Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F54309EC459D11F1A3EE42A6CE1D38B0.roa
File: F54309EC459D11F1A3EE42A6CE1D38B0.roa (raw, json)
Hash identifier: B9UAO+yk+DhbfLHO3Ot1xamL/8UrDSEL0GFJutccYRg=
Subject key identifier: BB:BF:49:E1:EA:A4:E9:17:77:56:26:CF:AE:84:96:18:51:D9:3A:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B0EE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F54309EC459D11F1A3EE42A6CE1D38B0.roa
Signing time: Fri 01 May 2026 20:40:15 +0000
ROA not before: Fri 01 May 2026 20:40:10 +0000
ROA not after: Tue 09 Jun 2026 20:40:10 +0000
asID: 48031
IP address blocks: 156.238.26.0/24 maxlen: 24
156.238.27.0/24 maxlen: 24
156.238.32.0/24 maxlen: 24
156.238.33.0/24 maxlen: 24
156.238.34.0/24 maxlen: 24
156.238.35.0/24 maxlen: 24
156.238.36.0/24 maxlen: 24
156.238.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110830 (0x1b0ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 20:40:10 2026 GMT
Not After : Jun 9 20:40:10 2026 GMT
Subject: CN=69f50faf-ffdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3a:9c:66:3a:4f:41:92:7d:1f:9f:77:43:2c:
91:d9:41:6f:d3:ee:d8:48:80:29:b3:44:be:ef:6a:
69:8d:c8:4d:e2:41:44:97:1d:52:de:05:ae:da:cd:
35:de:2a:29:e5:54:23:7e:15:88:f1:1d:db:5d:f7:
c3:54:9c:48:23:49:75:52:24:8e:5a:43:b5:36:52:
64:2e:26:04:b4:23:dc:40:ee:08:76:a7:74:e3:f4:
be:4c:80:39:62:77:3a:39:2b:9e:fd:81:86:22:dd:
af:78:80:06:e9:fe:e6:fb:28:ce:ad:0b:38:f5:2d:
30:f9:f4:eb:72:36:82:7f:30:9c:8f:68:d4:ee:28:
f4:4f:ab:3d:d2:73:06:16:f5:92:de:5e:c1:d8:86:
b0:52:49:75:49:5f:b5:03:94:fc:5d:e9:ab:c3:f4:
e2:79:80:3c:60:96:d8:f1:91:a5:25:bc:b5:f4:4d:
a5:f1:47:1b:ac:30:f5:1b:f1:62:44:cb:1f:dd:39:
4d:84:33:d1:b9:30:a6:6b:f8:06:15:bf:ae:39:69:
d5:31:72:93:10:f4:f3:2f:d7:aa:b6:8b:07:79:c7:
d3:e0:94:50:dd:be:f5:65:67:dd:aa:40:3e:ba:81:
39:aa:9e:17:33:57:3f:06:d4:15:61:e6:3d:41:cc:
4c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BF:49:E1:EA:A4:E9:17:77:56:26:CF:AE:84:96:18:51:D9:3A:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F54309EC459D11F1A3EE42A6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.26.0/23
156.238.32.0-156.238.37.255
Signature Algorithm: sha256WithRSAEncryption
7a:3c:26:8a:66:0d:50:21:de:57:a5:5f:cd:45:d5:78:d1:02:
f3:3d:b4:8e:bc:13:10:66:e6:52:ea:21:24:ba:8c:fe:38:60:
0d:0f:2d:5b:aa:55:95:71:6e:4e:a1:06:c4:f1:57:2b:db:8c:
a1:92:5a:82:8d:ce:50:f3:d3:89:1a:48:a7:76:cc:75:cd:d2:
59:c7:4b:26:3e:27:a8:0e:fb:31:68:f2:ea:59:ec:3a:8f:c3:
5f:d3:fe:1c:96:39:66:0b:c4:c9:0f:db:ef:2e:42:60:41:72:
e8:01:62:d6:59:04:99:a1:1d:df:7c:d3:08:c6:24:19:ab:8d:
2a:27:fd:be:c1:11:72:f8:0f:b8:3e:47:64:8f:ea:c5:d8:72:
85:e4:a3:a0:00:48:60:2d:67:66:c1:2a:12:a7:e9:a1:26:03:
8d:d2:7e:c2:9a:c9:14:f6:97:ec:0b:b0:5c:6d:5d:e1:78:0c:
2d:08:ed:bc:6d:53:00:96:35:7c:44:b7:18:1b:0c:05:95:bd:
5d:63:bc:89:db:6e:63:56:45:16:3e:1b:0a:c0:ac:6e:98:66:
bd:a7:d4:36:07:dd:cd:7f:16:35:b9:75:7a:bf:4a:47:92:5a:
08:56:ed:f8:9f:98:60:85:f8:35:73:27:99:a1:6b:2d:7c:24:
8b:d5:44:52
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgIDAbDuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTAxMjA0MDEwWhcNMjYwNjA5MjA0MDEwWjAYMRYw
FAYDVQQDEw02OWY1MGZhZi1mZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxTqcZjpPQZJ9H593QyyR2UFv0+7YSIAps0S+72ppjchN4kFElx1S3gWu
2s013iop5VQjfhWI8R3bXffDVJxII0l1UiSOWkO1NlJkLiYEtCPcQO4Idqd04/S+
TIA5Ync6OSue/YGGIt2veIAG6f7m+yjOrQs49S0w+fTrcjaCfzCcj2jU7ij0T6s9
0nMGFvWS3l7B2IawUkl1SV+1A5T8Xemrw/TieYA8YJbY8ZGlJby19E2l8UcbrDD1
G/FiRMsf3TlNhDPRuTCma/gGFb+uOWnVMXKTEPTzL9eqtosHecfT4JRQ3b71ZWfd
qkA+uoE5qp4XM1c/BtQVYeY9QcxM0QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFLu/
SeHqpOkXd1Ymz66ElhhR2TrCMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GNTQzMDlFQzQ1OUQxMUYxQTNFRTQyQTZDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQBnO4aMAwDBAWc7iADBAGc7iQw
DQYJKoZIhvcNAQELBQADggEBAHo8JopmDVAh3lelX81F1XjRAvM9tI68ExBm5lLq
ISS6jP44YA0PLVuqVZVxbk6hBsTxVyvbjKGSWoKNzlDz04kaSKd2zHXN0lnHSyY+
J6gO+zFo8upZ7DqPw1/T/hyWOWYLxMkP2+8uQmBBcugBYtZZBJmhHd980wjGJBmr
jSon/b7BEXL4D7g+R2SP6sXYcoXko6AASGAtZ2bBKhKn6aEmA43SfsKayRT2l+wL
sFxtXeF4DC0I7bxtUwCWNXxEtxgbDAWVvV1jvInbbmNWRRY+GwrArG6YZr2n1DYH
3c1/FjW5dXq/SkeSWghW7fifmGCF+DVzJ5mhay18JIvVRFI=
-----END CERTIFICATE-----
Generated at Wed May 13 08:10:05 2026 by rpki-client