Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B74363E371211F1958C3ACCCE1D38B0.roa
File: 7B74363E371211F1958C3ACCCE1D38B0.roa (raw, json)
Hash identifier: hJtY17h9brlNvkKdFOMuEu5FfIYBU20DyLaYPtGxRww=
Subject key identifier: E9:67:2C:E7:EE:9F:24:59:D4:1C:A5:15:CC:D1:F9:05:47:B7:EC:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC50
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B74363E371211F1958C3ACCCE1D38B0.roa
Signing time: Mon 13 Apr 2026 08:26:35 +0000
ROA not before: Mon 13 Apr 2026 08:26:30 +0000
ROA not after: Sat 16 May 2026 08:26:30 +0000
asID: 22773
IP address blocks: 156.242.54.0/24 maxlen: 24
156.242.55.0/24 maxlen: 24
156.242.56.0/24 maxlen: 24
156.242.57.0/24 maxlen: 24
156.242.58.0/24 maxlen: 24
156.242.59.0/24 maxlen: 24
156.242.60.0/24 maxlen: 24
156.242.61.0/24 maxlen: 24
156.242.62.0/24 maxlen: 24
156.242.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109648 (0x1ac50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 08:26:30 2026 GMT
Not After : May 16 08:26:30 2026 GMT
Subject: CN=69dca8bb-5dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:17:25:4b:b2:ad:4c:79:cc:d9:77:82:09:bd:
0c:bc:95:5b:01:9d:3d:f6:ea:33:03:4b:82:f7:69:
66:f9:15:21:30:f4:fd:83:4a:40:41:80:9f:39:b7:
c2:e0:d1:40:74:96:49:2d:72:a4:61:31:89:9a:20:
96:05:35:e6:cf:0b:0c:1d:f1:72:c8:fd:ca:00:bb:
30:63:38:d2:fc:cb:96:ef:8b:ec:2d:08:d6:e7:fe:
c0:fe:51:7d:09:74:b1:f1:cc:0a:51:83:d0:1b:b4:
49:8d:71:36:f0:9c:e6:b2:fa:4a:e7:d6:08:23:6f:
b6:0f:01:ae:74:f0:34:ee:96:e8:da:f9:e9:ce:34:
52:9d:d7:61:43:bf:9d:e8:f8:76:d3:d5:05:09:86:
a9:6e:68:d0:25:3a:4b:0f:e7:39:18:73:85:63:78:
c9:d9:fd:d2:da:5e:de:b6:31:33:23:e2:a7:ff:08:
e8:d1:25:ec:d4:1b:ae:d9:20:ba:d5:1e:c9:3c:f7:
70:35:56:4b:07:0f:a7:74:f4:e6:a0:b2:11:e4:ab:
c3:b9:32:b0:d9:a3:dc:ec:54:50:b2:b2:1f:a5:c4:
30:d8:28:c2:f4:42:d8:28:b0:25:68:1e:76:70:8c:
86:58:73:f7:94:5d:34:1f:9d:f9:d8:50:f2:87:4c:
6b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:67:2C:E7:EE:9F:24:59:D4:1C:A5:15:CC:D1:F9:05:47:B7:EC:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B74363E371211F1958C3ACCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.54.0-156.242.63.255
Signature Algorithm: sha256WithRSAEncryption
aa:a4:e0:ce:b1:8e:92:d0:60:89:02:fb:f7:4b:68:06:6c:3e:
c8:31:c3:ef:1f:50:06:f3:9e:6e:ac:c4:27:4c:42:86:25:4a:
55:39:1a:c3:27:e8:c3:34:6a:ac:f3:08:40:1d:3f:d9:96:36:
02:14:d8:c1:9a:97:f1:0e:e0:6b:73:cf:07:9f:05:83:56:95:
20:44:01:d1:12:02:f7:86:ea:39:a9:b2:c3:75:5a:d0:c9:1e:
ff:24:ca:1a:83:88:64:84:31:be:47:23:ff:6b:31:8f:a7:e0:
77:11:84:59:b6:60:8d:81:16:0b:2e:19:58:fc:6a:70:6c:68:
aa:36:64:2b:92:2c:70:37:b4:e3:67:32:34:d2:66:91:d1:27:
ca:28:26:bc:1a:e4:32:7a:c1:02:27:4c:e1:37:56:52:0b:7b:
50:6b:bb:57:04:0f:ec:ad:1c:4c:58:f1:aa:56:8b:b6:14:e8:
94:65:c3:25:63:78:94:ac:02:8d:d2:f4:00:04:ef:83:60:6c:
33:dc:1d:6e:bc:15:cd:7c:ba:f7:65:b4:43:23:a2:8d:80:4d:
7a:14:6b:af:63:df:90:30:cb:77:be:fd:59:c2:46:24:32:db:
eb:36:0e:42:f9:d9:18:20:58:22:04:d7:93:39:72:80:0f:d7:
be:db:1a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:30:36 2026 by rpki-client