Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1BAAC26492611F1A37890B3CE1D38B0.roa
File: F1BAAC26492611F1A37890B3CE1D38B0.roa (raw, json)
Hash identifier: F0Y7D/6xoYmL41G/h8mzyox4ZlYPsR9xcPRKDie0DVc=
Subject key identifier: DA:FC:EE:81:59:22:6F:7C:25:A0:5A:CA:52:36:7A:05:D1:40:76:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B1C4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1BAAC26492611F1A37890B3CE1D38B0.roa
Signing time: Wed 06 May 2026 08:38:24 +0000
ROA not before: Wed 06 May 2026 08:38:19 +0000
ROA not after: Sun 06 May 2029 08:38:19 +0000
asID: 17561
IP address blocks: 156.237.130.0/24 maxlen: 24
156.237.131.0/24 maxlen: 24
156.237.132.0/24 maxlen: 24
156.237.133.0/24 maxlen: 24
156.237.134.0/24 maxlen: 24
156.237.135.0/24 maxlen: 24
156.237.136.0/24 maxlen: 24
156.237.137.0/24 maxlen: 24
156.237.138.0/24 maxlen: 24
156.237.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111044 (0x1b1c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 08:38:19 2026 GMT
Not After : May 6 08:38:19 2029 GMT
Subject: CN=69fafe00-60e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:71:06:68:09:97:b2:8c:81:99:93:75:20:
83:4e:8e:52:10:1b:f9:39:b0:a1:98:54:20:40:da:
3f:ac:e0:21:70:c3:40:2a:ca:25:ea:2f:31:ff:68:
51:13:3e:3f:ca:33:0e:84:ec:61:ad:4c:85:73:a5:
cc:cf:9a:a2:26:64:12:89:6d:f4:0a:2a:6e:bd:b1:
83:80:20:4a:84:a9:66:64:9f:01:e4:23:20:3e:d3:
ce:5e:b4:a9:f7:07:c7:6a:29:49:42:af:04:0a:02:
d9:e6:ca:fd:b5:a4:a0:18:a7:89:16:0f:f0:02:d8:
c7:3b:e7:71:40:f7:41:dd:0f:d1:b7:48:b6:57:a3:
fe:35:a2:70:0b:f5:87:d1:26:1b:99:a0:76:ef:05:
35:39:40:af:b4:f4:2d:54:58:90:a2:ce:56:f5:2f:
79:18:49:dd:a7:68:0f:f5:d5:4e:db:11:92:4d:b4:
df:80:57:99:fe:50:8e:1c:3e:5a:8b:b6:5a:fe:d9:
3e:4e:d2:62:11:ea:bd:55:5f:7d:1d:d9:8c:3e:41:
5e:af:31:a1:36:00:b3:1c:ee:c8:28:19:7b:33:71:
29:f3:55:0a:0e:ac:c3:b8:01:b2:8b:cd:f4:ed:ce:
ab:63:6e:8e:2f:e5:14:a2:15:db:41:83:76:44:65:
53:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FC:EE:81:59:22:6F:7C:25:A0:5A:CA:52:36:7A:05:D1:40:76:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1BAAC26492611F1A37890B3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.130.0-156.237.139.255
Signature Algorithm: sha256WithRSAEncryption
3c:f6:2b:9a:62:79:60:ef:22:2e:f6:59:b0:da:f5:c2:ec:47:
91:d0:33:4b:51:2e:51:7a:a8:c6:76:20:4b:42:ef:6f:a6:90:
c5:d1:9c:fc:91:0d:64:f8:c1:f0:60:33:96:72:fb:c1:30:a1:
d5:63:4f:72:22:04:fa:76:f3:ef:3e:12:fd:2f:6d:db:a3:0e:
bf:cb:03:b5:33:de:79:79:01:34:43:12:ec:63:8f:1a:d4:e6:
01:8d:bd:f6:ca:1a:55:2d:23:bc:84:a7:b2:96:b6:ba:03:48:
16:d3:ea:67:25:ff:8c:ea:9c:ee:77:bd:76:fd:31:66:f9:23:
77:43:cb:77:46:2b:f4:a9:2e:db:e6:95:b4:b1:34:6f:4b:2d:
b3:5f:13:59:2e:f5:25:32:37:c6:0c:f2:16:1f:8d:67:26:69:
bf:f3:11:93:87:03:23:d7:90:ce:cc:2f:56:f9:36:79:f5:3e:
5e:6b:12:b5:ff:82:ad:b6:ad:75:3e:fc:52:8c:52:f9:ee:3d:
6b:e6:4e:cf:00:45:a0:9b:ea:ec:26:d3:a6:4a:ed:67:f9:22:
33:23:72:cc:21:08:7a:eb:54:39:78:18:fc:b8:48:bb:99:75:
b5:d6:4d:d7:4f:24:bb:3c:47:32:9d:48:68:4d:97:62:37:02:
55:5e:9c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:24:47 2026 by rpki-client