Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/701A08A44F0911F193195DEDCE1D38B0.roa
File: 701A08A44F0911F193195DEDCE1D38B0.roa (raw, json)
Hash identifier: eHNb8vf3XOOJv1IRa/IJbamETLi0OGnBfyKTSdxB8KQ=
Subject key identifier: A2:B0:18:5A:20:E7:40:B1:59:12:44:F2:7B:9C:98:82:34:3A:CE:0C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B457
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/701A08A44F0911F193195DEDCE1D38B0.roa
Signing time: Wed 13 May 2026 20:22:18 +0000
ROA not before: Wed 13 May 2026 20:22:13 +0000
ROA not after: Wed 17 Jun 2026 20:22:13 +0000
asID: 22773
IP address blocks: 156.242.20.0/23 maxlen: 24
156.242.22.0/24 maxlen: 24
156.242.24.0/23 maxlen: 24
156.243.35.0/24 maxlen: 24
156.243.36.0/23 maxlen: 24
156.243.82.0/24 maxlen: 24
156.243.84.0/24 maxlen: 24
156.243.96.0/22 maxlen: 24
156.243.130.0/24 maxlen: 24
156.244.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111703 (0x1b457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 20:22:13 2026 GMT
Not After : Jun 17 20:22:13 2026 GMT
Subject: CN=6a04dd7a-0a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4e:be:51:3a:6c:0b:59:ca:bc:c3:64:83:ab:
81:03:1d:3a:65:68:8a:09:79:e3:19:23:84:32:d0:
f5:c2:ec:86:25:20:1b:cf:a0:f3:34:79:e3:c9:28:
4e:79:e2:67:80:95:c6:95:28:75:6e:a9:48:f9:95:
01:d9:33:b0:84:a3:5d:db:36:db:26:17:1f:5b:67:
81:60:53:54:5e:63:b3:f8:00:02:d7:bf:89:9e:2c:
ab:27:f4:22:be:6b:8d:66:3f:0d:29:0d:a9:48:16:
e5:6b:54:99:7f:1b:d0:e3:42:7d:e0:93:78:6c:6c:
76:bd:6f:13:29:c0:2c:de:f6:d1:69:85:da:20:60:
75:c0:94:a3:67:95:59:a9:73:e9:34:cf:88:0e:81:
a8:0b:6a:5f:30:32:bb:9b:84:39:8b:94:5d:cd:8d:
82:60:e9:fd:25:49:f7:9d:c0:12:07:4f:4f:c4:ec:
ca:d5:58:a4:ad:51:2f:11:f5:5b:ba:7e:7e:37:67:
cd:b8:a4:f5:e7:0c:2a:ac:f7:45:fd:ff:cf:e6:82:
1e:c4:bc:fa:bb:59:43:68:3d:a5:b1:46:51:e6:db:
19:f8:55:7d:7d:68:3d:97:65:3c:00:d9:c8:d3:7b:
6e:59:d9:d7:29:31:53:a6:f8:b7:97:7d:b1:a1:25:
8f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B0:18:5A:20:E7:40:B1:59:12:44:F2:7B:9C:98:82:34:3A:CE:0C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/701A08A44F0911F193195DEDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.20.0-156.242.22.255
156.242.24.0/23
156.243.35.0-156.243.37.255
156.243.82.0/24
156.243.84.0/24
156.243.96.0/22
156.243.130.0/24
156.244.144.0/20
Signature Algorithm: sha256WithRSAEncryption
67:cf:05:c3:62:c9:ea:67:9d:c2:38:9e:a9:62:3f:41:cc:dc:
46:0d:32:b5:2e:e5:e6:fe:a9:63:28:91:44:51:98:43:5a:1e:
52:85:04:a0:d2:82:83:ff:03:63:24:4a:2b:07:90:4e:19:2c:
34:9e:ad:f1:ad:0f:94:5d:ee:c6:06:83:0a:98:85:9b:ed:e1:
de:e8:e4:16:e5:fe:67:d3:d1:7b:fe:cd:e5:01:be:bf:e8:10:
41:ab:57:da:44:8a:dc:c6:30:b5:8a:71:04:45:39:3d:71:f2:
9c:7f:1f:4d:9a:9d:f3:6d:43:ed:4d:b6:86:70:0d:2a:6e:85:
6f:41:82:6b:cf:3d:91:fa:de:b3:31:30:b5:1c:44:fc:50:3c:
48:61:90:7a:45:84:05:c4:9c:7b:ba:7f:3b:ec:dc:a7:a2:0a:
26:3b:ce:88:2c:d3:9c:60:09:dc:1f:44:c0:14:c2:c0:79:b1:
a1:e6:77:5b:d4:11:98:d2:4b:bf:ca:ab:92:6c:1d:cd:2c:dd:
a6:42:4c:86:86:5b:bb:dd:3f:89:93:d5:7c:b6:3a:3d:8b:d1:
da:c9:a1:0a:bc:63:a8:9a:5f:9a:1b:4a:7f:fe:4a:2a:56:27:
5a:bd:47:ef:72:d9:fe:6a:1a:d7:b2:f5:4b:ae:50:5a:8f:dc:
72:ce:66:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 20 21:19:29 2026 by rpki-client