Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B7889D6376911F1BABD27D2CE1D38B0.roa
File: 1B7889D6376911F1BABD27D2CE1D38B0.roa (raw, json)
Hash identifier: t+cFK3+TYcIbf0DPUWZM3e9sWFwWMBo4+SfRUVqQRlQ=
Subject key identifier: F7:2F:F4:03:52:CB:96:2D:8A:1B:2A:C5:5C:67:85:BB:64:06:D5:F2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC70
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B7889D6376911F1BABD27D2CE1D38B0.roa
Signing time: Mon 13 Apr 2026 18:46:41 +0000
ROA not before: Mon 13 Apr 2026 18:46:34 +0000
ROA not after: Wed 13 May 2026 18:46:34 +0000
asID: 17497
IP address blocks: 156.245.176.0/24 maxlen: 24
156.245.181.0/24 maxlen: 24
156.245.182.0/24 maxlen: 24
156.245.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109680 (0x1ac70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 18:46:34 2026 GMT
Not After : May 13 18:46:34 2026 GMT
Subject: CN=69dd3a11-94e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:ef:d4:f1:c3:98:28:41:dc:31:13:fa:1d:
b0:35:c7:40:34:2e:da:84:b7:e9:2c:6d:d6:d0:f5:
72:7c:f8:39:a3:04:99:f7:f8:d9:98:97:0b:90:ee:
4f:58:23:05:5b:24:25:79:9a:bc:37:d6:ee:e5:87:
1a:f7:19:12:88:fc:be:d1:29:21:d3:2e:fe:90:98:
2b:25:05:11:49:86:91:49:e6:c1:17:2f:a1:65:21:
e8:91:8c:f1:bb:f6:7c:3b:20:fc:63:de:c6:3a:3a:
08:f9:5d:6f:bb:55:60:ad:5d:db:b9:79:42:2c:f8:
7e:5c:e0:05:f4:29:e8:0c:20:98:12:cc:e1:6d:11:
75:7c:53:25:17:7a:c3:6b:a6:12:09:bb:25:84:15:
ef:e8:ec:d1:cc:32:12:15:ec:be:e8:53:d5:ea:73:
1f:54:b6:e8:e5:f4:0c:01:01:a2:59:ae:33:b3:db:
98:c3:87:b8:57:ca:20:ea:53:e3:d0:39:29:64:0c:
96:2f:8e:70:31:3c:49:ef:25:70:9b:70:33:ae:71:
de:7a:27:0a:96:09:df:ca:61:4d:d8:fd:d1:e6:ca:
40:09:51:e8:8e:b3:44:16:e4:46:8b:c4:6e:53:0a:
16:92:c5:20:08:2a:b7:23:70:03:2d:c3:d4:85:69:
1d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:2F:F4:03:52:CB:96:2D:8A:1B:2A:C5:5C:67:85:BB:64:06:D5:F2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B7889D6376911F1BABD27D2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.176.0/24
156.245.181.0-156.245.183.255
Signature Algorithm: sha256WithRSAEncryption
9d:72:c5:03:f6:ac:5d:e0:84:99:ef:6d:fb:61:0e:a1:31:83:
ea:0d:f7:39:89:de:9b:4d:0d:cd:d4:e5:bb:c6:91:4d:72:db:
2c:8d:59:c4:09:9f:c0:14:75:76:30:cb:6d:6c:a7:81:de:2c:
e2:ba:1b:c8:51:97:88:6f:44:a8:04:0e:73:ee:f3:74:ff:4b:
ed:8c:65:83:d2:05:a3:51:05:77:99:45:2a:a5:14:89:12:6c:
cb:16:aa:ce:d6:1b:ef:2d:56:dc:7d:33:3a:41:94:1b:13:77:
16:fa:c6:9c:e3:4e:e4:13:e8:2f:92:0e:8f:06:d1:31:6e:58:
88:de:d2:bb:d8:6b:7a:d0:e4:4e:3d:d6:94:b4:b9:09:7a:9a:
07:54:f6:40:9a:7e:34:e7:e0:53:38:50:4f:2e:6d:87:ad:64:
d7:27:8d:94:e0:6f:70:03:23:d1:82:80:2a:f9:39:89:21:2e:
e1:71:b1:67:82:2a:16:02:3b:ea:19:45:30:ee:61:f3:cf:8a:
d6:2f:fc:05:80:48:68:87:ab:77:a2:aa:82:b2:f3:04:d3:56:
cf:03:8d:97:3c:25:67:9f:af:35:14:c7:57:85:16:04:78:64:
a2:f1:83:44:b1:92:2d:f7:9a:36:c4:ad:ca:a5:42:bd:a8:9c:
fe:22:1d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:29:55 2026 by rpki-client