Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0BCB309A55DE11F1B8135D0ECF1D38B0.roa
File: 0BCB309A55DE11F1B8135D0ECF1D38B0.roa (raw, json)
Hash identifier: g2pqKHKgqKrFUUOHG84tW9XN3BEx1pbGei7X00i0Y4Q=
Subject key identifier: 95:49:11:E6:B1:B1:47:22:97:A2:72:43:A7:F7:BB:E9:34:3D:89:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B7FB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0BCB309A55DE11F1B8135D0ECF1D38B0.roa
Signing time: Fri 22 May 2026 12:59:20 +0000
ROA not before: Fri 22 May 2026 12:59:15 +0000
ROA not after: Sat 08 Aug 2026 12:59:15 +0000
asID: 150706
IP address blocks: 156.236.96.0/22 maxlen: 24
156.236.108.0/22 maxlen: 24
156.236.112.0/21 maxlen: 24
156.236.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112635 (0x1b7fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 22 12:59:15 2026 GMT
Not After : Aug 8 12:59:15 2026 GMT
Subject: CN=6a105328-6cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:e3:96:4c:b2:22:b2:22:ad:7f:b2:3a:27:
26:a9:7e:15:a7:aa:0e:9c:2e:79:b9:d3:47:dc:d0:
9e:af:b9:cc:36:56:83:59:94:55:bd:c8:1e:7d:08:
75:2a:b6:21:87:04:2f:44:8f:ff:1d:13:70:cf:37:
2d:4a:b0:5e:4e:c9:66:81:db:ee:98:65:4c:17:5c:
34:56:47:17:ad:ce:c9:d6:0f:97:e1:7f:b5:47:d4:
94:a0:28:92:00:61:a2:25:44:62:51:f1:58:03:be:
dc:be:82:77:16:5c:43:08:e2:1a:0d:7b:80:f4:e9:
b1:be:ee:4e:bd:f0:56:d3:e9:96:37:c4:da:17:4a:
e3:df:56:b2:77:a9:3e:a7:d4:9f:cf:8e:1c:6f:73:
0f:0b:68:f4:5f:98:60:ad:9c:15:b4:30:47:e1:20:
c0:48:77:68:da:4b:e8:d4:d4:09:7b:f2:78:ec:7d:
32:d1:de:fc:3e:f7:d2:d8:88:c1:6e:57:18:97:97:
23:eb:4f:b9:ff:0d:79:e5:00:59:c1:4c:6e:bd:b2:
9d:c6:13:da:93:83:44:56:cc:55:70:be:cd:e6:97:
c8:70:e4:02:9c:10:7a:8b:cd:e6:57:9d:95:b3:1b:
9a:c6:bd:38:7e:de:45:cb:b0:f7:a8:1c:40:18:d7:
c8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:49:11:E6:B1:B1:47:22:97:A2:72:43:A7:F7:BB:E9:34:3D:89:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0BCB309A55DE11F1B8135D0ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.96.0/22
156.236.108.0-156.236.119.255
156.236.124.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:ac:04:e5:1b:7d:05:2c:4e:a4:c9:47:ab:ee:a8:29:42:a2:
9c:65:9c:96:97:7f:8d:5c:ad:fb:cb:5e:ab:dd:0c:be:6c:c1:
2d:52:79:c1:72:23:a6:05:fb:42:80:9f:33:84:15:e2:3b:ed:
2a:cd:d5:bb:40:a8:8f:42:4a:25:5e:58:0b:6e:bc:f2:e9:88:
a7:ee:c6:34:10:00:ba:e4:ea:18:c9:4e:64:78:ca:32:49:10:
38:33:ad:12:93:13:18:33:40:a5:1d:1e:fe:5c:aa:f8:85:dc:
25:26:a3:9c:b3:ce:db:00:dc:82:44:ec:dc:90:5b:46:79:5f:
4d:d1:26:e6:c6:0a:7f:b1:54:7d:5b:35:bf:ee:f8:07:6e:a3:
71:8d:84:5c:db:81:6e:0a:83:9e:33:8b:94:be:76:a1:c2:72:
a2:30:f3:c8:fc:08:d2:cf:89:08:cd:29:bd:89:73:d2:86:c4:
ad:b4:0c:a0:68:2f:4b:02:ed:fa:a7:f1:c5:eb:5a:cf:f3:53:
36:4b:1b:46:97:54:6e:02:be:96:74:8e:b2:8a:c4:52:49:ed:
d0:b2:ce:f8:f5:d9:5a:49:4c:80:be:ea:44:36:8e:69:e2:64:
49:e1:66:71:db:5c:ea:02:b4:fa:5f:57:c8:62:41:25:2f:77:
3b:5a:61:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:27 2026 by rpki-client