Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96218370189911F18C3159B9DAE4EC9C.roa
File: 96218370189911F18C3159B9DAE4EC9C.roa (raw, json)
Hash identifier: 1WglbPDBN3hT9N6HoLvvpC29u3W1dkL/7mOsOo+cDLc=
Subject key identifier: 25:4F:D9:55:8C:87:12:4E:58:C3:32:9E:2B:27:2E:07:87:BE:80:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A2B3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96218370189911F18C3159B9DAE4EC9C.roa
Signing time: Thu 05 Mar 2026 13:45:36 +0000
ROA not before: Thu 05 Mar 2026 13:45:30 +0000
ROA not after: Wed 27 May 2026 13:45:30 +0000
asID: 9294
IP address blocks: 156.236.32.0/19 maxlen: 24
156.239.64.0/18 maxlen: 24
156.244.160.0/19 maxlen: 24
156.244.224.0/19 maxlen: 24
156.247.64.0/18 maxlen: 24
156.250.32.0/19 maxlen: 24
156.252.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107187 (0x1a2b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 5 13:45:30 2026 GMT
Not After : May 27 13:45:30 2026 GMT
Subject: CN=69a98900-1731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:19:ec:6c:74:ae:71:76:b4:f3:2d:f2:b8:07:
77:27:00:fb:89:71:83:8f:c2:91:ea:21:4c:f6:e7:
9c:08:58:50:67:a9:a2:bc:18:46:0f:cc:62:02:91:
fc:d7:6b:b4:60:45:61:6f:b7:7f:67:4e:85:85:b9:
7f:da:2a:6f:4c:d7:9e:03:80:cb:ea:f3:df:de:78:
2d:c6:1f:c7:40:b0:44:d6:8a:fd:16:9c:9a:ec:e7:
34:aa:49:55:2d:69:56:e9:09:51:8b:01:40:b0:d5:
88:7b:c1:9c:b2:a8:8e:a4:bd:7d:44:0b:20:f5:6d:
3f:25:4d:c9:38:13:1b:4f:1e:b0:cb:ec:93:73:57:
de:8b:4c:eb:29:d0:a3:c4:27:d5:f8:1a:4c:3c:42:
fa:2a:1e:5c:68:25:59:50:be:6b:dc:dd:83:18:40:
e6:31:0d:2b:7a:40:f4:de:36:d1:92:13:1a:91:48:
d9:ed:f9:98:28:a5:1a:ff:93:fd:05:75:2c:6b:fb:
0d:41:bf:da:4b:c2:2f:63:8d:d4:c0:14:ca:55:2e:
e9:4b:c1:47:02:b4:00:91:44:98:34:bc:9d:cd:cc:
9c:4b:a5:ac:80:9c:56:18:53:fa:cd:5a:09:15:9e:
3c:63:b8:ad:66:b1:72:28:77:55:92:de:c2:f4:58:
cc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4F:D9:55:8C:87:12:4E:58:C3:32:9E:2B:27:2E:07:87:BE:80:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96218370189911F18C3159B9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.32.0/19
156.239.64.0/18
156.244.160.0/19
156.244.224.0/19
156.247.64.0/18
156.250.32.0/19
156.252.32.0/19
Signature Algorithm: sha256WithRSAEncryption
ad:bb:bb:ef:22:65:f8:26:63:71:7d:4c:a9:6b:19:06:47:fb:
56:ce:bd:07:25:37:ef:98:f7:53:9c:4a:8c:23:8e:d7:f7:10:
73:eb:93:3e:bc:74:af:bb:26:e2:5f:62:87:1a:40:3e:9e:a0:
3c:8b:d5:8c:c4:81:1c:ae:3c:8d:9a:a0:62:c4:34:ef:ed:e4:
9d:26:33:08:3f:41:47:79:64:af:0f:5b:7b:6c:5b:59:b7:c3:
c4:ca:a6:9a:c7:95:0a:e6:62:e6:aa:63:7e:74:18:2c:66:86:
13:41:8c:ce:d4:7b:26:89:b5:00:8f:d8:b1:7f:f5:ab:c0:ae:
89:95:8c:20:a9:74:01:47:f8:fe:bf:a2:04:96:af:53:34:92:
f0:c5:77:7d:bb:23:b4:50:5a:59:e5:60:9f:5b:80:97:2d:f9:
a1:d5:24:08:0f:d0:27:d7:85:27:4c:9a:91:a0:29:f6:f1:40:
66:b3:ed:1a:6d:96:ca:3c:1e:12:cd:24:fb:87:88:4b:1c:5a:
fe:1a:1f:ac:89:e0:3b:f8:12:11:cf:bc:f8:2c:70:d6:cc:cd:
07:42:12:33:4b:e1:c2:bb:3a:3b:2a:fa:7d:ff:b0:dc:88:71:
c8:fa:07:9f:f5:a8:90:5c:f5:fa:61:b2:39:2a:06:fa:52:c2:
aa:56:c4:44
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgIDAaKzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzA1MTM0NTMwWhcNMjYwNTI3MTM0NTMwWjAYMRYw
FAYDVQQDEw02OWE5ODkwMC0xNzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA/hnsbHSucXa08y3yuAd3JwD7iXGDj8KR6iFM9uecCFhQZ6mivBhGD8xi
ApH812u0YEVhb7d/Z06Fhbl/2ipvTNeeA4DL6vPf3ngtxh/HQLBE1or9Fpya7Oc0
qklVLWlW6QlRiwFAsNWIe8GcsqiOpL19RAsg9W0/JU3JOBMbTx6wy+yTc1fei0zr
KdCjxCfV+BpMPEL6Kh5caCVZUL5r3N2DGEDmMQ0rekD03jbRkhMakUjZ7fmYKKUa
/5P9BXUsa/sNQb/aS8IvY43UwBTKVS7pS8FHArQAkUSYNLydzcycS6WsgJxWGFP6
zVoJFZ48Y7itZrFyKHdVkt7C9FjMewIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFCVP
2VWMhxJOWMMynisnLgeHvoD+MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85NjIxODM3MDE4OTkxMUYxOEMzMTU5QjlEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQFnOwgAwQGnO9AAwQFnPSgAwQF
nPTgAwQGnPdAAwQFnPogAwQFnPwgMA0GCSqGSIb3DQEBCwUAA4IBAQCtu7vvImX4
JmNxfUypaxkGR/tWzr0HJTfvmPdTnEqMI47X9xBz65M+vHSvuybiX2KHGkA+nqA8
i9WMxIEcrjyNmqBixDTv7eSdJjMIP0FHeWSvD1t7bFtZt8PEyqaax5UK5mLmqmN+
dBgsZoYTQYzO1HsmibUAj9ixf/WrwK6JlYwgqXQBR/j+v6IElq9TNJLwxXd9uyO0
UFpZ5WCfW4CXLfmh1SQID9An14UnTJqRoCn28UBms+0abZbKPB4SzST7h4hLHFr+
Gh+sieA7+BIRz7z4LHDWzM0HQhIzS+HCuzo7Kvp9/7DciHHI+gef9aiQXPX6YbI5
Kgb6UsKqVsRE
-----END CERTIFICATE-----
Generated at Thu Mar 12 22:52:56 2026 by rpki-client