Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CDB90D8455011F182AC52D9CE1D38B0.roa
File: 8CDB90D8455011F182AC52D9CE1D38B0.roa (raw, json)
Hash identifier: JnkHClnYZTSMQVpIYAmkNTenBZzcUNKOT4V/EjCmp4I=
Subject key identifier: A9:51:BA:17:6E:D7:81:27:EF:74:63:BA:AA:72:10:4A:A7:5C:6E:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B07F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CDB90D8455011F182AC52D9CE1D38B0.roa
Signing time: Fri 01 May 2026 11:26:09 +0000
ROA not before: Fri 01 May 2026 11:26:04 +0000
ROA not after: Wed 15 Jul 2026 11:26:04 +0000
asID: 135377
IP address blocks: 156.229.16.0/24 maxlen: 24
156.229.17.0/24 maxlen: 24
156.229.18.0/24 maxlen: 24
156.229.19.0/24 maxlen: 24
156.229.20.0/24 maxlen: 24
156.229.21.0/24 maxlen: 24
156.229.22.0/24 maxlen: 24
156.229.23.0/24 maxlen: 24
156.229.24.0/23 maxlen: 24
156.229.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110719 (0x1b07f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 11:26:04 2026 GMT
Not After : Jul 15 11:26:04 2026 GMT
Subject: CN=69f48dd1-022d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:57:4e:c3:4f:ca:f9:5e:d1:b2:df:9a:f0:39:
f6:a0:bd:18:7d:37:9e:51:2a:20:cf:cc:fd:be:60:
ae:ce:bf:eb:c9:7e:4b:19:c1:0c:d0:cd:d6:42:73:
96:08:9f:4b:af:f3:48:a9:43:2b:23:83:67:a2:88:
07:56:45:06:93:f4:89:02:9b:d9:92:6a:bb:d3:dd:
96:76:89:97:eb:df:10:30:92:8a:c1:0a:81:3d:a2:
f9:c8:72:f4:c4:f3:2f:9b:dc:45:bd:31:ad:de:16:
d8:1b:3a:aa:89:8c:b8:86:b9:ab:4a:75:6b:4b:ea:
b0:ad:e6:f3:6e:25:1a:89:40:a0:13:75:3e:d9:24:
87:5d:f6:da:be:a4:fb:86:c1:56:17:10:35:c4:43:
a4:bd:cc:6e:c7:6e:51:4a:4b:c8:e0:2b:f7:d8:32:
85:ef:f7:cb:ab:35:b2:00:bb:84:a9:46:f6:61:b9:
9a:8b:51:62:c1:8a:10:55:fe:58:d5:5d:2a:12:24:
a6:80:50:fa:89:6f:ea:92:a9:ba:b3:c2:a4:99:c8:
68:f6:64:75:f8:88:98:dd:68:2f:43:e0:31:33:0a:
03:c9:47:3d:9a:84:38:34:39:94:7b:35:06:d0:6c:
0b:30:a2:2b:92:85:b7:6e:92:2d:ec:f0:ec:71:d3:
9e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:51:BA:17:6E:D7:81:27:EF:74:63:BA:AA:72:10:4A:A7:5C:6E:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CDB90D8455011F182AC52D9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.16.0-156.229.25.255
Signature Algorithm: sha256WithRSAEncryption
95:28:e4:f2:9f:89:d9:22:ce:40:40:ee:42:d9:77:f6:7c:25:
18:4d:43:e7:b5:37:ad:7a:95:53:da:32:17:a8:7c:94:97:f8:
30:2e:a8:71:91:c3:f4:6a:9e:63:33:11:37:b5:1e:c3:37:ec:
d6:7c:73:d9:4d:49:90:c2:75:02:b1:b6:c2:89:1f:e9:69:f2:
30:78:48:d0:61:d4:ce:78:f8:27:fc:ca:ba:6c:fb:70:b2:2f:
3f:de:cf:69:d7:ca:72:f0:4d:9c:30:9c:7c:4a:e7:35:32:ec:
7f:37:79:13:83:c6:3e:ac:7f:51:5a:55:f3:20:b2:39:57:cd:
f9:40:f2:9d:93:e4:51:3c:a8:a7:4a:ef:3c:ca:da:41:83:d9:
9a:d8:73:9d:ad:42:c0:be:bf:09:eb:02:18:ef:b9:56:ad:c3:
57:b4:3e:21:1d:e2:c3:1b:12:2e:e7:dd:c1:20:82:42:d1:bc:
5e:10:1f:59:b1:d0:37:12:d3:cd:9c:a6:10:31:c4:4e:32:60:
61:da:de:4c:45:04:a3:81:4d:56:61:26:14:54:d4:76:b5:91:
a7:c8:46:14:94:20:d1:d4:25:69:d6:36:a9:69:31:81:ec:a0:
3c:c1:10:ab:b4:17:88:d6:89:88:84:96:16:c4:59:16:0a:c1:
4c:48:cb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:29:04 2026 by rpki-client