Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/715FDF8C4ECC11F1AD78B503CF1D38B0.roa
File: 715FDF8C4ECC11F1AD78B503CF1D38B0.roa (raw, json)
Hash identifier: FxsZh+NaO607uEGrWgVPhd6Rvo2wduair3U5GGwTSg0=
Subject key identifier: 06:BD:F8:9C:FE:C6:C6:7B:CE:AF:89:5A:65:C1:07:A8:B1:08:BB:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B433
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/715FDF8C4ECC11F1AD78B503CF1D38B0.roa
Signing time: Wed 13 May 2026 13:05:41 +0000
ROA not before: Wed 13 May 2026 13:05:36 +0000
ROA not after: Wed 17 Jun 2026 13:05:36 +0000
asID: 22773
IP address blocks: 156.233.41.0/24 maxlen: 24
156.233.42.0/24 maxlen: 24
156.233.44.0/23 maxlen: 24
156.233.47.0/24 maxlen: 24
156.233.56.0/24 maxlen: 24
156.233.58.0/24 maxlen: 24
156.233.60.0/23 maxlen: 24
156.239.148.0/24 maxlen: 24
156.248.0.0/24 maxlen: 24
156.248.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111667 (0x1b433)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 13:05:36 2026 GMT
Not After : Jun 17 13:05:36 2026 GMT
Subject: CN=6a047725-473e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:58:58:2b:ce:9d:4d:ee:0d:63:cd:1d:bd:3d:
fd:df:ec:c1:9a:9a:10:a4:63:a0:d6:f4:0e:40:67:
9d:f6:e5:7c:82:11:e5:cc:9a:b3:cb:65:09:f5:aa:
49:b5:24:00:45:09:ad:6b:8d:fe:b0:c3:47:25:29:
ae:53:2f:ef:70:2e:ee:c8:28:2c:a8:9a:a5:f5:3f:
61:c3:5d:15:a2:bc:23:94:4a:71:54:8d:bd:06:4b:
33:58:ee:cd:d7:6f:71:8c:ea:2b:02:f2:7d:98:73:
e2:8b:ec:67:64:d1:c6:37:dd:cf:70:5b:e7:af:84:
73:78:48:9e:47:06:33:40:cc:d1:22:7d:80:d9:b9:
f5:8d:54:da:5b:51:6e:07:0d:5b:71:0f:43:a6:fa:
7f:b5:5c:49:d7:fc:10:f5:00:47:e9:c1:24:bc:ff:
d8:67:80:f0:d4:bb:28:ff:8f:bb:1d:8b:02:c9:65:
af:49:b9:82:9c:cc:d2:76:92:48:79:4f:b9:b4:e4:
2d:01:1c:5d:f2:f2:ed:96:2d:31:0e:04:be:ca:f9:
31:87:12:e3:b1:80:53:dc:92:18:20:e4:42:01:47:
2d:2a:a1:c3:78:05:bf:b6:2f:9e:0d:30:4b:cb:6f:
24:e9:b5:6b:73:91:14:83:24:95:72:03:32:4d:21:
11:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BD:F8:9C:FE:C6:C6:7B:CE:AF:89:5A:65:C1:07:A8:B1:08:BB:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/715FDF8C4ECC11F1AD78B503CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.41.0-156.233.42.255
156.233.44.0/23
156.233.47.0/24
156.233.56.0/24
156.233.58.0/24
156.233.60.0/23
156.239.148.0/24
156.248.0.0/24
156.248.4.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:4f:dc:d4:b1:c1:f7:07:3f:ec:54:d2:e3:70:c1:f5:70:ee:
ae:38:dc:41:1c:22:7d:18:4c:ef:9a:6f:41:d8:1d:00:a4:b5:
74:db:42:5d:de:a8:75:b2:b5:59:f4:64:f6:bf:f6:0a:5d:36:
6a:f6:91:7b:6c:b6:83:71:69:23:a5:8d:52:4d:58:99:64:ba:
60:c0:e3:23:97:cd:5c:a2:8c:47:e1:4c:1c:af:f1:a8:66:8d:
b1:8c:07:fd:fa:33:5b:16:f2:7d:a6:0d:e1:76:09:77:72:88:
28:26:c3:a4:4c:15:fb:7e:83:9d:e1:e9:5d:18:7b:69:e4:84:
a7:6a:8a:0a:00:68:f4:af:e7:b7:c6:c8:bd:2c:0f:9a:bf:b9:
f5:72:8a:9f:b3:6e:e4:68:7b:b3:8b:31:e1:f1:55:cc:0f:91:
86:f7:d2:64:fa:41:6f:22:4a:b5:05:8b:a3:6d:5f:81:86:14:
1b:8b:dd:97:f0:af:fc:c1:a2:09:f1:17:a8:ee:a9:36:02:40:
39:d1:d6:a3:15:b9:a7:b2:ba:f8:9d:8c:75:eb:04:d3:02:89:
ff:55:14:e1:9e:f3:d4:ee:92:d5:91:2c:cd:99:ff:0d:aa:80:
76:57:18:7c:af:06:78:c2:78:3b:0c:06:96:e2:9d:82:5b:25:
35:c0:72:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 20 21:18:55 2026 by rpki-client