Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/284D403454DD11F1A97182F0CE1D38B0.roa
File: 284D403454DD11F1A97182F0CE1D38B0.roa (raw, json)
Hash identifier: SsrRxU11+zucqdH/xXXpeenlFaDraXS5GfG3MFXGRq8=
Subject key identifier: 4C:07:12:2D:44:3A:90:F8:98:4F:15:BF:26:C0:8A:42:03:57:26:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B6CB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/284D403454DD11F1A97182F0CE1D38B0.roa
Signing time: Thu 21 May 2026 06:20:27 +0000
ROA not before: Thu 21 May 2026 06:20:22 +0000
ROA not after: Thu 25 Jun 2026 06:20:22 +0000
asID: 271355
IP address blocks: 156.236.204.0/24 maxlen: 24
156.236.205.0/24 maxlen: 24
156.236.206.0/24 maxlen: 24
156.236.207.0/24 maxlen: 24
156.236.208.0/24 maxlen: 24
156.236.209.0/24 maxlen: 24
156.236.210.0/24 maxlen: 24
156.236.211.0/24 maxlen: 24
156.236.212.0/24 maxlen: 24
156.236.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112331 (0x1b6cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 21 06:20:22 2026 GMT
Not After : Jun 25 06:20:22 2026 GMT
Subject: CN=6a0ea42b-ecc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c3:0f:91:b8:48:10:23:06:2e:49:18:b7:f4:
fa:f4:79:01:91:bb:41:0c:64:ce:7c:44:7f:7a:e2:
0b:c9:cf:ba:c0:81:eb:48:29:3e:48:c3:2f:98:1e:
36:eb:cf:4d:8d:1a:ab:1e:f2:d1:71:cb:c4:2f:7d:
85:ae:ea:56:0f:f4:7b:7d:7c:e2:c0:b3:16:15:ed:
9f:92:29:33:49:a0:a8:19:dd:8a:d4:b2:8f:34:19:
0d:ee:7a:a5:8c:d8:43:14:0a:41:5a:75:4c:cc:d7:
36:0c:e7:77:5c:82:af:42:93:4c:79:a4:57:d5:66:
fc:62:74:74:01:c8:e4:ab:83:a3:04:db:2c:f1:a7:
02:27:5f:df:17:b0:b6:7d:fa:c1:41:4e:33:75:83:
68:09:f5:83:6e:1a:75:f4:d2:8c:b0:03:96:f3:8e:
d5:2a:88:7e:d2:7d:d4:31:48:82:85:c2:4c:56:47:
29:65:44:38:bf:08:0d:ed:7b:36:0a:2f:41:9c:c2:
ac:7f:93:bc:d0:d7:6b:79:c1:c5:3b:12:3f:13:24:
d8:f1:70:6c:ff:be:21:be:93:8d:5a:f0:5e:ec:6b:
b4:96:a6:76:99:3b:d2:da:12:7c:c9:ec:58:8d:f9:
3c:c0:92:b0:08:53:ff:fc:d9:73:c4:a5:4c:17:72:
b8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:07:12:2D:44:3A:90:F8:98:4F:15:BF:26:C0:8A:42:03:57:26:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/284D403454DD11F1A97182F0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.204.0-156.236.213.255
Signature Algorithm: sha256WithRSAEncryption
17:58:53:af:91:93:b7:94:42:ba:2b:2a:69:cb:5a:40:6b:a4:
32:82:de:1e:4b:a7:cb:9b:22:f2:cc:a7:3c:5e:50:11:ba:32:
45:40:63:6e:21:cf:f7:41:61:ee:20:59:6b:b8:ab:92:2b:da:
65:f7:9a:46:b9:ea:05:9d:d2:f1:76:75:4e:4d:6d:01:c2:3f:
10:ab:d8:1b:9a:88:e5:6a:8c:81:fe:44:74:35:16:4e:ff:f4:
e5:dd:0e:35:71:96:14:ec:b9:53:f6:a4:8c:05:23:aa:d7:5a:
89:b5:0c:3e:90:95:5f:72:2e:24:bf:09:94:ba:f4:fa:70:4a:
d4:3f:e1:7f:68:8b:2a:75:c7:a8:28:0b:9a:02:4c:e1:03:f9:
a4:16:cd:b4:d5:ea:85:ed:8b:93:94:13:89:ee:a9:72:b2:fc:
5c:c6:66:f3:08:89:70:bf:b5:c9:ac:c9:58:8a:2f:36:78:61:
ab:11:1b:24:e8:81:46:d2:09:f0:0c:ae:59:f0:b1:07:7c:22:
1c:73:e2:f3:19:5e:d3:4d:ff:7d:7c:aa:98:2d:8c:85:06:a7:
64:c5:20:96:b8:c1:65:38:80:43:2f:71:26:c7:5b:53:c9:7a:
7c:42:38:b8:85:81:a6:cd:fe:c4:af:4a:61:80:ce:ee:ba:a4:
6d:c4:d6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:49 2026 by rpki-client