Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/707418263C8A11F1B2ACA2BBCE1D38B0.roa
File: 707418263C8A11F1B2ACA2BBCE1D38B0.roa (raw, json)
Hash identifier: PNlugi2jzKUzqdP0K5cgYNvfyZNK6awxwlGK4ngsEVA=
Subject key identifier: 7A:74:E6:5C:CF:5F:9F:2F:C3:A7:73:A7:87:49:49:2A:40:49:88:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01ADBE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/707418263C8A11F1B2ACA2BBCE1D38B0.roa
Signing time: Mon 20 Apr 2026 07:27:52 +0000
ROA not before: Mon 20 Apr 2026 07:27:47 +0000
ROA not after: Wed 27 May 2026 07:27:47 +0000
asID: 63139
IP address blocks: 156.225.112.0/24 maxlen: 24
156.225.113.0/24 maxlen: 24
156.225.114.0/24 maxlen: 24
156.225.116.0/24 maxlen: 24
156.225.117.0/24 maxlen: 24
156.225.118.0/24 maxlen: 24
156.225.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110014 (0x1adbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 20 07:27:47 2026 GMT
Not After : May 27 07:27:47 2026 GMT
Subject: CN=69e5d578-ec78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fd:0d:f4:fa:7f:91:1c:9b:39:67:55:c6:8f:
3e:8f:8a:0b:f5:57:5a:74:f3:ed:45:7f:1e:90:da:
b7:31:a0:60:20:a5:fa:d5:1a:f3:aa:73:9d:b8:7f:
e2:57:e4:11:12:5a:67:1d:99:c7:14:85:ea:92:20:
34:10:75:99:ae:75:d6:3c:87:71:b5:ca:2a:ce:d2:
e1:b5:7b:5b:f7:3e:f2:ac:2d:1d:07:c4:28:9d:ed:
a5:bb:e9:b8:0d:d6:f7:79:4d:aa:f2:88:a1:00:1c:
ed:7f:6f:88:6d:38:4b:99:93:58:db:ea:07:ea:42:
7f:7b:28:83:6d:c7:37:ab:04:b5:c5:40:a1:e5:65:
22:72:ad:47:ea:b0:bb:47:14:c4:87:2a:58:41:81:
83:8b:7f:7d:a2:07:78:d1:7d:ba:f1:dc:d2:dd:e7:
f3:cb:ac:10:57:c3:69:cf:6f:05:fc:4e:96:c4:46:
20:a2:dc:e5:ef:2b:39:3b:a0:98:a2:76:ca:70:1e:
76:35:74:f7:8a:ac:6b:30:8c:1b:e5:7e:07:07:93:
b4:7d:1f:94:56:d9:6d:fd:e2:a1:1d:be:13:97:db:
40:0c:5f:1c:45:78:94:15:bd:88:c4:f6:1c:90:24:
15:65:a1:31:83:09:1f:7c:f0:94:a7:53:5e:cb:d3:
28:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:74:E6:5C:CF:5F:9F:2F:C3:A7:73:A7:87:49:49:2A:40:49:88:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/707418263C8A11F1B2ACA2BBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.112.0-156.225.114.255
156.225.116.0/22
Signature Algorithm: sha256WithRSAEncryption
97:03:38:08:1a:c4:f2:6b:0f:4e:ec:06:87:fb:65:8c:c7:e9:
ae:b3:85:20:68:d6:4c:bd:92:b2:8c:bd:6e:b0:7e:10:53:5b:
09:53:ca:dd:a9:42:3b:1c:20:b5:86:74:8a:d0:f9:56:10:8b:
43:6b:20:9c:c3:f4:5d:fb:74:a7:08:41:96:7b:9d:bf:9e:12:
e6:87:62:00:c6:c5:c2:ce:29:0d:ee:3b:cc:9e:dd:d8:98:e3:
f2:32:95:26:09:5b:59:b3:c8:df:25:57:8c:8d:91:55:b6:d7:
bf:35:ca:9f:29:78:ca:b0:f2:b1:61:fa:9e:2b:ee:a4:0b:66:
dc:21:8b:b6:37:59:df:2d:62:60:89:55:78:66:86:d3:1c:56:
1f:0a:54:6e:92:09:67:ae:42:89:ea:77:5a:26:2b:04:73:67:
f6:c4:43:9a:d8:8a:1d:30:b3:15:ee:66:93:ce:0e:a1:e7:c1:
ce:80:d7:00:1c:00:f1:bd:98:07:34:09:e1:ae:42:1e:44:31:
4d:df:31:a1:3b:b8:3c:74:99:08:c0:05:66:4d:7f:26:25:9c:
d4:cb:13:73:dd:ba:2c:76:99:72:80:58:6f:c0:32:3c:14:c6:
eb:0b:87:4a:8c:9e:11:44:cc:e6:79:49:cc:91:05:c1:8c:25:
83:31:e9:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:35:42 2026 by rpki-client