Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B60043284C3F11F193D7DC0CCF1D38B0.roa
File: B60043284C3F11F193D7DC0CCF1D38B0.roa (raw, json)
Hash identifier: Vf/yW4c7zLvVnp/lx9ihKkX4phDcXfSj9ti7dEFKpFU=
Subject key identifier: B4:AD:90:F8:20:2D:B7:56:7B:C1:68:CC:C7:37:58:0D:70:BF:D6:2C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B323
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B60043284C3F11F193D7DC0CCF1D38B0.roa
Signing time: Sun 10 May 2026 07:13:15 +0000
ROA not before: Sun 10 May 2026 07:13:10 +0000
ROA not after: Sun 14 Jun 2026 07:13:10 +0000
asID: 401783
IP address blocks: 156.252.9.0/24 maxlen: 24
156.252.177.0/24 maxlen: 24
156.252.178.0/24 maxlen: 24
156.252.179.0/24 maxlen: 24
156.252.180.0/24 maxlen: 24
156.252.181.0/24 maxlen: 24
156.252.182.0/24 maxlen: 24
156.252.183.0/24 maxlen: 24
156.252.184.0/24 maxlen: 24
156.252.186.0/24 maxlen: 24
156.252.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111395 (0x1b323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 10 07:13:10 2026 GMT
Not After : Jun 14 07:13:10 2026 GMT
Subject: CN=6a00300b-8461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:46:81:88:09:3a:18:59:86:44:bb:b6:51:
c4:82:31:4c:ab:b1:fe:e5:3a:30:c4:5f:e7:6a:04:
81:7b:88:4f:d1:14:84:7c:69:d8:6f:2c:83:55:ae:
1f:85:41:a8:ae:35:0e:3f:4f:23:97:53:56:30:f7:
41:51:79:51:57:c4:ca:7e:2c:69:e4:32:a4:ec:da:
a9:3b:d7:c5:d5:5e:a6:37:e1:d6:e9:68:95:c9:19:
84:b1:b5:f3:79:a0:4d:d0:78:8e:ff:0d:3a:94:2f:
f7:75:c0:14:aa:e6:ef:61:16:2e:20:6f:6c:3a:ce:
e8:36:a3:de:34:78:c4:0f:0c:b1:b0:13:9a:b1:eb:
7b:62:c4:ae:ab:cf:31:56:08:c3:da:af:b9:6d:64:
f3:b3:d6:44:45:3c:09:f9:7b:b9:63:fe:53:a0:75:
36:95:b5:2b:2a:ca:bd:b0:48:c1:3a:f9:02:45:a2:
cd:0d:72:5c:7f:57:ac:75:8f:1a:33:55:42:73:51:
d8:99:9a:41:a9:bf:00:4a:c5:76:c3:a3:85:c1:07:
aa:e3:00:b2:24:1a:1d:27:d0:81:ca:2a:39:68:15:
ff:2c:dc:1b:31:86:e9:c7:36:f0:7b:b5:53:96:bf:
1c:eb:d9:ce:1a:b1:f1:ef:15:74:fc:93:66:e3:1d:
41:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AD:90:F8:20:2D:B7:56:7B:C1:68:CC:C7:37:58:0D:70:BF:D6:2C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B60043284C3F11F193D7DC0CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.9.0/24
156.252.177.0-156.252.184.255
156.252.186.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:d9:49:37:d9:88:c2:2a:c9:40:5e:5d:a6:a6:ba:9c:14:35:
06:91:28:2a:93:52:14:76:23:a2:b9:7f:9c:52:a0:c5:9e:93:
3f:8c:e1:0c:92:82:ba:ac:4e:5a:5b:2f:b5:31:55:b2:84:9d:
70:43:90:bd:33:51:ed:d9:10:3e:9f:6c:ef:b5:d0:9d:2a:2c:
79:9c:0b:4c:85:1c:4f:7a:1a:a7:bc:2d:cc:9a:9f:ff:17:48:
5e:40:f6:44:34:29:48:6b:51:a7:a4:c0:38:7e:45:e8:65:6a:
54:17:b7:14:81:c3:4d:05:14:9d:26:79:6a:2a:20:24:bc:93:
8d:e3:26:9f:fe:a8:03:92:05:4c:e4:34:59:bd:d0:0c:cd:8f:
5a:51:51:b5:67:db:5b:9b:b8:e3:07:00:bf:df:6d:d0:65:a8:
ab:04:ad:83:d4:c3:65:d7:a8:6e:84:b4:b7:99:9f:a9:40:b1:
ed:e7:78:5c:80:d6:81:3d:cf:f8:8e:60:d4:4b:db:3c:29:12:
c3:6b:77:89:ea:40:50:aa:c5:98:fe:aa:bc:56:94:10:6b:dc:
8a:57:72:74:13:8a:8e:9f:d2:a6:0f:b8:db:9d:f5:ef:cd:75:
d5:c3:f6:a1:8b:6d:eb:77:19:0d:c9:cd:88:5e:30:db:a2:73:
68:c9:1d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:12:46 2026 by rpki-client