Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BBFDB4F0456811F1B2C2C4E8CE1D38B0.roa
File: BBFDB4F0456811F1B2C2C4E8CE1D38B0.roa (raw, json)
Hash identifier: H1HCLQLO+9OB5/emRn39eLiGDm4V81bGY4qrJYv7Fk4=
Subject key identifier: 68:51:C5:69:3F:0A:92:16:60:33:C3:D1:62:D8:59:98:D4:94:0D:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B0B8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BBFDB4F0456811F1B2C2C4E8CE1D38B0.roa
Signing time: Fri 01 May 2026 14:19:16 +0000
ROA not before: Fri 01 May 2026 14:19:11 +0000
ROA not after: Mon 25 May 2026 14:19:11 +0000
asID: 271355
IP address blocks: 156.236.204.0/24 maxlen: 24
156.236.205.0/24 maxlen: 24
156.236.215.0/24 maxlen: 24
156.236.216.0/24 maxlen: 24
156.236.217.0/24 maxlen: 24
156.236.218.0/24 maxlen: 24
156.236.219.0/24 maxlen: 24
156.236.220.0/24 maxlen: 24
156.236.221.0/24 maxlen: 24
156.236.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110776 (0x1b0b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 14:19:11 2026 GMT
Not After : May 25 14:19:11 2026 GMT
Subject: CN=69f4b664-599e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:19:05:4d:44:55:f1:04:c9:f5:ea:73:3a:4d:
b7:e9:08:07:ba:ef:45:72:d0:7f:fe:c9:3e:35:38:
19:0d:c7:7c:b6:36:06:9c:5b:ea:81:d1:50:14:1c:
5e:d2:4d:7e:79:88:b5:63:8d:4d:eb:8a:46:cd:b1:
d4:3e:cf:2b:84:9a:1c:ce:86:e0:fc:0e:6a:06:0c:
33:c7:63:8a:5b:31:f1:c0:c4:9b:d7:9b:35:33:b3:
15:30:e8:38:b0:45:a6:fb:7a:0f:c4:62:c3:64:b0:
86:0f:35:4c:e5:d4:74:0c:e0:01:86:98:93:a6:a3:
27:25:ef:fd:2e:cd:d5:94:57:6f:de:f2:ee:fa:ce:
35:95:68:49:a4:c9:37:45:ec:5e:38:2c:96:93:d4:
16:f8:7b:1c:4a:50:65:a6:3f:82:8c:fb:fd:e6:30:
19:8b:16:2c:16:47:67:fa:45:18:43:41:50:25:2f:
7f:d6:95:7e:3c:4c:94:00:c0:00:8f:ac:d9:97:81:
3b:0e:24:0f:ee:cb:17:0e:45:1f:44:5b:8f:b4:66:
f4:64:d4:c2:48:ff:6a:dd:8b:92:6a:38:4d:9b:3a:
31:37:fb:bc:5f:42:f4:53:e5:fa:60:3c:b2:0f:37:
e6:84:ab:63:6a:7f:75:f9:3c:b3:8a:0e:f6:a2:f4:
04:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:51:C5:69:3F:0A:92:16:60:33:C3:D1:62:D8:59:98:D4:94:0D:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BBFDB4F0456811F1B2C2C4E8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.204.0/23
156.236.215.0-156.236.221.255
156.236.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:d6:67:35:d4:70:5b:70:c4:83:4f:14:7d:df:c1:06:ce:97:
d0:b0:5a:6d:ee:8e:2d:95:c6:75:2f:77:c5:3b:4a:24:c6:e3:
bf:b6:6d:b0:09:36:61:97:fb:9f:a2:ea:4f:6d:e1:a6:4d:39:
26:92:98:3d:a4:f6:57:6f:26:f6:9c:c0:db:7f:6a:c5:01:c3:
4a:be:02:d9:a5:25:a3:44:5f:81:fe:93:11:a2:9b:f6:d7:b8:
57:36:e2:dd:27:20:a9:90:d7:bd:48:ff:18:ea:3b:b6:cf:0a:
06:a9:84:11:ea:11:0e:57:5b:86:c3:f7:ca:c1:20:ea:8f:b1:
97:fc:e3:5f:b9:51:16:77:a6:d3:ce:39:4e:c0:24:0c:db:d0:
5f:4f:d9:50:1b:ca:68:c1:81:99:9a:e4:59:58:ae:88:4d:aa:
2a:88:bc:91:e5:8b:ab:93:7b:f0:4a:47:b6:94:be:b3:28:c4:
ee:7b:c8:ba:1a:65:f1:11:96:73:b6:fe:c3:21:8b:22:f5:0f:
ee:b7:05:4b:8c:de:e6:5c:0a:95:92:4a:03:6e:ce:80:cc:c0:
09:ae:c6:5b:b3:9e:83:61:7b:61:b8:98:03:9c:c6:12:16:c5:
6d:f7:67:d6:d3:1e:6c:23:2f:b5:fe:68:b9:57:fb:f2:77:7e:
ce:f4:32:04
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIDAbC4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTAxMTQxOTExWhcNMjYwNTI1MTQxOTExWjAYMRYw
FAYDVQQDEw02OWY0YjY2NC01OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5xkFTURV8QTJ9epzOk236QgHuu9FctB//sk+NTgZDcd8tjYGnFvqgdFQ
FBxe0k1+eYi1Y41N64pGzbHUPs8rhJoczobg/A5qBgwzx2OKWzHxwMSb15s1M7MV
MOg4sEWm+3oPxGLDZLCGDzVM5dR0DOABhpiTpqMnJe/9Ls3VlFdv3vLu+s41lWhJ
pMk3RexeOCyWk9QW+HscSlBlpj+CjPv95jAZixYsFkdn+kUYQ0FQJS9/1pV+PEyU
AMAAj6zZl4E7DiQP7ssXDkUfRFuPtGb0ZNTCSP9q3YuSajhNmzoxN/u8X0L0U+X6
YDyyDzfmhKtjan91+Tyzig72ovQEdwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFGhR
xWk/CpIWYDPD0WLYWZjUlA1NMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CQkZEQjRGMDQ1NjgxMUYxQjJDMkM0RThDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQBnOzMMAwDBACc7NcDBAGc7NwD
BACc7P4wDQYJKoZIhvcNAQELBQADggEBAI/WZzXUcFtwxINPFH3fwQbOl9CwWm3u
ji2VxnUvd8U7SiTG47+2bbAJNmGX+5+i6k9t4aZNOSaSmD2k9ldvJvacwNt/asUB
w0q+AtmlJaNEX4H+kxGim/bXuFc24t0nIKmQ171I/xjqO7bPCgaphBHqEQ5XW4bD
98rBIOqPsZf841+5URZ3ptPOOU7AJAzb0F9P2VAbymjBgZma5FlYrohNqiqIvJHl
i6uTe/BKR7aUvrMoxO57yLoaZfERlnO2/sMhiyL1D+63BUuM3uZcCpWSSgNuzoDM
wAmuxluznoNhe2G4mAOcxhIWxW33Z9bTHmwjL7X+aLlX+/J3fs70MgQ=
-----END CERTIFICATE-----
Generated at Wed May 13 07:46:36 2026 by rpki-client