Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E83728CA492E11F1B12EC2E1CE1D38B0.roa
File: E83728CA492E11F1B12EC2E1CE1D38B0.roa (raw, json)
Hash identifier: 27cQ2hatkbri4jfLu9csv7zEzAYD6P7BtQW/ziUd5Zo=
Subject key identifier: 2D:0B:69:CA:07:6D:9A:9F:F8:E1:1D:BE:2C:23:71:5E:59:8F:CF:B3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B1D6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E83728CA492E11F1B12EC2E1CE1D38B0.roa
Signing time: Wed 06 May 2026 09:35:24 +0000
ROA not before: Wed 06 May 2026 09:35:19 +0000
ROA not after: Sun 06 May 2029 09:35:19 +0000
asID: 17561
IP address blocks: 156.237.220.0/24 maxlen: 24
156.237.221.0/24 maxlen: 24
156.237.222.0/24 maxlen: 24
156.237.223.0/24 maxlen: 24
156.237.224.0/24 maxlen: 24
156.237.225.0/24 maxlen: 24
156.237.226.0/24 maxlen: 24
156.237.227.0/24 maxlen: 24
156.237.228.0/24 maxlen: 24
156.237.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111062 (0x1b1d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 09:35:19 2026 GMT
Not After : May 6 09:35:19 2029 GMT
Subject: CN=69fb0b5c-5b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ff:34:97:2c:3e:c7:92:e1:e8:f9:35:da:d4:
99:e1:81:07:cf:77:d7:1c:99:d6:9a:b9:e4:71:6e:
45:54:3e:81:cf:3a:4b:f9:49:3e:c2:05:54:81:b5:
3e:9c:3a:c9:8f:b8:c3:62:34:95:63:6d:ea:ce:25:
c3:83:70:b0:50:cb:0c:c1:17:81:ba:9d:14:0c:b5:
13:71:8c:2f:d0:03:d9:29:4e:d2:38:20:08:b5:09:
18:df:3c:3a:48:cc:b0:92:ba:b5:42:f2:02:2e:68:
44:00:6c:ff:dc:8b:02:79:40:70:f3:02:6b:74:c8:
82:40:76:a3:0f:32:77:f4:77:32:5a:70:45:ca:f3:
32:00:fc:07:94:df:87:8b:ee:ad:94:95:07:15:9e:
e7:6a:7f:25:6c:a5:6e:eb:05:61:32:50:b1:61:37:
74:f1:1b:68:9a:16:a8:e2:14:b3:77:7d:82:d3:33:
ce:a4:77:86:73:7d:5e:96:b6:bb:57:d8:ab:b8:4d:
0b:cd:9f:20:62:3e:cd:e3:bc:e6:8c:d1:51:52:a3:
fd:a6:4c:ae:b6:df:78:f7:5a:90:55:60:31:95:17:
0a:69:d5:1b:46:a0:0b:b9:33:eb:ec:6e:5a:a6:d6:
d8:33:db:b4:c1:47:63:b3:ab:b6:12:e9:ae:44:0e:
21:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:0B:69:CA:07:6D:9A:9F:F8:E1:1D:BE:2C:23:71:5E:59:8F:CF:B3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E83728CA492E11F1B12EC2E1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.220.0-156.237.229.255
Signature Algorithm: sha256WithRSAEncryption
11:34:4f:0a:43:7e:17:b6:88:70:6f:16:26:f0:58:e8:53:3d:
a6:b5:ca:5d:28:9b:8a:0e:59:61:8e:98:4c:96:35:5f:bf:b7:
d0:07:85:7d:11:4c:5e:a2:3c:bb:55:b9:90:a4:b7:e6:01:2a:
6d:a5:50:2f:ab:1c:a9:e4:ef:72:70:27:1a:06:fa:b9:6b:71:
3d:77:51:86:33:e1:68:c3:51:07:9d:1f:2c:1d:9b:4e:70:2e:
96:d2:70:12:7a:ab:bb:c9:d1:61:51:7a:e7:95:fc:a0:22:84:
14:6a:cc:cf:e0:e0:23:42:d9:92:9a:ab:ad:d1:fb:aa:4c:cf:
cd:90:92:73:e9:8e:07:23:25:45:83:66:d6:6d:9b:c3:b5:e3:
a7:ba:74:bb:e8:61:98:1b:e3:9e:58:5c:c9:7e:0a:7d:19:4a:
99:8c:d1:fe:a7:96:9f:e6:c7:56:06:12:c9:e2:be:8c:ad:f3:
70:c8:03:94:b7:c4:5b:ec:4d:83:c0:f8:d0:66:ad:38:4f:84:
ea:0a:a6:35:28:43:73:dd:88:e4:36:0e:f4:ac:23:aa:72:35:
4e:99:c5:34:31:04:7b:28:8f:87:2a:dc:bd:bc:18:b2:4e:c1:
f1:71:39:c7:ce:c4:0a:28:22:e8:5f:25:7a:e4:28:60:80:d9:
f9:e6:ee:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:27:44 2026 by rpki-client