Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F672E2BA3E4011F19CB7A1C8CE1D38B0.roa
File: F672E2BA3E4011F19CB7A1C8CE1D38B0.roa (raw, json)
Hash identifier: Vdh6SrkpaT1yqw+QJTvbIXqpJgwnWUeGA8ocYhEI+PE=
Subject key identifier: 78:EE:04:97:FC:D4:33:09:37:C0:8C:5D:21:31:FF:6A:E6:5D:65:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE07
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F672E2BA3E4011F19CB7A1C8CE1D38B0.roa
Signing time: Wed 22 Apr 2026 11:46:56 +0000
ROA not before: Wed 22 Apr 2026 11:46:51 +0000
ROA not after: Thu 28 May 2026 11:46:51 +0000
asID: 48031
IP address blocks: 156.246.138.0/24 maxlen: 24
156.246.139.0/24 maxlen: 24
156.246.140.0/24 maxlen: 24
156.246.141.0/24 maxlen: 24
156.246.142.0/24 maxlen: 24
156.246.143.0/24 maxlen: 24
156.246.144.0/24 maxlen: 24
156.246.145.0/24 maxlen: 24
156.246.146.0/24 maxlen: 24
156.246.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110087 (0x1ae07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 11:46:51 2026 GMT
Not After : May 28 11:46:51 2026 GMT
Subject: CN=69e8b530-2f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a9:11:b8:23:4a:57:b0:46:8d:3e:82:b9:b3:
3f:c8:d2:70:f2:4f:43:60:3f:ae:8f:1d:da:b0:04:
b8:25:82:d6:bd:79:02:1f:59:27:ba:ca:59:f4:0e:
88:e2:d8:e7:c1:9e:7d:36:89:15:f6:cc:95:5f:3b:
b6:ca:04:d2:2e:33:05:2d:82:20:51:a7:cb:56:10:
e5:82:97:27:70:ba:d3:3e:68:04:e3:36:45:96:c1:
4a:83:4b:95:dc:88:80:38:16:31:2c:97:b7:b4:5b:
82:18:8b:6c:85:e9:7e:0a:2e:14:90:24:fe:c6:63:
11:52:78:1e:77:6f:cd:cd:7a:81:93:b4:2e:be:53:
12:aa:3c:30:7b:29:62:59:59:a1:a7:f8:18:ff:a5:
00:32:d1:88:c9:44:4c:58:71:b2:4d:d5:84:af:97:
e5:57:3a:64:58:87:90:68:ab:9e:91:19:8e:9d:d6:
e0:25:c5:5c:d8:f0:aa:82:5c:b6:1d:6c:1f:7b:54:
0c:42:ec:7c:8d:e8:84:15:63:ac:78:a6:f9:be:eb:
3f:61:bc:64:39:89:fc:b6:e8:37:ac:fe:2f:c2:c2:
3d:81:71:cd:5d:39:ad:29:e5:91:e6:fd:3b:9a:ff:
f5:1b:32:76:50:20:01:70:ba:6b:d0:26:f3:0b:b2:
60:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:EE:04:97:FC:D4:33:09:37:C0:8C:5D:21:31:FF:6A:E6:5D:65:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F672E2BA3E4011F19CB7A1C8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.138.0-156.246.147.255
Signature Algorithm: sha256WithRSAEncryption
a9:c4:43:37:d4:01:59:5d:13:8f:b5:2b:67:55:8b:79:4b:ec:
f5:55:d0:6a:5c:f4:65:33:17:27:94:fb:00:39:b2:6a:e8:36:
18:ef:59:7f:0a:8e:c3:59:ee:2d:97:05:46:3d:f2:f9:53:bd:
b9:45:5a:57:1a:35:dc:1c:ed:1e:63:28:f4:d4:3f:a9:b0:70:
1f:98:e1:28:64:a6:a6:c2:99:5f:cb:f0:b0:20:b3:15:d4:af:
6a:28:62:37:1f:ae:2b:d9:e5:39:b8:4c:b0:f6:9f:b8:a0:fe:
0c:8b:2a:0c:3b:3d:1f:72:1b:23:26:b8:fd:55:8a:03:d4:62:
7c:95:0d:37:cb:8e:03:d7:bd:25:4e:48:12:b6:f5:95:96:a3:
6b:8a:34:c8:cb:b3:39:b4:e6:2d:14:2e:b7:91:06:9d:0f:87:
79:12:30:9b:f0:4a:f3:ed:24:f2:f5:a5:cd:64:7c:81:c3:a3:
85:7c:f3:3a:61:a3:66:ae:f8:bb:cd:c3:5a:e5:45:5e:6c:10:
c8:6c:3a:7c:01:8b:22:38:c9:a3:1b:aa:79:8c:dc:2f:12:55:
77:16:3e:dd:0d:2f:3a:b3:70:c8:9e:3d:d8:7d:f3:a1:16:c6:
3c:39:f9:7a:22:29:29:0a:9e:79:2d:c6:eb:ca:ec:a3:db:fd:
0d:a3:0a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:43:14 2026 by rpki-client