Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55648C224F0A11F19B4302F5CE1D38B0.roa
File: 55648C224F0A11F19B4302F5CE1D38B0.roa (raw, json)
Hash identifier: D+yAjULpFlu6CoHfo74XOd+Xmwxqwh8Et7pyqGeDVNI=
Subject key identifier: DB:8E:1E:FD:C8:78:F2:44:B2:D6:5D:C2:D0:9D:17:62:62:06:B2:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B459
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55648C224F0A11F19B4302F5CE1D38B0.roa
Signing time: Wed 13 May 2026 20:28:43 +0000
ROA not before: Wed 13 May 2026 20:28:38 +0000
ROA not after: Wed 17 Jun 2026 20:28:38 +0000
asID: 22773
IP address blocks: 156.241.41.0/24 maxlen: 24
156.242.2.0/23 maxlen: 24
156.248.104.0/21 maxlen: 24
156.249.0.0/24 maxlen: 24
156.249.4.0/22 maxlen: 24
156.249.16.0/24 maxlen: 24
156.249.20.0/22 maxlen: 24
156.249.48.0/21 maxlen: 24
156.249.121.0/24 maxlen: 24
156.249.122.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111705 (0x1b459)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 20:28:38 2026 GMT
Not After : Jun 17 20:28:38 2026 GMT
Subject: CN=6a04defb-1e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:63:8d:47:25:0a:ef:06:90:e5:81:dd:96:
81:b9:c8:17:79:57:fe:67:53:7f:51:39:fc:69:3d:
c5:09:9c:e3:bd:2b:88:05:3c:39:2d:97:01:8b:47:
8d:7c:82:cb:27:e3:9b:b8:d7:e8:fc:b2:c5:29:66:
53:42:5b:8f:30:be:c6:2e:b9:49:60:63:45:6d:58:
19:67:f9:fc:a4:b8:01:15:6f:60:92:65:da:21:78:
35:53:b1:05:da:31:f1:56:2e:14:a0:ca:cc:45:1d:
ed:64:97:6a:ec:68:bf:37:0c:48:3b:de:65:30:f4:
8e:77:4b:c9:51:ee:bd:1b:68:03:28:39:93:d8:34:
e9:5e:16:50:4c:c4:55:5d:1a:9b:5a:f9:e2:50:9f:
1a:f4:84:9a:bc:8c:08:63:57:fe:25:76:58:2f:f7:
0e:2d:b8:50:4d:43:87:2e:9f:94:3b:83:41:97:58:
da:7d:17:a5:c0:46:e0:ef:69:8c:04:4b:94:17:77:
c1:2b:7b:1d:ca:07:4e:0f:67:88:98:6c:89:62:6d:
a1:98:45:11:39:88:8f:6c:2a:fc:52:54:c4:bf:8c:
fd:d3:b8:b1:ac:52:05:1b:07:49:dd:df:fb:25:2c:
31:bb:9a:d3:cd:d3:35:55:42:be:d7:21:69:ab:04:
32:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8E:1E:FD:C8:78:F2:44:B2:D6:5D:C2:D0:9D:17:62:62:06:B2:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55648C224F0A11F19B4302F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.41.0/24
156.242.2.0/23
156.248.104.0/21
156.249.0.0/24
156.249.4.0/22
156.249.16.0/24
156.249.20.0/22
156.249.48.0/21
156.249.121.0-156.249.123.255
Signature Algorithm: sha256WithRSAEncryption
3a:2c:41:20:6e:ac:68:50:a1:1a:26:6b:6e:5a:b7:b3:df:7d:
9c:63:14:cf:e3:aa:99:74:5b:95:81:46:91:08:5c:4c:85:de:
74:a0:95:86:8d:60:e7:cd:0d:f2:3c:c0:9e:1d:d3:8b:05:32:
b9:46:de:89:44:43:18:2c:ab:5a:8b:94:16:a9:5f:4d:bc:5c:
9f:a2:2a:99:8f:f0:94:1d:32:33:aa:72:00:ba:1e:f7:f9:17:
f7:59:c0:bf:ea:48:9b:3d:31:f2:d1:38:c0:85:2c:c8:29:a3:
53:5b:25:56:df:5f:0e:81:58:b5:40:59:c7:94:61:d3:27:cc:
e0:1b:d9:1c:fd:e6:e7:94:2d:77:3d:37:cc:1a:9c:96:54:30:
ac:78:0d:7e:68:57:03:57:db:35:ea:26:16:b9:16:ed:ad:62:
04:a4:61:2f:42:db:e5:b9:22:7f:9c:cd:6c:04:e6:c8:dc:b4:
34:35:43:21:f5:cb:21:ff:8e:d5:37:17:c9:a1:b6:5f:cf:43:
57:2a:72:38:ab:91:62:e0:3e:b0:7e:c8:b9:6e:51:ca:fb:dc:
ae:42:8e:4e:1d:e2:35:ad:e8:60:30:ba:d7:23:4b:02:aa:23:
be:31:b0:64:3b:47:b1:39:80:fb:e5:58:b5:77:11:d9:70:3d:
3c:17:f0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 20 21:19:49 2026 by rpki-client