Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C283D605D3411F1A23DD0A4CE1D38B0.roa
File: 4C283D605D3411F1A23DD0A4CE1D38B0.roa (raw, json)
Hash identifier: j4yqJsYrdruNDCd1cMUr2q9qHBiYVPFcAwyA3KkxLMs=
Subject key identifier: AC:D7:51:1D:C0:B5:C6:9B:03:05:F2:17:74:9D:4C:90:94:2A:5F:05
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BB0E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C283D605D3411F1A23DD0A4CE1D38B0.roa
Signing time: Sun 31 May 2026 21:04:22 +0000
ROA not before: Sun 31 May 2026 21:04:18 +0000
ROA not after: Sun 07 Jun 2026 21:04:18 +0000
asID: 134548
IP address blocks: 156.240.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113422 (0x1bb0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 31 21:04:18 2026 GMT
Not After : Jun 7 21:04:18 2026 GMT
Subject: CN=6a1ca256-6f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ab:1e:98:45:6e:94:5d:25:20:83:c2:01:c5:
d4:3a:27:44:85:de:5e:4e:e1:ee:dc:7a:02:7a:e5:
2b:08:aa:d8:51:00:fa:88:c3:5b:2b:7f:8f:e0:2d:
b8:15:73:a0:87:f4:23:f4:1f:30:90:d6:64:f7:76:
7a:b3:d3:6c:6e:a6:9d:1d:06:f9:3b:dc:85:7b:d3:
c2:9c:57:c5:9a:9d:83:bf:80:18:40:be:32:19:d7:
6c:78:ef:dc:2d:32:c5:3b:30:a0:a3:cc:62:da:56:
2c:6c:50:46:00:4b:ef:28:af:bd:d6:4c:36:fc:3f:
68:1c:5f:4c:c2:5a:b0:60:82:77:00:40:67:70:55:
fc:a9:64:bc:20:f8:44:81:be:b9:8b:a0:f6:0f:d2:
42:39:f9:02:a1:66:fe:5c:f6:14:44:fd:b3:2d:e4:
aa:3a:04:45:ba:e3:41:9d:46:8e:c8:95:29:bf:ff:
16:c6:2b:60:b7:74:27:a9:45:8e:96:63:25:11:1e:
42:e8:a3:4f:d6:ef:07:1e:0f:c8:1c:02:b6:78:ea:
7a:03:b0:7d:eb:64:c1:7e:50:2c:8b:5e:59:68:af:
73:12:3f:b4:02:1d:2c:e7:0f:66:25:f6:a2:6c:10:
26:2c:73:65:cb:e1:fe:d4:17:46:9f:9d:67:f4:e2:
54:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D7:51:1D:C0:B5:C6:9B:03:05:F2:17:74:9D:4C:90:94:2A:5F:05
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C283D605D3411F1A23DD0A4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.255.0/24
Signature Algorithm: sha256WithRSAEncryption
09:58:90:e7:a2:f5:8d:89:2f:54:eb:99:9d:59:4a:ef:6e:00:
87:d9:63:42:20:d7:89:6c:a5:46:41:e3:3f:c3:62:4e:47:55:
54:77:4e:df:36:17:8b:da:7d:8f:6d:11:5a:77:e0:b1:69:f9:
db:05:fe:ad:83:3e:02:c4:a5:0c:b1:23:7e:9b:34:09:1b:ea:
7a:1a:29:ae:95:10:8f:87:39:22:ba:13:8b:24:29:0a:73:92:
96:e2:88:bd:7c:ac:a8:ba:94:4d:09:ec:9b:52:a0:ec:b6:7d:
2f:ab:df:14:2b:cf:9a:7c:81:48:db:3d:f0:7d:02:1a:3b:ae:
cd:60:d9:da:aa:38:20:a4:6d:14:9c:a1:1e:ab:0f:64:a0:c2:
27:40:fd:43:3c:bd:c3:86:f5:35:fc:b1:f0:7c:b1:ab:39:d3:
2f:e7:69:a0:3d:ec:4d:ba:bf:e5:16:e9:62:cf:a7:c6:a2:02:
b0:70:92:c8:9c:2a:b2:b9:3e:27:d0:1b:81:8a:e8:e9:61:b0:
fa:9f:81:e5:a5:c6:0f:39:61:fd:cb:c2:e5:f0:d9:cd:42:92:
c1:78:0a:fd:79:61:f0:8d:30:86:21:a2:67:ab:f8:27:b6:b2:
2a:ac:ee:a2:8f:cf:9c:7b:47:96:73:7c:ae:a1:5d:33:d8:1d:
c2:1f:ba:08
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbsOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTMxMjEwNDE4WhcNMjYwNjA3MjEwNDE4WjAYMRYw
FAYDVQQDEw02YTFjYTI1Ni02ZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA16semEVulF0lIIPCAcXUOidEhd5eTuHu3HoCeuUrCKrYUQD6iMNbK3+P
4C24FXOgh/Qj9B8wkNZk93Z6s9NsbqadHQb5O9yFe9PCnFfFmp2Dv4AYQL4yGdds
eO/cLTLFOzCgo8xi2lYsbFBGAEvvKK+91kw2/D9oHF9MwlqwYIJ3AEBncFX8qWS8
IPhEgb65i6D2D9JCOfkCoWb+XPYURP2zLeSqOgRFuuNBnUaOyJUpv/8Wxitgt3Qn
qUWOlmMlER5C6KNP1u8HHg/IHAK2eOp6A7B962TBflAsi15ZaK9zEj+0Ah0s5w9m
JfaibBAmLHNly+H+1BdGn51n9OJUoQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKzX
UR3AtcabAwXyF3SdTJCUKl8FMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80QzI4M0Q2MDVEMzQxMUYxQTIzREQwQTRDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPD/MA0GCSqGSIb3DQEBCwUA
A4IBAQAJWJDnovWNiS9U65mdWUrvbgCH2WNCINeJbKVGQeM/w2JOR1VUd07fNheL
2n2PbRFad+CxafnbBf6tgz4CxKUMsSN+mzQJG+p6GimulRCPhzkiuhOLJCkKc5KW
4oi9fKyoupRNCeybUqDstn0vq98UK8+afIFI2z3wfQIaO67NYNnaqjggpG0UnKEe
qw9koMInQP1DPL3DhvU1/LHwfLGrOdMv52mgPexNur/lFuliz6fGogKwcJLInCqy
uT4n0BuBiujpYbD6n4HlpcYPOWH9y8Ll8NnNQpLBeAr9eWHwjTCGIaJnq/gntrIq
rO6ij8+ce0eWc3yuoV0z2B3CH7oI
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:22 2026 by rpki-client