Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/096AE214414811F1B543FBD4CE1D38B0.roa
File: 096AE214414811F1B543FBD4CE1D38B0.roa (raw, json)
Hash identifier: G2RTWbA719UMMAhUEWvPPIP3eA2M1jsm17ULV1r1g6s=
Subject key identifier: C5:F8:22:D8:D0:C4:C1:74:B9:0F:FD:4C:8B:34:4E:BF:57:90:D5:6B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AF5B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/096AE214414811F1B543FBD4CE1D38B0.roa
Signing time: Sun 26 Apr 2026 08:15:08 +0000
ROA not before: Sun 26 Apr 2026 08:15:03 +0000
ROA not after: Thu 04 Jun 2026 08:15:03 +0000
asID: 151407
IP address blocks: 156.248.11.0/24 maxlen: 24
156.248.12.0/24 maxlen: 24
156.248.13.0/24 maxlen: 24
156.248.14.0/24 maxlen: 24
156.248.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 Apr 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110427 (0x1af5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 08:15:03 2026 GMT
Not After : Jun 4 08:15:03 2026 GMT
Subject: CN=69edc98c-988f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ec:3c:43:d5:b2:9d:1e:ca:44:4a:02:b1:d3:
20:e2:b3:ed:92:72:69:2b:39:eb:91:c0:e7:86:8f:
8c:e5:a4:b1:9e:24:c2:62:bb:e7:90:25:1e:79:3b:
cc:68:5f:60:05:e3:46:b6:07:46:30:8e:81:9e:a4:
12:28:cf:c5:c8:5e:78:db:e9:8f:bb:43:47:73:72:
fb:8c:b4:e2:d1:77:d5:0e:49:04:78:0f:bb:43:ed:
e4:f8:3c:09:c9:ea:e4:ff:0f:0a:84:82:ec:1e:4f:
45:f4:71:a9:4e:d1:af:f6:c0:00:11:31:01:7e:2d:
40:38:b4:98:98:34:91:9f:b9:8a:18:9b:47:34:d9:
18:d2:a6:fe:74:7c:08:49:3b:a6:cb:52:b4:f9:dc:
f0:8b:cb:d4:08:b5:2a:ef:38:39:ac:49:60:02:cc:
d0:0e:9d:b0:cb:71:23:00:66:a3:cb:9f:27:5c:be:
54:7a:81:4b:8c:e0:14:09:5f:63:2f:ce:21:67:db:
a0:1b:3c:01:63:92:ba:33:48:40:8d:14:88:c2:7e:
3f:cb:9d:ef:14:63:39:6c:a3:27:b2:af:91:31:dc:
15:8c:74:52:a3:9e:a3:f6:44:c1:ec:e5:b4:36:e0:
ae:69:99:b9:ed:b2:ac:0c:4d:ef:6a:60:0f:c5:38:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F8:22:D8:D0:C4:C1:74:B9:0F:FD:4C:8B:34:4E:BF:57:90:D5:6B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/096AE214414811F1B543FBD4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.11.0-156.248.15.255
Signature Algorithm: sha256WithRSAEncryption
25:5d:e3:71:31:ef:b2:f4:92:4b:12:10:56:e0:88:1b:27:9d:
ee:c6:fa:f7:db:46:9f:df:29:b7:c9:44:a8:63:63:e4:b9:50:
16:19:10:7f:45:f5:38:15:6f:bc:d2:3b:06:36:4d:5b:fc:4c:
81:bd:73:d9:5b:92:68:76:64:fc:b7:18:d2:0f:ba:c0:c7:46:
cf:20:1a:d6:97:0c:11:b9:5a:c4:10:0b:a0:52:96:88:12:c8:
a8:de:ca:27:0c:46:f7:f7:63:f7:42:09:42:63:a4:e2:98:dc:
77:25:db:0c:ee:09:3c:0f:80:a4:d1:0a:7a:e6:b4:fd:17:01:
c0:16:af:1b:31:39:ef:42:39:81:14:c8:a8:e7:a0:f6:4c:9e:
25:88:5e:d1:35:03:81:e4:33:8e:be:d8:d3:b3:bc:b4:6c:de:
fb:86:13:a4:7d:9d:02:84:3c:ce:46:76:e9:01:6b:68:2b:be:
d2:9c:71:13:51:cd:5a:b3:59:d7:97:2e:43:68:b4:b3:9c:23:
51:ed:b4:85:d4:cd:d9:10:df:62:23:d0:46:96:d0:d5:06:01:
f6:0f:30:2b:8d:c6:89:af:d6:fa:f2:33:08:92:2b:60:fd:06:
af:ef:54:b9:27:28:9a:15:b9:60:ae:0f:da:d8:e8:93:9f:2b:
e7:2a:17:37
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAa9bMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDI2MDgxNTAzWhcNMjYwNjA0MDgxNTAzWjAYMRYw
FAYDVQQDEw02OWVkYzk4Yy05ODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1ew8Q9WynR7KREoCsdMg4rPtknJpKznrkcDnho+M5aSxniTCYrvnkCUe
eTvMaF9gBeNGtgdGMI6BnqQSKM/FyF542+mPu0NHc3L7jLTi0XfVDkkEeA+7Q+3k
+DwJyerk/w8KhILsHk9F9HGpTtGv9sAAETEBfi1AOLSYmDSRn7mKGJtHNNkY0qb+
dHwISTumy1K0+dzwi8vUCLUq7zg5rElgAszQDp2wy3EjAGajy58nXL5UeoFLjOAU
CV9jL84hZ9ugGzwBY5K6M0hAjRSIwn4/y53vFGM5bKMnsq+RMdwVjHRSo56j9kTB
7OW0NuCuaZm57bKsDE3vamAPxTiO7wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMX4
ItjQxMF0uQ/9TIs0Tr9XkNVrMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wOTZBRTIxNDQxNDgxMUYxQjU0M0ZCRDRDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACc+AsDBASc+AAwDQYJKoZI
hvcNAQELBQADggEBACVd43Ex77L0kksSEFbgiBsnne7G+vfbRp/fKbfJRKhjY+S5
UBYZEH9F9TgVb7zSOwY2TVv8TIG9c9lbkmh2ZPy3GNIPusDHRs8gGtaXDBG5WsQQ
C6BSlogSyKjeyicMRvf3Y/dCCUJjpOKY3Hcl2wzuCTwPgKTRCnrmtP0XAcAWrxsx
Oe9COYEUyKjnoPZMniWIXtE1A4HkM46+2NOzvLRs3vuGE6R9nQKEPM5GdukBa2gr
vtKccRNRzVqzWdeXLkNotLOcI1HttIXUzdkQ32Ij0EaW0NUGAfYPMCuNxomv1vry
MwiSK2D9Bq/vVLknKJoVuWCuD9rY6JOfK+cqFzc=
-----END CERTIFICATE-----
Generated at Mon Apr 27 16:00:23 2026 by rpki-client