Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC840CDA456B11F19B8C1CFBCE1D38B0.roa
File: DC840CDA456B11F19B8C1CFBCE1D38B0.roa (raw, json)
Hash identifier: ND2IheFXogeq9cmVn1MjPRdH2c5Z264gvqg+X2CTfJQ=
Subject key identifier: 50:05:4B:58:FC:67:08:C7:6C:5A:44:A4:35:0D:3E:EC:D3:0D:D8:85
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B0C2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC840CDA456B11F19B8C1CFBCE1D38B0.roa
Signing time: Fri 01 May 2026 14:41:39 +0000
ROA not before: Fri 01 May 2026 14:41:35 +0000
ROA not after: Thu 04 Jun 2026 14:41:35 +0000
asID: 136800
IP address blocks: 156.234.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110786 (0x1b0c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 14:41:35 2026 GMT
Not After : Jun 4 14:41:35 2026 GMT
Subject: CN=69f4bba3-57f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:31:42:61:1a:16:e3:d1:2f:88:d2:ce:1d:
aa:4a:74:90:c9:78:8a:bd:17:fc:c1:63:b8:4c:73:
02:8d:ef:ea:8b:b0:38:04:7f:af:7a:aa:73:e5:28:
2d:da:4f:d2:f9:f0:34:8d:20:89:e3:d7:f1:02:03:
2d:e2:d7:d7:cc:fd:6c:4e:0b:88:3a:ab:1f:e4:b8:
66:f3:28:3f:f3:49:64:ff:a5:a6:1f:3c:ff:38:d1:
f6:56:cc:24:04:c9:d9:57:b8:5d:1a:d7:6c:20:76:
91:ff:a9:72:a1:ad:d3:52:8c:74:51:97:dd:e6:4d:
62:40:11:f9:dd:f1:43:19:15:74:37:53:5f:61:b4:
dd:3e:29:15:b6:f3:1c:45:b1:23:8b:ce:25:b2:ee:
b2:ba:19:b2:24:e4:56:72:17:a0:5b:48:9e:09:69:
fd:bc:1c:74:e8:36:13:d1:21:bf:99:e0:48:cc:5f:
3c:e5:93:18:37:00:89:0b:85:54:76:5a:46:40:53:
a1:23:5f:12:78:78:83:fc:fa:a0:15:40:19:44:56:
0a:e6:ee:67:61:2d:f2:70:f1:87:58:78:6f:d0:14:
3c:5b:f1:b6:bf:a7:33:2d:d4:1e:b0:1b:82:85:83:
58:ab:3a:8b:b9:4d:ab:f0:96:5b:1a:41:31:68:a2:
1f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:05:4B:58:FC:67:08:C7:6C:5A:44:A4:35:0D:3E:EC:D3:0D:D8:85
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC840CDA456B11F19B8C1CFBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.77.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:6a:e7:f4:7c:a7:a7:60:d4:0f:6c:d5:aa:e8:41:a1:35:6c:
ce:83:61:36:9c:16:43:21:e8:3b:94:2f:2d:c1:0f:6f:e3:2b:
bf:da:8b:01:ec:94:d8:37:cc:ea:2d:bf:6b:d5:4a:40:64:bb:
1a:03:61:c9:51:ac:39:18:de:c7:43:7e:62:6b:70:46:8d:23:
33:78:87:f6:7a:74:0f:1c:c1:30:10:1a:a9:a1:eb:d4:e1:fc:
66:e6:0d:5d:d2:82:10:a3:27:99:53:ff:a5:39:54:ba:8f:e8:
4e:b2:04:da:af:3b:fe:01:f9:c5:20:b5:05:0d:68:aa:2d:67:
45:d5:fe:c5:b1:d9:c5:2d:24:46:1c:b2:cc:85:04:b7:21:3d:
00:71:99:61:0c:24:05:db:4f:35:30:49:bd:5f:2d:97:d8:1d:
12:c3:48:57:bf:36:88:a9:f2:2d:eb:2c:3a:69:ce:0c:96:ae:
49:9a:05:d6:b0:ae:1f:c1:56:2f:32:54:c4:f2:24:c7:fb:26:
2f:e8:b0:07:e3:c4:61:b9:40:d2:e8:07:ff:f9:9c:95:93:1e:
6f:87:55:2c:8c:df:b1:49:f7:b7:df:10:53:22:2d:4b:5a:0a:
8d:3c:0e:53:88:24:3a:4e:cf:9a:13:64:08:e6:52:90:d6:a2:
ae:4e:f9:da
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbDCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTAxMTQ0MTM1WhcNMjYwNjA0MTQ0MTM1WjAYMRYw
FAYDVQQDEw02OWY0YmJhMy01N2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuBExQmEaFuPRL4jSzh2qSnSQyXiKvRf8wWO4THMCje/qi7A4BH+veqpz
5Sgt2k/S+fA0jSCJ49fxAgMt4tfXzP1sTguIOqsf5Lhm8yg/80lk/6WmHzz/ONH2
VswkBMnZV7hdGtdsIHaR/6lyoa3TUox0UZfd5k1iQBH53fFDGRV0N1NfYbTdPikV
tvMcRbEji84lsu6yuhmyJORWchegW0ieCWn9vBx06DYT0SG/meBIzF885ZMYNwCJ
C4VUdlpGQFOhI18SeHiD/PqgFUAZRFYK5u5nYS3ycPGHWHhv0BQ8W/G2v6czLdQe
sBuChYNYqzqLuU2r8JZbGkExaKIfhwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFAF
S1j8ZwjHbFpEpDUNPuzTDdiFMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EQzg0MENEQTQ1NkIxMUYxOUI4QzFDRkJDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOpNMA0GCSqGSIb3DQEBCwUA
A4IBAQCdauf0fKenYNQPbNWq6EGhNWzOg2E2nBZDIeg7lC8twQ9v4yu/2osB7JTY
N8zqLb9r1UpAZLsaA2HJUaw5GN7HQ35ia3BGjSMzeIf2enQPHMEwEBqpoevU4fxm
5g1d0oIQoyeZU/+lOVS6j+hOsgTarzv+AfnFILUFDWiqLWdF1f7FsdnFLSRGHLLM
hQS3IT0AcZlhDCQF2081MEm9Xy2X2B0Sw0hXvzaIqfIt6yw6ac4Mlq5JmgXWsK4f
wVYvMlTE8iTH+yYv6LAH48RhuUDS6Af/+ZyVkx5vh1UsjN+xSfe33xBTIi1LWgqN
PA5TiCQ6Ts+aE2QI5lKQ1qKuTvna
-----END CERTIFICATE-----
Generated at Wed May 13 11:46:55 2026 by rpki-client