Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DE94B0C580D11F1ACADD0E4CE1D38B0.roa
File: 4DE94B0C580D11F1ACADD0E4CE1D38B0.roa (raw, json)
Hash identifier: URLd9q2LnI3ntcHnx3odigpjIZ86pYRj1+w8lXA4hSo=
Subject key identifier: B6:E9:49:58:BE:3A:8D:CD:F2:BE:84:13:3C:32:B8:6C:A2:DE:F1:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B95F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DE94B0C580D11F1ACADD0E4CE1D38B0.roa
Signing time: Mon 25 May 2026 07:42:40 +0000
ROA not before: Mon 25 May 2026 07:42:32 +0000
ROA not after: Tue 09 Jun 2026 07:42:32 +0000
asID: 154177
IP address blocks: 156.244.16.0/24 maxlen: 24
156.244.17.0/24 maxlen: 24
156.244.19.0/24 maxlen: 24
156.244.20.0/24 maxlen: 24
156.244.26.0/24 maxlen: 24
156.244.45.0/24 maxlen: 24
156.244.46.0/24 maxlen: 24
156.244.53.0/24 maxlen: 24
156.244.56.0/24 maxlen: 24
156.244.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112991 (0x1b95f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 25 07:42:32 2026 GMT
Not After : Jun 9 07:42:32 2026 GMT
Subject: CN=6a13fd70-ce9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:52:ab:a2:2c:66:a7:95:95:69:1c:a1:92:
59:3e:cc:76:6e:3c:16:c1:ae:e0:ce:d8:79:58:5f:
23:e8:31:03:59:67:e0:60:17:8e:84:10:ed:64:eb:
f9:7c:86:c0:2b:7d:2f:35:d7:ce:d2:f1:c7:f6:dd:
cf:ad:89:c3:3d:29:d5:5b:48:d2:c0:f5:3b:7a:fe:
1d:46:30:27:e3:b8:3c:bb:fd:b8:f1:8c:5d:b4:a3:
d3:9b:8d:6a:3a:d1:4c:95:37:4f:32:e6:c6:5a:d4:
57:52:ec:10:32:42:91:ad:2b:71:75:ed:d8:d2:91:
85:1a:16:9b:ec:d9:7a:e1:e6:4c:db:61:77:ce:82:
9c:ec:17:3c:57:de:17:c6:56:8e:b5:69:67:f3:3f:
3f:dd:d2:3e:e4:27:dd:41:03:ae:8b:ab:06:b3:1b:
b0:71:ad:a6:c2:da:aa:16:a8:f0:7c:64:4c:ba:3f:
d2:e0:ec:b2:f3:32:11:cc:fd:f9:d0:73:3d:9e:65:
a6:7b:3f:9a:6f:39:ec:cb:5a:86:42:16:65:0f:c9:
a0:25:71:5e:8f:ea:fe:f5:59:7e:2e:1a:4c:d6:f8:
10:70:55:30:95:41:9c:b1:05:a7:c6:2d:0e:8c:fd:
64:a4:92:a2:42:a7:7e:ca:17:cb:7b:ff:67:18:6e:
d1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E9:49:58:BE:3A:8D:CD:F2:BE:84:13:3C:32:B8:6C:A2:DE:F1:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DE94B0C580D11F1ACADD0E4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.16.0/23
156.244.19.0-156.244.20.255
156.244.26.0/24
156.244.45.0-156.244.46.255
156.244.53.0/24
156.244.56.0/23
Signature Algorithm: sha256WithRSAEncryption
86:3f:b1:81:f8:ce:23:f8:ee:77:c7:bd:84:3f:4f:b9:3f:a8:
02:24:98:32:58:9f:fd:3a:c9:39:1c:82:c7:03:e9:d1:92:77:
24:09:de:8e:e8:74:b6:a2:76:0c:7b:0c:04:77:18:f6:2d:1a:
4e:fd:3c:65:5a:b1:23:44:bd:f0:bb:75:82:f1:2d:c4:dc:83:
b6:b3:fc:73:97:68:d7:e2:4c:c6:f6:68:e6:af:a5:6d:c0:1f:
86:62:3d:40:ab:5c:01:39:32:b3:0a:28:8e:ec:c9:27:d2:a6:
28:63:87:83:41:af:00:07:97:4f:0a:b2:ae:0c:ee:5d:f2:47:
b7:c8:c9:5c:41:ec:07:ae:72:71:7c:2f:d5:2c:03:1e:74:74:
1f:db:04:62:08:c6:d3:99:f4:36:d1:f1:a1:a4:bf:ce:f3:b7:
d7:2f:21:e6:27:b0:0d:a4:60:ba:52:e3:4b:0b:49:38:66:cb:
4c:7e:64:ac:51:c0:10:97:a8:23:65:90:2d:8e:4e:27:af:84:
22:55:de:55:b8:8e:70:56:a4:34:9d:18:3d:53:3b:a9:ac:41:
df:2e:1f:f7:b5:b3:cd:21:1e:f8:c0:41:e5:f1:d7:c1:2d:1a:
77:7c:3c:9a:74:d9:ca:37:f1:72:72:7e:7c:f7:88:05:b9:bb:
64:5f:24:93
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgIDAblfMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTI1MDc0MjMyWhcNMjYwNjA5MDc0MjMyWjAYMRYw
FAYDVQQDEw02YTEzZmQ3MC1jZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqqtSq6IsZqeVlWkcoZJZPsx2bjwWwa7gzth5WF8j6DEDWWfgYBeOhBDt
ZOv5fIbAK30vNdfO0vHH9t3PrYnDPSnVW0jSwPU7ev4dRjAn47g8u/248YxdtKPT
m41qOtFMlTdPMubGWtRXUuwQMkKRrStxde3Y0pGFGhab7Nl64eZM22F3zoKc7Bc8
V94XxlaOtWln8z8/3dI+5CfdQQOui6sGsxuwca2mwtqqFqjwfGRMuj/S4Oyy8zIR
zP350HM9nmWmez+abznsy1qGQhZlD8mgJXFej+r+9Vl+LhpM1vgQcFUwlUGcsQWn
xi0OjP1kpJKiQqd+yhfLe/9nGG7RpwIDAQABo4IC0DCCAswwHQYDVR0OBBYEFLbp
SVi+Oo3N8r6EEzwyuGyi3vFgMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80REU5NEIwQzU4MEQxMUYxQUNBREQwRTRDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
ME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0AwQBnPQQMAwDBACc9BMDBACc9BQD
BACc9BowDAMEAJz0LQMEAJz0LgMEAJz0NQMEAZz0ODANBgkqhkiG9w0BAQsFAAOC
AQEAhj+xgfjOI/jud8e9hD9PuT+oAiSYMlif/TrJORyCxwPp0ZJ3JAnejuh0tqJ2
DHsMBHcY9i0aTv08ZVqxI0S98Lt1gvEtxNyDtrP8c5do1+JMxvZo5q+lbcAfhmI9
QKtcATkyswoojuzJJ9KmKGOHg0GvAAeXTwqyrgzuXfJHt8jJXEHsB65ycXwv1SwD
HnR0H9sEYgjG05n0NtHxoaS/zvO31y8h5iewDaRgulLjSwtJOGbLTH5krFHAEJeo
I2WQLY5OJ6+EIlXeVbiOcFakNJ0YPVM7qaxB3y4f97WzzSEe+MBB5fHXwS0ad3w8
mnTZyjfxcnJ+fPeIBbm7ZF8kkw==
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:32 2026 by rpki-client