Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFB5B2544ADD11F1A9AE761ECF1D38B0.roa
File: AFB5B2544ADD11F1A9AE761ECF1D38B0.roa (raw, json)
Hash identifier: RKDoLUAuj9QbI6Zr2CFbL9fj7BDNgPwkWRmsQV+qOc4=
Subject key identifier: 40:1F:D1:F5:2B:E7:79:D7:CA:CD:B7:7D:B3:3D:D6:66:18:8E:B7:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B2E6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFB5B2544ADD11F1A9AE761ECF1D38B0.roa
Signing time: Fri 08 May 2026 12:59:02 +0000
ROA not before: Fri 08 May 2026 12:58:58 +0000
ROA not after: Wed 20 May 2026 12:58:58 +0000
asID: 400619
IP address blocks: 156.254.0.0/24 maxlen: 24
156.254.1.0/24 maxlen: 24
156.254.2.0/24 maxlen: 24
156.254.3.0/24 maxlen: 24
156.254.4.0/24 maxlen: 24
156.254.5.0/24 maxlen: 24
156.254.6.0/24 maxlen: 24
156.254.7.0/24 maxlen: 24
156.254.8.0/21 maxlen: 24
156.254.16.0/24 maxlen: 24
156.254.17.0/24 maxlen: 24
156.254.18.0/24 maxlen: 24
156.254.19.0/24 maxlen: 24
156.254.20.0/24 maxlen: 24
156.254.21.0/24 maxlen: 24
156.254.22.0/24 maxlen: 24
156.254.23.0/24 maxlen: 24
156.254.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111334 (0x1b2e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 12:58:58 2026 GMT
Not After : May 20 12:58:58 2026 GMT
Subject: CN=69fdde16-096b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7e:16:7a:9e:21:4a:51:94:e3:11:3d:ad:47:
37:84:70:33:2d:a0:92:f3:6a:1e:63:76:bb:e7:a8:
45:8e:51:56:e1:de:88:72:b1:fd:08:8c:17:30:06:
44:1b:86:3e:10:91:f2:36:36:31:53:d8:8a:23:9b:
65:dd:db:4b:30:d9:1f:1d:d5:20:a8:81:67:d4:4d:
46:48:2b:82:33:49:73:01:35:31:d1:8d:b2:19:01:
90:e3:ba:75:3e:f5:1e:92:aa:43:04:46:39:78:be:
fa:1c:ed:5b:d6:58:8d:c0:53:fb:c0:7f:f9:fa:e5:
c2:07:5f:fa:52:ec:33:11:69:5a:a7:23:a8:9e:e4:
ff:b2:80:9d:5c:ee:2c:9d:a7:92:d4:50:b0:81:0a:
a0:69:8c:c1:f5:f0:6f:1f:96:39:05:f1:8a:fb:bc:
73:78:3f:04:ec:2f:c9:93:fc:75:48:f5:2e:ca:35:
ca:08:dd:18:67:12:65:96:4a:bc:c6:32:55:f7:d8:
b8:05:5c:9d:68:bb:0d:3a:34:76:57:6a:24:30:c3:
b4:98:6d:0b:03:62:6d:4b:c9:c8:3e:8d:fd:3d:96:
b4:09:51:77:05:03:64:43:da:b9:27:ed:88:02:4f:
08:9a:b7:70:5c:b5:18:ec:10:14:36:25:5a:c1:72:
6b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1F:D1:F5:2B:E7:79:D7:CA:CD:B7:7D:B3:3D:D6:66:18:8E:B7:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFB5B2544ADD11F1A9AE761ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.0.0/19
Signature Algorithm: sha256WithRSAEncryption
98:ad:53:2a:39:fa:e7:e4:20:03:a3:51:81:c3:46:bb:7b:bf:
a8:75:e3:54:e4:7b:18:28:df:fb:fa:1a:15:ff:c7:ef:97:47:
c2:26:ba:10:9f:02:8c:23:8a:9a:56:3d:6c:1d:f7:9f:02:bb:
28:aa:b5:92:8e:ad:e7:5e:9b:72:75:d3:ba:6d:4a:57:85:d9:
64:27:b2:5c:13:31:23:94:52:7b:ee:1f:bd:87:56:af:77:0f:
d1:5d:c9:e4:f7:2d:c3:e9:59:31:70:85:d3:a0:b2:3b:d7:f8:
29:6d:33:a8:ae:8d:26:1d:bd:c9:ad:41:a6:a1:d2:c2:98:35:
8b:ee:ad:d0:e4:0a:dc:a3:d4:18:82:a9:f1:02:4b:e7:ca:98:
a7:15:a8:48:06:aa:ca:71:9a:5f:c6:5e:0d:d2:d9:c0:ad:0c:
8e:23:f3:6e:f7:8f:7b:d2:c9:57:cd:50:1c:83:dc:cd:1b:80:
12:34:3a:62:b1:a3:31:ec:5e:73:e5:3a:cf:ff:38:71:6d:05:
c9:0e:c6:7d:b5:ef:45:0a:3d:41:4c:4a:df:54:e6:32:3b:c7:
9c:1e:3c:dd:d4:d0:b6:3d:83:e5:60:2f:ff:21:f8:d5:ca:0d:
c0:9b:11:7f:0a:67:6e:b1:18:25:32:3b:00:ce:cc:c7:f7:cf:
77:95:96:92
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbLmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTA4MTI1ODU4WhcNMjYwNTIwMTI1ODU4WjAYMRYw
FAYDVQQDEw02OWZkZGUxNi0wOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxn4Wep4hSlGU4xE9rUc3hHAzLaCS82oeY3a756hFjlFW4d6IcrH9CIwX
MAZEG4Y+EJHyNjYxU9iKI5tl3dtLMNkfHdUgqIFn1E1GSCuCM0lzATUx0Y2yGQGQ
47p1PvUekqpDBEY5eL76HO1b1liNwFP7wH/5+uXCB1/6UuwzEWlapyOonuT/soCd
XO4snaeS1FCwgQqgaYzB9fBvH5Y5BfGK+7xzeD8E7C/Jk/x1SPUuyjXKCN0YZxJl
lkq8xjJV99i4BVydaLsNOjR2V2okMMO0mG0LA2JtS8nIPo39PZa0CVF3BQNkQ9q5
J+2IAk8ImrdwXLUY7BAUNiVawXJrTwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEAf
0fUr53nXys23fbM91mYYjrfUMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BRkI1QjI1NDRBREQxMUYxQTlBRTc2MUVDRjFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnP4AMA0GCSqGSIb3DQEBCwUA
A4IBAQCYrVMqOfrn5CADo1GBw0a7e7+odeNU5HsYKN/7+hoV/8fvl0fCJroQnwKM
I4qaVj1sHfefArsoqrWSjq3nXptyddO6bUpXhdlkJ7JcEzEjlFJ77h+9h1avdw/R
Xcnk9y3D6VkxcIXToLI71/gpbTOoro0mHb3JrUGmodLCmDWL7q3Q5Arco9QYgqnx
AkvnypinFahIBqrKcZpfxl4N0tnArQyOI/Nu94970slXzVAcg9zNG4ASNDpisaMx
7F5z5TrP/zhxbQXJDsZ9te9FCj1BTErfVOYyO8ecHjzd1NC2PYPlYC//IfjVyg3A
mxF/CmdusRglMjsAzszH9893lZaS
-----END CERTIFICATE-----
Generated at Wed May 13 07:56:55 2026 by rpki-client