Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F02B7FA44A7D11F1BF75B1CCCE1D38B0.roa
File: F02B7FA44A7D11F1BF75B1CCCE1D38B0.roa (raw, json)
Hash identifier: KmLKfCb4ex4aL8s0WoP2gOYbD/qlLlfB+miORd4XAVw=
Subject key identifier: 8D:17:08:66:4D:80:AA:3F:AB:17:E4:68:14:B3:AF:ED:F4:B8:74:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B29D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F02B7FA44A7D11F1BF75B1CCCE1D38B0.roa
Signing time: Fri 08 May 2026 01:33:39 +0000
ROA not before: Fri 08 May 2026 01:33:34 +0000
ROA not after: Mon 07 May 2029 01:33:34 +0000
asID: 17561
IP address blocks: 156.232.66.0/24 maxlen: 24
156.232.67.0/24 maxlen: 24
156.232.68.0/24 maxlen: 24
156.232.69.0/24 maxlen: 24
156.232.70.0/24 maxlen: 24
156.232.71.0/24 maxlen: 24
156.232.72.0/24 maxlen: 24
156.232.73.0/24 maxlen: 24
156.232.74.0/24 maxlen: 24
156.232.75.0/24 maxlen: 24
156.232.76.0/24 maxlen: 24
156.232.77.0/24 maxlen: 24
156.232.78.0/24 maxlen: 24
156.232.79.0/24 maxlen: 24
156.232.80.0/24 maxlen: 24
156.232.81.0/24 maxlen: 24
156.232.82.0/24 maxlen: 24
156.232.83.0/24 maxlen: 24
156.232.84.0/24 maxlen: 24
156.232.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111261 (0x1b29d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 01:33:34 2026 GMT
Not After : May 7 01:33:34 2029 GMT
Subject: CN=69fd3d73-f9f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:56:48:4b:51:b0:98:e3:06:a0:99:6f:89:d1:
00:1b:75:7c:2c:18:22:19:0b:e4:80:3d:de:8a:7b:
91:ea:cc:71:b8:14:5e:68:a6:51:b0:41:87:e1:8a:
a4:9f:ac:f0:66:f8:94:2b:f7:17:5c:e1:0a:b3:04:
4c:15:18:d2:3a:0d:85:f0:7d:b9:c4:c9:47:53:a1:
d2:fa:bf:bf:29:61:55:de:5f:27:59:3e:cd:26:76:
b3:18:46:a6:1f:73:77:3e:50:7c:52:4f:9f:32:32:
5b:31:6a:0c:0a:91:e6:81:b8:8a:fe:53:70:63:4b:
4d:04:c9:46:ea:8d:9e:30:ba:cf:25:d0:ba:fa:82:
4b:96:b9:cd:8b:e4:43:c6:e0:6c:64:5f:4a:36:7f:
54:cb:5d:0d:66:18:8f:b1:f6:f2:9b:5f:a4:0f:fc:
e0:6a:a8:24:10:0a:56:6b:ec:26:0d:19:63:2b:45:
3a:f0:de:ff:88:a0:68:5b:88:e9:b7:8f:7a:4f:b1:
2f:97:cc:0d:e8:48:9e:f0:1f:1d:e2:1e:41:07:32:
dc:2a:c2:00:dc:45:32:df:0b:85:b4:ad:82:93:70:
22:78:61:15:9a:83:85:24:f1:b4:64:81:bb:28:7a:
b6:d5:b2:6e:38:84:39:68:68:8f:12:60:b8:b0:84:
fb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:17:08:66:4D:80:AA:3F:AB:17:E4:68:14:B3:AF:ED:F4:B8:74:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F02B7FA44A7D11F1BF75B1CCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.66.0-156.232.85.255
Signature Algorithm: sha256WithRSAEncryption
01:db:59:2b:b2:3b:2a:97:77:bf:e5:41:bf:e9:7d:c1:61:67:
9e:db:72:63:26:c0:7a:63:ad:ca:58:3b:ad:a0:8a:4e:f0:38:
22:87:65:33:1c:8b:50:69:4f:d6:d6:d1:02:3c:3f:05:ac:ce:
f0:c7:d3:d3:37:e9:fd:db:c1:4b:c5:1a:ba:52:0e:c8:9a:2b:
bf:26:70:c3:11:ea:73:48:76:65:83:e3:41:95:9a:d5:ea:53:
b9:29:43:bf:c0:6d:0b:8c:b9:59:4b:38:fd:ae:2f:27:0c:72:
d5:d9:52:56:cc:b7:e2:c6:e6:5e:62:81:5b:3f:e1:fe:92:7b:
83:0c:2e:70:41:dc:df:22:be:93:96:54:1d:ee:17:0c:11:3f:
ef:26:12:4a:be:d0:a6:e3:bd:36:aa:61:9b:78:48:b3:93:14:
cf:07:eb:38:37:e6:60:4b:bc:02:75:70:f9:59:a2:14:87:84:
cc:f7:c1:47:7d:89:96:bb:35:f5:30:ab:15:ee:b8:2d:60:d1:
6a:25:04:69:54:3e:e6:d4:a3:6b:20:ab:6a:c1:09:21:00:b6:
8f:0d:0a:6e:85:29:66:a4:57:2a:73:b4:bc:1a:84:33:1b:15:
8a:3d:d5:d7:18:8a:4f:42:66:a1:65:d9:b8:f5:63:e8:35:85:
4f:3c:15:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:20:56 2026 by rpki-client