Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C6B774455EE11F1962140F1CE1D38B0.roa
File: 9C6B774455EE11F1962140F1CE1D38B0.roa (raw, json)
Hash identifier: k2Bi6ddpOppHe9L022sgJ33L6EX0hw9Y+HGdJhOIpjY=
Subject key identifier: E6:D6:86:EC:50:3B:A6:EC:D5:26:3A:DC:6B:0B:B3:DD:A4:C1:49:0E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B818
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C6B774455EE11F1962140F1CE1D38B0.roa
Signing time: Fri 22 May 2026 14:57:54 +0000
ROA not before: Fri 22 May 2026 14:57:49 +0000
ROA not after: Tue 16 Jun 2026 14:57:49 +0000
asID: 137443
IP address blocks: 156.255.2.0/23 maxlen: 24
156.255.2.0/24 maxlen: 24
156.255.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112664 (0x1b818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 22 14:57:49 2026 GMT
Not After : Jun 16 14:57:49 2026 GMT
Subject: CN=6a106ef2-6c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:33:57:c2:71:3a:3a:a6:ff:78:a3:c2:5e:45:
9a:8d:08:02:6e:7e:e2:83:6a:ac:63:7d:6a:a8:98:
e1:fa:fd:7b:88:51:e1:79:3a:cb:01:f0:8c:b6:ab:
61:8c:8e:73:62:3f:e7:7e:ba:3c:1a:ed:a0:38:da:
b9:63:bf:bd:b4:52:4e:34:83:84:94:ff:4c:1b:f3:
69:4d:17:2e:f6:6b:11:cb:32:b3:38:f5:42:ad:6e:
ba:d7:53:b1:46:98:76:69:48:af:24:b5:b1:c6:f2:
9c:7e:56:e6:7c:98:73:92:4b:d4:34:b9:14:81:e0:
04:9d:c1:56:45:f8:87:83:bb:f2:5e:fc:e0:54:91:
7b:60:f4:8f:86:dd:84:b4:8e:55:d0:51:1a:2c:e4:
27:3f:68:7d:af:d6:85:bc:9d:39:27:d5:7d:70:d9:
e5:a0:a6:97:1b:4b:20:83:a9:46:88:02:1c:ec:b1:
a1:85:54:af:3b:29:6f:1b:c8:2c:26:79:2a:ef:39:
4d:5a:f4:20:8c:a7:43:0f:37:a7:db:61:d6:a0:46:
5a:91:d2:d9:76:35:30:08:a9:4e:08:df:6b:5f:03:
d8:85:65:1e:38:60:c9:48:5f:c8:0d:f7:82:2b:ba:
2c:45:eb:05:da:29:b8:a1:db:ec:b4:72:bd:6e:65:
04:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D6:86:EC:50:3B:A6:EC:D5:26:3A:DC:6B:0B:B3:DD:A4:C1:49:0E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C6B774455EE11F1962140F1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.2.0/23
Signature Algorithm: sha256WithRSAEncryption
92:49:47:e7:16:a9:83:2c:81:ba:2f:1a:4a:91:79:22:ed:18:
73:01:13:e3:42:6c:74:3c:61:26:45:e5:5d:b9:66:e6:a2:a8:
a2:d3:17:f3:c7:4f:aa:cc:6d:41:a8:10:96:11:82:ee:60:8b:
44:01:f6:84:87:b7:92:1d:ce:6a:59:82:e2:bb:c5:4c:a6:fc:
e4:85:7d:4c:d8:b1:04:da:2a:ce:03:89:40:09:7d:4b:0a:93:
47:6b:5c:86:ae:9b:3a:97:3c:d1:1c:4d:2a:78:4c:6a:fd:b8:
78:ac:f3:22:05:6f:8e:2d:45:e7:01:16:8f:ad:8f:95:10:2d:
98:d8:fb:19:50:06:3d:06:7f:22:66:27:05:e9:c3:db:e7:29:
ab:d9:ae:b8:79:9f:50:4d:03:ab:49:61:0b:30:fa:3c:24:be:
4d:3c:4d:82:da:a5:c2:f1:92:71:5f:0a:fe:ad:5b:e9:b3:33:
99:36:a3:05:30:c1:97:ae:05:b7:c4:f9:42:2a:24:68:e1:ea:
ee:ac:d7:fc:39:74:a2:ff:d3:12:f2:ba:88:70:4c:0c:90:b5:
ea:eb:3c:49:a7:4c:4c:4b:da:18:d8:63:69:3b:13:16:13:00:
d3:54:a8:0d:c6:93:48:46:44:a9:20:c5:c7:1d:56:96:b2:0e:
e5:88:38:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:22 2026 by rpki-client