Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97D37694211611F1882600BDDAE4EC9C.roa
File: 97D37694211611F1882600BDDAE4EC9C.roa (raw, json)
Hash identifier: AUu6w139Gn+tocNvuQAxQ0XXrKtxuL25nrXo70cIDCo=
Subject key identifier: C2:9B:0A:1F:C5:84:7B:1E:40:64:BE:0F:CC:68:19:50:ED:00:65:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A594
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97D37694211611F1882600BDDAE4EC9C.roa
Signing time: Mon 16 Mar 2026 09:00:35 +0000
ROA not before: Mon 16 Mar 2026 09:00:30 +0000
ROA not after: Fri 16 Mar 2029 09:00:30 +0000
asID: 17561
IP address blocks: 156.247.233.0/24 maxlen: 24
156.247.234.0/24 maxlen: 24
156.247.235.0/24 maxlen: 24
156.247.236.0/24 maxlen: 24
156.247.237.0/24 maxlen: 24
156.247.238.0/24 maxlen: 24
156.247.239.0/24 maxlen: 24
156.247.240.0/24 maxlen: 24
156.247.241.0/24 maxlen: 24
156.247.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107924 (0x1a594)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 16 09:00:30 2026 GMT
Not After : Mar 16 09:00:30 2029 GMT
Subject: CN=69b7c6b3-6cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6d:11:c3:a4:0a:30:e4:b1:9d:28:1f:74:2e:
21:eb:12:80:de:7b:bd:bf:70:a7:65:da:70:d1:bf:
dd:01:a0:11:9c:6f:d4:ed:a7:c8:3d:c8:4e:39:26:
cd:07:86:6f:ed:ae:6a:50:19:e4:74:ab:8b:75:7a:
f7:fb:ec:51:89:b2:70:00:75:c1:77:de:f3:dc:8a:
61:92:4c:bc:77:ef:a9:11:ff:51:46:63:37:da:ab:
4b:fd:37:0b:de:b2:af:3b:57:75:e0:6a:79:42:4e:
78:d9:d7:6d:67:8d:9b:1b:45:cd:f5:c2:bb:78:84:
40:b5:b4:41:c6:fe:55:8f:18:e1:c9:c6:6a:e4:67:
46:f0:f2:13:56:db:75:e7:a8:3d:d5:88:24:83:48:
ec:73:6a:82:02:b9:01:2b:31:0e:e9:72:d8:41:18:
48:c7:67:e0:30:0f:56:00:5f:2e:5e:5d:89:f8:5f:
b6:db:3e:9f:02:57:11:22:04:8e:85:cc:3d:aa:b0:
3e:7b:c0:be:33:44:e3:aa:66:f2:0e:4a:fe:6b:50:
43:38:87:cd:e4:40:89:d9:80:15:74:52:1a:5b:a5:
48:60:6b:15:c8:1f:da:ea:6a:1f:d9:72:7b:0e:04:
82:87:8d:51:d5:dc:7e:8f:06:8f:44:59:c7:d6:30:
10:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:9B:0A:1F:C5:84:7B:1E:40:64:BE:0F:CC:68:19:50:ED:00:65:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97D37694211611F1882600BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.233.0-156.247.242.255
Signature Algorithm: sha256WithRSAEncryption
31:b6:c5:f3:9a:78:1c:6e:c3:90:a1:d5:83:67:be:95:19:6d:
10:a9:56:ae:d6:b6:05:d2:bd:f8:33:38:52:c8:f2:53:86:d0:
84:b1:b9:f2:e7:8c:8d:ec:79:1c:64:61:19:f9:8e:fb:7e:94:
ad:f9:f3:2f:4c:ae:14:4a:a2:61:e7:84:42:80:85:a6:35:35:
3a:af:bc:08:87:1b:29:a5:a9:17:72:47:94:aa:cc:ce:dd:8f:
2b:a2:90:10:ab:e2:1f:7d:73:88:52:c1:85:ca:69:34:49:f9:
7d:25:80:a4:0c:7a:0d:15:7e:18:23:fd:6e:a5:57:a7:c3:42:
fa:b3:d6:2c:47:eb:29:7f:41:68:1f:9d:b2:7a:10:21:f5:3c:
ce:86:c0:8f:1b:1b:a7:9c:96:b1:ff:68:6c:8d:0a:c6:f6:a3:
36:7e:0e:25:b6:01:53:65:5d:27:07:56:b7:87:12:ec:91:fd:
b6:85:bf:ef:9e:2d:ab:bd:cf:84:36:b5:0d:6a:2d:dc:53:a2:
72:1c:35:85:64:28:e7:92:e5:c6:cb:ba:1c:75:5b:bf:f8:89:
c2:05:e3:8f:f2:67:b5:ed:5e:c5:e3:bf:f9:e8:cf:6a:b6:de:
60:fd:32:97:a8:4d:57:0e:50:37:6d:21:21:b3:d3:5c:97:e4:
f1:9f:19:b1
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAaWUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzE2MDkwMDMwWhcNMjkwMzE2MDkwMDMwWjAYMRYw
FAYDVQQDEw02OWI3YzZiMy02Y2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxW0Rw6QKMOSxnSgfdC4h6xKA3nu9v3CnZdpw0b/dAaARnG/U7afIPchO
OSbNB4Zv7a5qUBnkdKuLdXr3++xRibJwAHXBd97z3Iphkky8d++pEf9RRmM32qtL
/TcL3rKvO1d14Gp5Qk542ddtZ42bG0XN9cK7eIRAtbRBxv5VjxjhycZq5GdG8PIT
Vtt156g91Ygkg0jsc2qCArkBKzEO6XLYQRhIx2fgMA9WAF8uXl2J+F+22z6fAlcR
IgSOhcw9qrA+e8C+M0TjqmbyDkr+a1BDOIfN5ECJ2YAVdFIaW6VIYGsVyB/a6mof
2XJ7DgSCh41R1dx+jwaPRFnH1jAQgwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMKb
Ch/FhHseQGS+D8xoGVDtAGW6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85N0QzNzY5NDIxMTYxMUYxODgyNjAwQkREQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACc9+kDBACc9/IwDQYJKoZI
hvcNAQELBQADggEBADG2xfOaeBxuw5Ch1YNnvpUZbRCpVq7WtgXSvfgzOFLI8lOG
0ISxufLnjI3seRxkYRn5jvt+lK358y9MrhRKomHnhEKAhaY1NTqvvAiHGymlqRdy
R5SqzM7djyuikBCr4h99c4hSwYXKaTRJ+X0lgKQMeg0Vfhgj/W6lV6fDQvqz1ixH
6yl/QWgfnbJ6ECH1PM6GwI8bG6eclrH/aGyNCsb2ozZ+DiW2AVNlXScHVreHEuyR
/baFv++eLau9z4Q2tQ1qLdxTonIcNYVkKOeS5cbLuhx1W7/4icIF44/yZ7XtXsXj
v/noz2q23mD9MpeoTVcOUDdtISGz01yX5PGfGbE=
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:14:56 2026 by rpki-client