Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB6AE4AE408211F18F40C21ACF1D38B0.roa
File: AB6AE4AE408211F18F40C21ACF1D38B0.roa (raw, json)
Hash identifier: +suWQXxa4rx6c5fH256PkjP2faiTf0sAP4NAZecKaq4=
Subject key identifier: DB:FD:8F:4D:F3:75:22:25:55:3C:9A:DA:4A:07:17:B3:02:55:E4:67
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AF19
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB6AE4AE408211F18F40C21ACF1D38B0.roa
Signing time: Sat 25 Apr 2026 08:42:19 +0000
ROA not before: Sat 25 Apr 2026 08:42:14 +0000
ROA not after: Mon 01 Jun 2026 08:42:14 +0000
asID: 984
IP address blocks: 156.227.133.0/24 maxlen: 24
156.227.143.0/24 maxlen: 24
156.227.145.0/24 maxlen: 24
156.231.98.0/24 maxlen: 24
156.231.101.0/24 maxlen: 24
156.232.32.0/24 maxlen: 24
156.232.33.0/24 maxlen: 24
156.233.109.0/24 maxlen: 24
156.249.172.0/24 maxlen: 24
156.249.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110361 (0x1af19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 08:42:14 2026 GMT
Not After : Jun 1 08:42:14 2026 GMT
Subject: CN=69ec7e6b-3732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bf:e6:8d:46:c3:15:79:73:da:3c:4b:4f:ad:
2d:03:cb:02:c3:98:18:b2:c8:2e:1d:df:f9:26:f1:
20:9e:74:1d:d8:2e:82:b1:56:24:4e:42:e8:f3:1d:
7e:92:4c:48:2f:27:54:a5:ae:1d:dc:27:27:1c:27:
0b:49:0f:56:f5:02:60:02:bd:05:9e:07:f2:f7:04:
1d:13:09:0d:69:2a:8a:09:c7:14:8f:d2:36:1f:0a:
a2:da:e8:44:5c:ff:20:64:a4:d0:54:4e:b9:16:52:
8c:7d:8b:4e:ec:6f:ed:0f:d0:63:43:3e:dc:96:98:
88:97:4a:78:61:2d:1f:f6:d1:e8:a9:80:f2:f4:b0:
76:cd:63:b3:bd:ec:f5:42:9b:a3:c3:2f:8c:dc:fc:
b4:12:3b:30:31:79:cb:a9:ab:ba:ff:6a:79:04:c4:
fc:fa:83:bc:ed:81:ef:2c:24:e9:e1:43:52:b2:86:
13:c2:d7:c5:9d:61:2a:6c:37:4a:13:b7:17:6b:a1:
cc:76:e3:dc:f2:4b:a6:66:f6:af:60:29:80:36:73:
65:2e:6a:01:e9:32:f0:d1:79:2f:14:a3:0b:18:f3:
f8:11:62:19:e7:3a:8e:7d:87:54:ab:52:9b:89:78:
a1:6a:e3:6a:d5:22:83:20:f6:6b:53:37:21:cb:7c:
f6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FD:8F:4D:F3:75:22:25:55:3C:9A:DA:4A:07:17:B3:02:55:E4:67
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB6AE4AE408211F18F40C21ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.133.0/24
156.227.143.0/24
156.227.145.0/24
156.231.98.0/24
156.231.101.0/24
156.232.32.0/23
156.233.109.0/24
156.249.172.0/23
Signature Algorithm: sha256WithRSAEncryption
97:f2:63:ea:96:1f:a5:3e:02:0f:d0:6b:06:d8:fb:34:c1:18:
7c:4e:74:c9:8e:7c:ec:94:71:b6:ad:49:7d:c6:f1:21:26:01:
91:46:2e:04:fe:72:23:10:5c:ea:c3:a3:c0:ed:a3:b6:ca:db:
f7:83:de:2b:f9:dc:d4:cb:92:b7:02:a4:fe:dd:da:81:bd:cf:
bd:88:e4:f5:10:8f:f3:58:a3:2f:82:5f:c5:1a:e5:2a:a8:67:
53:15:6c:b2:15:d6:2a:35:11:e1:6e:08:da:fa:f4:cb:e9:16:
fe:32:1d:bb:0a:75:94:87:b5:18:72:88:14:b8:f8:3b:21:b4:
a5:b0:77:9f:c6:38:db:ee:d6:c3:66:bc:cf:67:34:7e:e7:66:
f4:23:a6:d3:b9:33:44:af:de:2d:ac:36:75:3b:10:6b:01:5b:
15:87:11:1e:15:c6:37:e0:71:d6:b3:a2:d8:db:47:45:c7:81:
59:2b:b2:a6:0c:3c:83:49:52:8f:e7:4e:57:78:d6:14:c0:55:
97:b2:a1:20:a7:99:08:43:41:e4:26:fc:8f:41:67:68:6a:43:
6a:cb:65:a1:16:5e:60:57:52:97:2b:c7:9c:13:b2:a3:b3:4c:
e0:d7:77:ac:3b:38:be:e7:01:b6:e9:3d:5c:80:0a:78:3c:92:
04:a4:0e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:15:00 2026 by rpki-client