Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D28C2785BA611F19E1E76B1CE1D38B0.roa
File: 9D28C2785BA611F19E1E76B1CE1D38B0.roa (raw, json)
Hash identifier: m7cRQrGd+NKuFC54KN707q4gaMtkPkPzj9CgH7MqhSM=
Subject key identifier: 94:7F:74:EA:3A:49:93:09:4B:6F:13:09:08:DD:54:AA:A0:2B:3C:2E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BABC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D28C2785BA611F19E1E76B1CE1D38B0.roa
Signing time: Fri 29 May 2026 21:37:39 +0000
ROA not before: Fri 29 May 2026 21:37:34 +0000
ROA not after: Sun 28 Jun 2026 21:37:34 +0000
asID: 202656
IP address blocks: 156.246.161.0/24 maxlen: 24
156.246.163.0/24 maxlen: 24
156.246.164.0/24 maxlen: 24
156.246.174.0/24 maxlen: 24
156.246.175.0/24 maxlen: 24
156.246.179.0/24 maxlen: 24
156.246.180.0/24 maxlen: 24
156.246.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113340 (0x1babc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 29 21:37:34 2026 GMT
Not After : Jun 28 21:37:34 2026 GMT
Subject: CN=6a1a0723-5ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2c:7f:2a:0c:0b:1e:5f:43:f1:15:e5:84:44:
ad:eb:94:1b:60:a2:7c:e8:1b:0b:5f:aa:f8:b6:d2:
ee:65:8a:18:99:f8:28:b3:47:12:0f:cf:12:e8:52:
77:2c:fc:7a:22:fa:90:17:dc:60:a5:23:7c:08:68:
c3:70:3a:de:79:54:c2:8e:18:96:21:d6:80:84:83:
f2:bf:f3:a5:ad:5a:a7:f8:b5:ca:e3:11:98:12:58:
4a:db:a6:b2:ff:0d:8e:64:54:81:38:2e:8f:17:aa:
e0:db:f8:8b:e7:53:36:14:d4:a5:53:89:81:a9:84:
f7:b8:b7:da:53:19:e1:62:3c:8e:62:ff:27:f7:6b:
4a:88:47:c8:77:b0:31:00:36:c2:7f:6b:c3:89:3d:
33:b0:54:20:14:99:b6:5d:0e:03:de:eb:20:9c:84:
1a:df:2d:56:02:e4:e1:ad:0c:a7:6d:5f:a6:68:64:
32:9f:d2:26:68:30:d2:50:36:b0:70:c3:52:58:b9:
4e:3d:94:99:6f:d9:90:07:1b:de:92:00:56:b2:1a:
c3:12:6e:0a:19:54:c0:35:af:04:69:e3:9e:5f:48:
6e:b7:47:22:46:76:3c:a2:ce:c9:60:99:4b:27:97:
6f:ef:a5:97:df:29:bd:ef:27:1c:b4:ea:15:82:64:
a4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:7F:74:EA:3A:49:93:09:4B:6F:13:09:08:DD:54:AA:A0:2B:3C:2E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D28C2785BA611F19E1E76B1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.161.0/24
156.246.163.0-156.246.164.255
156.246.174.0/23
156.246.179.0-156.246.181.255
Signature Algorithm: sha256WithRSAEncryption
52:b9:07:ad:97:15:6e:f8:d9:5b:44:64:51:c8:d4:f1:d8:86:
2b:2d:f1:2b:c6:7b:58:15:11:33:10:71:bf:4f:37:be:09:c3:
07:53:ec:4e:fd:d8:c2:fe:7a:64:da:75:84:22:b8:11:ca:96:
66:3a:dd:af:08:c0:7f:59:a6:eb:2a:f8:a2:67:31:aa:58:fa:
75:ea:ef:57:95:f9:76:2b:a9:73:fa:fe:0f:a3:b6:9d:c5:b6:
71:02:2f:b1:63:b0:69:dd:e2:99:1d:c0:d8:9f:74:5f:a8:7c:
60:23:7f:97:33:2d:55:e8:bb:e0:42:94:25:c2:c8:4c:19:37:
c6:17:e6:f6:d4:d3:7c:e7:01:7a:f5:cf:bb:a6:b6:b5:e9:7f:
23:29:5b:a9:41:52:03:e3:12:f9:e7:7d:09:8f:6c:42:d7:bf:
33:9f:22:11:5d:da:e7:97:52:88:71:4c:41:98:aa:f1:33:ef:
15:64:1c:8a:42:c1:ce:64:25:75:e8:9c:8b:7e:6c:d1:73:fd:
a2:d7:07:50:4a:36:6a:66:63:56:a4:e4:66:1e:81:68:12:70:
89:95:35:49:9d:15:ef:e0:f1:70:2e:cb:d3:6e:34:32:95:3d:
e2:ed:be:28:72:fb:3e:99:86:d1:a1:e7:2e:7b:87:54:a9:d2:
26:bd:00:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:56 2026 by rpki-client