Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B56F5A6FCE511F0A8331C82DAE4EC9C.roa
File: 5B56F5A6FCE511F0A8331C82DAE4EC9C.roa (raw, json)
Hash identifier: jxWNUMuUwjhmsMDS/DI6uhA42nUDazqZY6uzNAH21+0=
Subject key identifier: 67:6A:D4:8F:56:36:82:DA:0E:8E:B0:61:E4:1B:56:FD:E4:3B:DA:C8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019A7E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B56F5A6FCE511F0A8331C82DAE4EC9C.roa
Signing time: Thu 29 Jan 2026 07:37:26 +0000
ROA not before: Thu 29 Jan 2026 07:37:22 +0000
ROA not after: Thu 05 Mar 2026 07:37:22 +0000
asID: 23470
IP address blocks: 156.225.70.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 24 Feb 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105086 (0x19a7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 29 07:37:22 2026 GMT
Not After : Mar 5 07:37:22 2026 GMT
Subject: CN=697b0e36-3cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0c:9d:ed:60:f9:7c:70:e1:69:75:44:f2:67:
55:89:89:bb:6e:6f:b2:8a:7a:f3:05:65:be:45:99:
65:14:ed:00:dc:c6:58:27:60:28:47:c4:61:b8:9e:
5f:37:55:72:27:4e:bf:05:98:0c:f1:09:4f:06:0f:
d6:28:41:dc:4d:94:06:5a:d4:65:18:b9:e6:4d:c3:
8c:04:14:02:5a:5d:0e:44:6a:01:29:68:aa:44:b0:
af:62:96:93:fd:cb:d1:09:23:f4:cb:e9:81:a2:d3:
a9:90:04:d4:01:63:7d:38:40:6a:87:3f:2d:67:f1:
f7:82:8c:9e:25:91:0b:d4:46:1b:c0:64:04:e4:ed:
d4:c0:57:a2:33:e1:4b:f1:1f:a0:38:e1:fc:86:c5:
27:ca:44:e8:2b:0f:08:ae:43:9b:15:14:99:23:3d:
7b:3e:65:0f:bb:b3:b0:70:36:9a:a6:1f:1e:dd:91:
d8:fb:8b:4f:78:68:64:76:25:59:f0:18:8f:31:5c:
a0:11:80:d7:02:56:49:d2:c1:11:3a:b8:1d:8f:43:
d5:31:2d:89:26:fb:a3:1b:ae:8e:88:a6:21:a5:84:
30:65:24:ea:cf:f5:49:35:5d:51:e5:f8:4f:ff:25:
04:ba:13:5e:9c:0f:73:f1:07:87:53:86:c3:3e:dc:
97:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6A:D4:8F:56:36:82:DA:0E:8E:B0:61:E4:1B:56:FD:E4:3B:DA:C8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B56F5A6FCE511F0A8331C82DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.70.0/23
Signature Algorithm: sha256WithRSAEncryption
21:f7:80:fc:07:58:7e:63:35:b4:c4:4b:5f:2c:7e:f7:bc:d5:
c4:9e:cc:37:01:32:00:41:3e:11:8a:54:f4:7f:e3:c6:6e:b1:
fa:22:04:2c:7f:a7:25:e6:8e:6b:13:45:8d:cb:c6:ef:b6:bc:
4f:74:94:23:b1:11:b1:4b:61:4b:a7:69:09:31:05:c0:d9:91:
f1:d8:5f:1e:f6:f2:3d:80:e2:1f:b3:a6:e1:4d:77:00:6b:e3:
e9:d4:98:25:b9:fd:96:d6:7e:4b:dc:88:c7:8b:63:0a:86:47:
b8:db:c6:a5:3f:57:73:56:89:bb:8f:44:79:d6:f2:eb:81:9c:
e4:c9:65:a6:29:7f:e7:7f:dc:9c:ba:cb:82:ff:1a:3b:59:4f:
0f:7b:04:fe:88:30:30:02:8e:7f:80:74:10:cd:5f:fd:cb:46:
56:1d:d6:ac:64:6f:c1:69:10:1e:a1:fb:7e:3b:ea:7f:8b:8b:
4e:7c:e1:f8:a5:23:9a:6c:d7:b1:b1:8b:e6:59:3d:55:8b:a3:
0b:6c:80:46:23:38:88:3e:30:21:7d:05:c0:f0:ee:ad:a7:d1:
b0:6b:ca:32:e1:85:7e:1e:9f:c0:45:5b:a3:4f:cd:7b:71:d1:
2f:81:45:47:c1:f1:a8:56:69:e4:d9:d2:e9:ae:69:a7:be:96:
71:d5:b7:42
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAZp+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMTI5MDczNzIyWhcNMjYwMzA1MDczNzIyWjAYMRYw
FAYDVQQDEw02OTdiMGUzNi0zY2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwAyd7WD5fHDhaXVE8mdViYm7bm+yinrzBWW+RZllFO0A3MZYJ2AoR8Rh
uJ5fN1VyJ06/BZgM8QlPBg/WKEHcTZQGWtRlGLnmTcOMBBQCWl0ORGoBKWiqRLCv
YpaT/cvRCSP0y+mBotOpkATUAWN9OEBqhz8tZ/H3goyeJZEL1EYbwGQE5O3UwFei
M+FL8R+gOOH8hsUnykToKw8IrkObFRSZIz17PmUPu7OwcDaaph8e3ZHY+4tPeGhk
diVZ8BiPMVygEYDXAlZJ0sEROrgdj0PVMS2JJvujG66OiKYhpYQwZSTqz/VJNV1R
5fhP/yUEuhNenA9z8QeHU4bDPtyX5QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGdq
1I9WNoLaDo6wYeQbVv3kO9rIMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81QjU2RjVBNkZDRTUxMUYwQTgzMzFDODJEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnOFGMA0GCSqGSIb3DQEBCwUA
A4IBAQAh94D8B1h+YzW0xEtfLH73vNXEnsw3ATIAQT4RilT0f+PGbrH6IgQsf6cl
5o5rE0WNy8bvtrxPdJQjsRGxS2FLp2kJMQXA2ZHx2F8e9vI9gOIfs6bhTXcAa+Pp
1Jgluf2W1n5L3IjHi2MKhke428alP1dzVom7j0R51vLrgZzkyWWmKX/nf9ycusuC
/xo7WU8PewT+iDAwAo5/gHQQzV/9y0ZWHdasZG/BaRAeoft+O+p/i4tOfOH4pSOa
bNexsYvmWT1Vi6MLbIBGIziIPjAhfQXA8O6tp9Gwa8oy4YV+Hp/ARVujT817cdEv
gUVHwfGoVmnk2dLprmmnvpZx1bdC
-----END CERTIFICATE-----
Generated at Sun Feb 22 21:42:37 2026 by rpki-client