Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/720309DE4D0D11F1AE279AEDCE1D38B0.roa
File: 720309DE4D0D11F1AE279AEDCE1D38B0.roa (raw, json)
Hash identifier: IkRVb/ZufpBRziMs1V/D1eNgQ8e5KCXJIwkvGLM4ds0=
Subject key identifier: 00:AF:47:42:2F:92:C4:4C:A5:00:B2:4F:22:A7:4C:11:67:40:1E:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B3B7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/720309DE4D0D11F1AE279AEDCE1D38B0.roa
Signing time: Mon 11 May 2026 07:45:57 +0000
ROA not before: Mon 11 May 2026 07:45:51 +0000
ROA not after: Sat 23 May 2026 07:45:51 +0000
asID: 17497
IP address blocks: 156.245.176.0/21 maxlen: 24
156.245.176.0/24 maxlen: 24
156.245.177.0/24 maxlen: 24
156.245.178.0/24 maxlen: 24
156.245.179.0/24 maxlen: 24
156.245.180.0/24 maxlen: 24
156.245.181.0/24 maxlen: 24
156.245.182.0/24 maxlen: 24
156.245.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111543 (0x1b3b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 07:45:51 2026 GMT
Not After : May 23 07:45:51 2026 GMT
Subject: CN=6a018935-de1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:24:57:ee:55:56:b2:28:5d:70:b0:5a:ba:1b:
07:3a:6f:a4:59:42:38:52:c5:6b:7e:a8:51:0d:0a:
21:7c:2b:7c:d1:4a:7c:a9:8c:22:78:4b:42:3f:87:
dd:45:f9:94:81:ea:98:45:bd:47:16:8a:37:34:36:
c1:29:4f:78:6c:4f:5b:10:a8:ae:fe:ac:fb:e4:c1:
88:3c:50:78:ef:4c:49:a8:78:ea:f6:51:26:49:b4:
0b:35:65:38:3d:01:5f:2a:c3:f0:3f:90:df:e4:fa:
d7:85:d6:03:a2:8b:03:df:d2:55:68:49:9e:d7:f9:
83:53:c8:07:cd:56:4d:d4:99:ea:64:de:14:d2:d1:
c3:24:23:fe:27:80:09:b7:9b:b2:a6:df:a9:da:98:
a5:96:48:9a:38:c6:f8:41:92:68:50:72:34:76:40:
d3:8e:b2:de:dd:fa:60:45:53:e1:5d:51:04:8c:b2:
52:22:af:62:8a:7e:16:f5:09:45:86:bd:0d:22:7a:
c7:84:ac:41:60:9a:04:a5:ab:69:c9:3c:1b:54:ee:
c0:7f:3f:89:f1:1b:1f:ad:87:ed:4f:84:47:4d:09:
24:31:82:7b:be:f2:86:68:db:4d:f3:d3:f8:be:fb:
ff:58:e4:5b:62:dd:e0:30:2d:da:82:2e:8d:96:72:
34:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:AF:47:42:2F:92:C4:4C:A5:00:B2:4F:22:A7:4C:11:67:40:1E:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/720309DE4D0D11F1AE279AEDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.176.0/21
Signature Algorithm: sha256WithRSAEncryption
40:7e:70:3c:48:35:6f:08:23:9c:46:03:eb:cc:34:c4:88:b9:
5b:19:e5:59:9e:83:73:ec:af:e5:29:5d:1c:9e:e4:b6:a6:88:
57:71:39:8f:3b:6a:fa:e7:55:0d:56:05:c2:65:eb:ab:af:d3:
c3:c2:00:b5:ba:34:95:6d:b6:3b:cb:11:77:e9:1b:e0:43:f5:
41:fb:32:10:ba:c1:5d:23:03:52:93:13:e0:bf:3b:a5:d2:bb:
48:e3:17:c5:93:f5:49:3a:c9:5e:3d:9d:52:70:da:ac:b9:d7:
35:9e:25:36:10:f0:0c:69:59:8a:64:f4:8a:b7:03:18:8f:c6:
8c:9c:74:cd:68:25:7a:c3:a5:4e:b8:72:d7:eb:19:d6:89:22:
7b:ce:11:19:02:bd:04:d1:9f:52:81:16:db:23:a6:b3:19:88:
49:e4:c1:e8:c3:ea:a3:28:98:59:69:17:53:d2:75:38:61:13:
4c:a3:40:41:0b:aa:fa:3c:4e:41:e1:6d:39:ab:77:88:ef:64:
bf:0b:4a:60:7d:7e:51:94:2d:14:ef:3a:62:24:4e:1a:2f:bf:
61:b4:1e:05:e5:83:26:b1:74:74:56:ed:19:0f:88:96:c8:3b:
db:29:7d:5e:4a:d7:9f:66:5f:09:ee:1e:3d:33:aa:ec:3a:b4:
24:c2:35:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:57:42 2026 by rpki-client