Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF5FF14A3E4311F1ADF0FDDACE1D38B0.roa
File: EF5FF14A3E4311F1ADF0FDDACE1D38B0.roa (raw, json)
Hash identifier: OUbl7+I4xaMIIIs+97S9i0G1PEJrP3XyqTKf3Q16RZs=
Subject key identifier: 5D:B7:E9:65:38:4B:93:45:16:07:4D:57:87:69:98:19:3A:BF:3A:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE0D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF5FF14A3E4311F1ADF0FDDACE1D38B0.roa
Signing time: Wed 22 Apr 2026 12:08:13 +0000
ROA not before: Wed 22 Apr 2026 12:08:08 +0000
ROA not after: Fri 29 May 2026 12:08:08 +0000
asID: 214143
IP address blocks: 156.230.136.0/21 maxlen: 24
156.231.13.0/24 maxlen: 24
156.231.108.0/23 maxlen: 24
156.231.176.0/21 maxlen: 24
156.249.192.0/23 maxlen: 24
156.249.198.0/23 maxlen: 24
156.249.210.0/23 maxlen: 24
156.252.27.0/24 maxlen: 24
156.252.28.0/24 maxlen: 24
156.254.112.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110093 (0x1ae0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 12:08:08 2026 GMT
Not After : May 29 12:08:08 2026 GMT
Subject: CN=69e8ba2d-b526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:be:c4:83:69:35:00:69:48:17:a8:97:4c:fc:
20:25:72:09:85:90:2d:3b:ab:51:61:72:f1:0a:6a:
d2:49:df:7e:6e:2c:db:06:30:dc:0f:03:6f:95:13:
f9:b6:58:2d:61:be:da:4e:53:a7:79:e1:b2:1e:90:
ef:ed:c4:eb:e7:e2:89:0d:d1:ab:89:9a:d7:7c:a0:
2e:14:93:9e:e0:5c:98:06:1e:b1:ec:3a:28:03:8e:
b5:49:c0:18:cc:45:30:14:78:21:61:9e:ff:0c:31:
ae:98:06:a7:a7:e5:2a:bd:5a:a3:40:e4:42:45:4b:
76:eb:51:e2:99:fe:e9:38:85:13:4b:60:4a:ae:b9:
21:06:9c:26:e6:e0:bd:e9:3f:42:86:35:6f:6f:c9:
3d:18:ee:b2:7d:52:1b:61:1b:07:90:94:f0:de:85:
6f:26:7a:ce:74:59:5d:96:61:f2:70:f8:0b:82:39:
93:82:38:20:f1:31:7e:83:b4:87:a0:89:f6:dc:73:
32:8c:dc:7b:ab:34:d2:d7:a9:f2:39:41:64:8b:ff:
00:67:3b:ce:0d:3d:e2:95:8e:74:12:6f:ae:f7:89:
ad:3c:7e:ab:c8:da:cd:ee:41:5a:61:d9:1c:5e:32:
3b:27:ee:d2:03:50:a7:7a:a7:f7:9f:79:65:82:c0:
33:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B7:E9:65:38:4B:93:45:16:07:4D:57:87:69:98:19:3A:BF:3A:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF5FF14A3E4311F1ADF0FDDACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.136.0/21
156.231.13.0/24
156.231.108.0/23
156.231.176.0/21
156.249.192.0/23
156.249.198.0/23
156.249.210.0/23
156.252.27.0-156.252.28.255
156.254.112.0/23
Signature Algorithm: sha256WithRSAEncryption
87:e7:33:83:9a:73:40:35:0b:9b:57:dc:67:b6:85:42:9b:e9:
4f:40:3c:9c:27:20:30:d9:d4:f6:2d:96:20:0f:cf:f0:d1:b0:
3f:da:48:18:0b:bd:70:bc:93:c2:99:6a:6c:7a:dd:81:10:5d:
3c:9f:8c:4d:f4:ba:b6:ea:be:5b:8c:bd:1b:83:1c:2e:7d:2e:
26:bb:b4:e4:aa:93:ad:b7:df:a9:e5:bd:55:64:ab:2f:e0:d7:
8b:ac:ac:ab:63:43:9f:0c:40:bd:dc:e3:7f:2a:11:78:f4:15:
2a:73:04:e0:ef:61:29:c0:32:57:0e:22:9c:5d:ab:e8:e2:18:
84:61:9e:2c:24:3a:5d:a5:97:b8:10:9e:7b:6f:2b:ef:ec:0a:
e8:e9:44:6e:6d:44:9c:a0:a6:ae:92:af:a6:66:0c:d8:4a:8c:
41:4c:8d:59:ea:e3:b2:3d:0d:d3:5e:46:b9:5f:ac:3a:ae:3f:
ef:4f:11:0a:f4:2c:86:d6:ce:4e:a6:8b:c3:f7:d3:a3:fa:44:
22:ec:63:5a:4a:20:f3:95:30:56:f1:e1:ed:75:a8:34:90:53:
77:04:85:48:5b:11:af:ed:83:73:a1:97:ff:2d:eb:51:94:29:
d9:25:a0:9f:6a:23:af:60:1c:6d:ca:90:59:4c:59:a6:67:ab:
ce:bf:ca:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:48:14 2026 by rpki-client