26:38:33:bf:a0:65:9a:
31:01:f8:98:cf:a4:21:6e:0d:e9:31:a6:41:19:3c:5f:92:76:
bc:09:62:95:36:29:d8:5f:16:68:10:9e:72:5c:d0:0c:20:f9:
81:c6:eb:28:60:b7:53:32:04:f0:89:35:a9:96:b6:c2:7b:de:
0b:34:75:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:46:29 2026 by rpki-client