Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/903A73AE457111F18715B51BCF1D38B0.roa
File: 903A73AE457111F18715B51BCF1D38B0.roa (raw, json)
Hash identifier: kxQc2AcoYsMsaVLt2F3BXIZWlV858Pqo6SA/fmC0nH4=
Subject key identifier: 17:4B:E9:1B:93:FB:9E:96:A8:C0:1F:1D:80:24:B5:5B:6A:D5:49:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B0D4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/903A73AE457111F18715B51BCF1D38B0.roa
Signing time: Fri 01 May 2026 15:22:28 +0000
ROA not before: Fri 01 May 2026 15:22:23 +0000
ROA not after: Thu 04 Jun 2026 15:22:23 +0000
asID: 211961
IP address blocks: 156.233.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110804 (0x1b0d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 15:22:23 2026 GMT
Not After : Jun 4 15:22:23 2026 GMT
Subject: CN=69f4c534-d2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:af:7f:98:e0:82:5b:98:34:a0:28:f8:59:b7:
14:56:12:59:e0:a2:92:ea:27:0c:4f:99:61:8b:30:
b2:b9:ce:4b:6a:f9:ce:93:3b:e3:32:a2:15:20:dc:
bb:83:46:5b:84:43:07:42:3a:5c:1c:eb:b1:ad:b3:
3e:10:c9:bf:82:a4:0e:f5:3f:ae:69:ff:6f:0a:b4:
16:84:ba:47:88:b6:4d:71:5d:3d:41:14:db:08:93:
62:0b:eb:2f:9d:70:3c:5e:82:99:04:1e:fd:ee:7f:
b8:fb:5f:3c:9d:8e:8c:7b:81:ab:56:db:12:55:2b:
7c:63:17:96:d2:f5:c7:a6:19:1c:51:3a:ef:dc:1f:
ca:94:a8:bd:c4:c0:23:88:69:b9:90:3b:58:b2:3e:
70:a6:67:0b:a6:48:58:61:68:e7:5f:08:88:79:d8:
cb:44:15:b8:dd:b6:0d:d4:b0:92:b1:e3:1f:39:99:
c6:34:00:a4:a6:1d:67:c0:c3:99:a7:fe:7a:51:3e:
0d:fd:40:97:90:a4:db:4b:03:f7:89:01:9b:82:51:
21:95:9b:29:d5:e6:6d:17:5c:92:f6:47:4c:e1:f3:
e8:37:7a:76:6a:65:df:6b:95:d3:3d:72:97:9a:69:
22:77:34:23:2f:bf:d6:7c:8b:b5:9c:cd:b0:f6:a3:
e7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4B:E9:1B:93:FB:9E:96:A8:C0:1F:1D:80:24:B5:5B:6A:D5:49:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/903A73AE457111F18715B51BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.34.0/24
Signature Algorithm: sha256WithRSAEncryption
14:2d:98:92:77:0f:65:1f:1e:3f:43:57:ff:51:13:d5:7e:5b:
5d:dd:3d:92:49:02:fc:38:aa:89:35:15:73:54:10:e4:42:58:
e0:fa:d1:01:46:34:85:d5:86:40:ff:84:5c:84:b6:20:cd:48:
35:81:f8:7e:56:fd:3b:b7:aa:2f:ba:3d:f8:09:a0:db:7b:98:
75:c4:16:c4:44:6e:89:45:29:a1:6f:ac:af:ee:59:4a:38:ea:
77:f8:00:70:08:af:5f:a6:21:54:97:41:2a:f6:5c:30:24:d6:
48:3a:0e:df:00:89:51:58:ba:7d:f8:6a:2b:13:42:6f:33:5b:
12:08:65:a2:bd:cd:e0:fa:22:a5:b3:b0:c4:16:f6:79:2e:f6:
50:56:c1:74:ff:1b:fc:d0:7c:5a:9f:2a:43:b4:50:3e:0b:c9:
40:cd:ee:41:65:0d:02:36:6d:ef:27:2d:56:74:3b:77:af:df:
d4:86:6a:18:7a:b4:b1:48:e2:91:0a:67:66:30:ba:17:ea:c4:
7e:cc:2e:c8:12:d7:9d:dd:2b:99:2b:5a:02:ae:ac:27:d7:75:
f5:9c:fa:cd:c0:a2:2d:85:a8:4a:74:32:e1:04:1e:6c:58:3e:
09:7b:67:10:5d:6d:3d:8f:f5:3e:d6:ef:2e:9c:9d:81:d5:da:
c2:32:43:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:42:38 2026 by rpki-client