Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73071968590D11F19DCF34F3CE1D38B0.roa
File: 73071968590D11F19DCF34F3CE1D38B0.roa (raw, json)
Hash identifier: 8dcmxfQl1wBsZN3ul06s62eBEihZmtZOf96yLuEjEic=
Subject key identifier: 13:CC:E7:82:E3:DA:8F:E9:F3:51:39:F9:88:A5:44:BE:28:C7:CE:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BA16
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73071968590D11F19DCF34F3CE1D38B0.roa
Signing time: Tue 26 May 2026 14:16:13 +0000
ROA not before: Tue 26 May 2026 14:16:07 +0000
ROA not after: Tue 09 Jun 2026 14:16:07 +0000
asID: 154177
IP address blocks: 156.244.0.0/24 maxlen: 24
156.244.1.0/24 maxlen: 24
156.244.2.0/24 maxlen: 24
156.244.5.0/24 maxlen: 24
156.244.6.0/24 maxlen: 24
156.244.21.0/24 maxlen: 24
156.244.28.0/24 maxlen: 24
156.244.29.0/24 maxlen: 24
156.244.30.0/24 maxlen: 24
156.244.32.0/24 maxlen: 24
156.244.33.0/24 maxlen: 24
156.244.35.0/24 maxlen: 24
156.244.36.0/24 maxlen: 24
156.244.37.0/24 maxlen: 24
156.244.38.0/24 maxlen: 24
156.244.52.0/24 maxlen: 24
156.244.54.0/24 maxlen: 24
156.244.60.0/24 maxlen: 24
156.244.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113174 (0x1ba16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 14:16:07 2026 GMT
Not After : Jun 9 14:16:07 2026 GMT
Subject: CN=6a15ab2d-9b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f0:36:ed:8f:2a:db:9f:d0:e4:f8:36:58:36:
46:15:9a:42:d4:05:e0:ac:2b:c3:2b:91:42:fa:e1:
43:a6:66:87:70:28:92:43:d7:93:29:b7:85:80:8b:
10:d2:4e:d5:99:56:13:d7:49:b9:e0:f1:1b:a5:81:
5d:5b:48:cd:dc:0d:72:d9:26:a8:4d:7f:3b:4c:4d:
cb:df:42:3c:3b:60:d6:6b:d0:97:0c:c1:2b:6f:23:
da:16:8d:c7:14:0b:a8:7b:96:27:a2:54:e1:b6:a4:
eb:30:1f:9a:2f:71:b5:6f:27:14:7c:d4:d0:6d:d9:
76:79:f1:7a:06:ab:52:40:9a:d7:43:82:74:f1:af:
1b:d3:30:74:ad:c7:f6:78:78:64:41:af:a1:0d:9b:
63:fc:7a:65:d3:11:3d:88:30:91:7f:33:07:72:2b:
b5:10:b7:39:d1:c1:af:e9:4b:57:2f:a5:75:f9:f5:
a2:ae:dc:e1:7f:9b:c2:c9:8f:f3:47:09:f6:8b:58:
b4:e9:ef:07:e3:09:96:16:e2:2c:7b:91:f7:7d:f0:
f4:95:10:f6:48:e6:4d:ed:77:2d:37:a6:cc:81:2e:
a9:f5:66:7e:23:77:3f:1f:3e:cc:df:2f:cd:a1:5a:
40:b1:bc:15:fd:e3:ba:9e:96:d1:73:d3:ee:43:00:
76:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CC:E7:82:E3:DA:8F:E9:F3:51:39:F9:88:A5:44:BE:28:C7:CE:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73071968590D11F19DCF34F3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.0.0-156.244.2.255
156.244.5.0-156.244.6.255
156.244.21.0/24
156.244.28.0-156.244.30.255
156.244.32.0/23
156.244.35.0-156.244.38.255
156.244.52.0/24
156.244.54.0/24
156.244.60.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:60:7e:c9:15:b8:7c:f0:fb:1c:43:df:42:d3:87:d8:24:c2:
06:f7:b2:5b:66:e6:d5:3c:ef:6e:33:d4:5f:5d:a0:53:4b:0b:
3b:9f:a2:1f:d3:ad:f8:79:94:d8:f5:fc:d8:7c:08:b1:55:aa:
af:b5:a4:fb:30:cb:49:aa:bc:47:dc:ab:72:52:56:95:f6:41:
13:e2:51:ab:1c:d6:05:27:02:b8:25:11:1f:b3:d2:f0:cc:6f:
5c:2e:29:22:91:f6:90:b0:10:e3:3f:d9:51:8f:8f:36:51:38:
69:2f:92:b1:e9:dc:a6:41:e3:b2:e7:5e:59:a9:5e:35:f7:49:
5c:5b:dd:47:95:7e:57:55:25:e7:c0:71:61:5c:92:bb:a9:10:
18:42:32:69:c7:3f:d5:92:94:a5:69:b9:80:88:07:74:26:45:
e4:b5:b9:b2:29:bd:1e:4a:9a:a6:df:a5:f7:7e:aa:66:ab:af:
64:8d:25:77:7d:fb:74:d4:c8:3d:51:1d:ef:aa:46:24:6f:ae:
76:86:91:4f:c2:e7:9a:b3:90:b6:b6:92:cd:78:d5:37:ee:20:
86:cf:d7:fb:9f:78:fd:a3:57:a2:5e:b0:c9:99:35:1a:f3:cc:
c3:61:1f:66:6b:c7:97:68:2f:c6:8f:72:f9:52:5b:0a:12:a5:
1d:7d:42:bf
-----BEGIN CERTIFICATE-----
MIIF0DCCBLigAwIBAgIDAboWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTI2MTQxNjA3WhcNMjYwNjA5MTQxNjA3WjAYMRYw
FAYDVQQDEw02YTE1YWIyZC05YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvvA27Y8q25/Q5Pg2WDZGFZpC1AXgrCvDK5FC+uFDpmaHcCiSQ9eTKbeF
gIsQ0k7VmVYT10m54PEbpYFdW0jN3A1y2SaoTX87TE3L30I8O2DWa9CXDMErbyPa
Fo3HFAuoe5YnolThtqTrMB+aL3G1bycUfNTQbdl2efF6BqtSQJrXQ4J08a8b0zB0
rcf2eHhkQa+hDZtj/Hpl0xE9iDCRfzMHciu1ELc50cGv6UtXL6V1+fWirtzhf5vC
yY/zRwn2i1i06e8H4wmWFuIse5H3ffD0lRD2SOZN7XctN6bMgS6p9WZ+I3c/Hz7M
3y/NoVpAsbwV/eO6npbRc9PuQwB2/QIDAQABo4IC8TCCAu0wHQYDVR0OBBYEFBPM
54Lj2o/p81E5+YilRL4ox850MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83MzA3MTk2ODU5MEQxMUYxOURDRjM0RjNDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MG4GCCsGAQUFBwEHAQH/BF8wXTBbBAIAATBVMAsDAwKc9AMEAJz0AjAMAwQAnPQF
AwQAnPQGAwQAnPQVMAwDBAKc9BwDBACc9B4DBAGc9CAwDAMEAJz0IwMEAJz0JgME
AJz0NAMEAJz0NgMEAZz0PDANBgkqhkiG9w0BAQsFAAOCAQEAD2B+yRW4fPD7HEPf
QtOH2CTCBveyW2bm1TzvbjPUX12gU0sLO5+iH9Ot+HmU2PX82HwIsVWqr7Wk+zDL
Saq8R9yrclJWlfZBE+JRqxzWBScCuCURH7PS8MxvXC4pIpH2kLAQ4z/ZUY+PNlE4
aS+SsencpkHjsudeWaleNfdJXFvdR5V+V1Ul58BxYVySu6kQGEIyacc/1ZKUpWm5
gIgHdCZF5LW5sim9Hkqapt+l936qZquvZI0ld337dNTIPVEd76pGJG+udoaRT8Ln
mrOQtraSzXjVN+4ghs/X+594/aNXol6wyZk1GvPMw2EfZmvHl2gvxo9y+VJbChKl
HX1Cvw==
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:00 2026 by rpki-client