Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88E1BE82582211F1BEAF9AE3CE1D38B0.roa
File: 88E1BE82582211F1BEAF9AE3CE1D38B0.roa (raw, json)
Hash identifier: wVCPHZcrvv6MbGkqGb3OAG10I29RKJ7eBCfcr6tVdFc=
Subject key identifier: 2A:50:D8:F9:1D:1D:7D:14:CC:FF:0F:4C:E4:B1:55:48:CF:36:E9:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B97E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88E1BE82582211F1BEAF9AE3CE1D38B0.roa
Signing time: Mon 25 May 2026 10:14:38 +0000
ROA not before: Mon 25 May 2026 10:14:31 +0000
ROA not after: Sat 12 Sep 2026 10:14:31 +0000
asID: 213796
IP address blocks: 156.233.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113022 (0x1b97e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 25 10:14:31 2026 GMT
Not After : Sep 12 10:14:31 2026 GMT
Subject: CN=6a14210e-14a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:20:b7:8c:48:83:6f:a9:dc:13:0f:24:eb:05:
bf:6d:6b:28:e1:2a:06:74:50:36:0b:47:22:21:c3:
0b:32:d7:59:8a:77:6f:45:2e:ad:49:8f:89:f7:69:
90:9e:15:0e:4f:7a:3b:e6:fe:40:9c:fb:f8:3d:cb:
e0:bb:e1:fb:74:07:d0:17:b9:74:f6:ed:8b:85:95:
19:0d:ee:4c:f5:cd:e6:f1:d8:a2:0e:23:f5:c6:fc:
36:df:30:91:00:12:a6:31:25:7e:09:a8:9b:06:7d:
f0:e1:28:9f:13:93:35:bc:57:b8:63:ad:89:b3:ed:
e3:00:4b:a4:aa:86:9f:07:6c:33:ae:ca:4f:45:60:
7b:03:b7:0c:db:98:6a:ed:95:bd:f4:ed:22:38:09:
c7:8f:55:a7:b4:90:e5:b8:b2:47:7c:44:44:13:e6:
01:93:90:45:6f:4c:e5:52:ae:e7:7e:ad:81:b3:64:
8a:b5:8d:2d:77:23:60:87:d9:90:5e:aa:5c:76:09:
e1:2d:82:9c:44:aa:69:26:47:16:37:c7:f6:b0:6c:
32:d5:88:79:67:b8:7f:a1:94:e9:0d:2c:39:d9:74:
52:7a:a5:d2:28:5c:64:b1:85:84:98:9f:db:e1:d1:
d9:34:17:f5:7e:1f:ef:14:0c:c2:1c:5f:19:c7:1b:
02:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:50:D8:F9:1D:1D:7D:14:CC:FF:0F:4C:E4:B1:55:48:CF:36:E9:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88E1BE82582211F1BEAF9AE3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.71.0/24
Signature Algorithm: sha256WithRSAEncryption
96:12:47:35:e0:b0:6a:dd:a8:a7:66:1d:49:cd:34:f7:f6:74:
39:70:95:9e:2e:44:e9:4e:09:6b:e5:f0:c9:6c:32:eb:d2:36:
f0:a6:22:71:79:35:dc:db:8a:32:81:ac:f1:1f:cb:47:85:4a:
af:29:9b:f8:12:97:4e:d4:d7:fc:84:e3:55:50:d9:a2:dc:7c:
8d:ce:c3:d8:2d:d6:d2:bd:4e:83:0d:b7:17:c5:0d:7f:dd:71:
16:63:e5:5f:e4:d4:c6:fa:38:ea:ea:b8:5d:ff:af:d5:90:e7:
52:e2:90:2c:d3:20:85:0e:65:33:de:14:3a:e4:4c:a7:04:38:
e8:70:ea:ec:7b:26:0b:8a:06:4b:fd:f5:c9:fe:c6:b8:51:57:
a1:76:a2:61:f7:c1:3b:e5:e5:1b:63:fb:3e:84:e8:22:c2:ca:
05:a5:e5:6f:a5:e4:8b:24:b3:c1:57:1e:60:a3:46:96:18:bd:
a8:04:ef:b5:96:7e:d3:69:c1:a1:09:db:e7:96:5d:c4:a6:18:
d6:b1:93:71:02:fe:c7:f5:d5:6d:6b:22:aa:cd:7c:f7:56:b7:
d3:59:64:70:d7:c1:d8:dd:15:f6:bb:2d:6d:a0:32:c7:4e:5b:
32:21:bd:8c:28:f3:08:48:76:66:d3:2c:3e:52:26:a9:6c:8b:
4f:16:7f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:44 2026 by rpki-client