Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D69869BE3FCC11F1950E36C3CE1D38B0.roa
File: D69869BE3FCC11F1950E36C3CE1D38B0.roa (raw, json)
Hash identifier: hAgb6YKXra7hJLMPywJBtlz1m0l3mtXH2RRUplmrUw0=
Subject key identifier: 24:73:09:EB:B7:B0:B2:E3:0E:E1:12:5C:BE:EC:AF:6A:7A:2E:C2:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AEDE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D69869BE3FCC11F1950E36C3CE1D38B0.roa
Signing time: Fri 24 Apr 2026 11:00:43 +0000
ROA not before: Fri 24 Apr 2026 11:00:39 +0000
ROA not after: Sun 31 May 2026 11:00:39 +0000
asID: 44559
IP address blocks: 156.239.19.0/24 maxlen: 24
156.239.20.0/24 maxlen: 24
156.239.132.0/24 maxlen: 24
156.239.133.0/24 maxlen: 24
156.239.135.0/24 maxlen: 24
156.243.228.0/24 maxlen: 24
156.243.242.0/24 maxlen: 24
156.243.243.0/24 maxlen: 24
156.243.248.0/24 maxlen: 24
156.249.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110302 (0x1aede)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 11:00:39 2026 GMT
Not After : May 31 11:00:39 2026 GMT
Subject: CN=69eb4d5b-7b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5d:27:dc:6d:45:e5:a2:73:3f:7e:fa:88:0d:
56:c3:43:d8:4f:66:55:5a:f2:82:f6:00:e9:51:20:
e9:3a:4d:10:19:a9:7b:4e:40:21:8a:9d:f1:87:f1:
ed:05:02:7d:86:b1:49:72:9f:df:40:e3:00:03:7c:
7f:7e:9c:10:09:05:54:5a:f0:63:60:a9:86:ad:aa:
c0:e5:d1:69:7a:74:2c:07:d3:00:22:86:f9:0b:88:
84:8d:a1:b0:5d:69:c6:79:dc:1e:6c:23:ca:cd:fd:
5b:e7:cb:aa:f7:ff:68:1e:f3:7a:7a:62:82:a5:1f:
e9:17:a7:e2:2e:7c:ec:7f:2c:8f:5a:01:2c:ed:42:
68:5d:9d:2b:19:c5:74:ec:be:eb:11:e1:22:52:07:
19:31:60:48:4c:6c:32:eb:78:0c:c4:a1:ad:4f:1f:
8b:6b:c0:c2:46:e9:0c:d8:75:95:b2:cf:e6:e8:dc:
2c:c8:29:73:db:bd:5c:03:6e:30:3f:c8:51:a4:87:
e4:c1:e6:d0:78:3b:c3:12:e6:9e:cb:16:e1:6b:09:
d1:6e:b7:d6:9f:79:00:7a:ce:38:a9:ee:4d:b3:25:
f5:e3:33:95:7e:8c:12:69:fb:d4:00:06:5e:32:f2:
4c:7b:78:12:45:c0:be:a7:24:9a:60:45:c5:b0:80:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:73:09:EB:B7:B0:B2:E3:0E:E1:12:5C:BE:EC:AF:6A:7A:2E:C2:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D69869BE3FCC11F1950E36C3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.19.0-156.239.20.255
156.239.132.0/23
156.239.135.0/24
156.243.228.0/24
156.243.242.0/23
156.243.248.0/24
156.249.102.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:cd:68:0c:4d:c8:61:9c:e5:09:e8:cc:45:11:c4:fa:f5:b6:
3c:ca:76:f6:87:41:85:65:4f:b6:44:5a:43:96:6d:bd:d6:e4:
85:4c:01:57:50:80:74:fd:48:44:83:f4:eb:25:b9:5c:cc:12:
a4:33:88:a8:53:87:d7:1b:94:4a:a2:4e:2d:8f:dd:12:a4:e0:
97:55:ae:09:cc:cf:07:86:83:d9:d6:7f:f8:e5:34:6e:9b:ce:
17:48:b3:f8:27:b1:5d:cc:e3:a4:c8:0d:93:6f:02:c4:d3:0b:
61:ff:62:b1:2c:f0:8b:f6:f6:58:5b:8b:9e:1f:89:a2:67:69:
79:f5:1b:d5:47:e1:5b:0b:c7:43:af:89:74:df:b2:17:18:9b:
9b:19:bb:ce:cb:cc:6c:37:2c:e1:af:04:d6:25:f1:f1:a2:83:
d1:24:b0:6d:34:e3:15:b1:31:35:df:66:ee:d2:f8:d3:d8:60:
7f:3f:cb:c2:3c:69:f0:81:0f:73:3b:50:e8:79:c7:a9:f9:fe:
b8:7f:ba:b2:17:83:33:f1:ee:c5:ee:08:83:53:2d:c9:86:21:
94:13:d0:9e:1f:68:ad:71:0b:f8:94:33:5b:b4:0e:47:7c:d7:
6c:c8:23:1a:09:1c:26:46:84:40:1f:23:4c:89:e3:71:5d:71:
a7:13:37:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:35:03 2026 by rpki-client