Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E28F52C1F8C11F18F4A0AC3DAE4EC9C.roa
File: 9E28F52C1F8C11F18F4A0AC3DAE4EC9C.roa (raw, json)
Hash identifier: Hm31LQxCEQJo+13IEIgOYvKPI5gTAw1EIdqUdsG8dR4=
Subject key identifier: 3B:92:29:31:F2:59:5D:FF:D6:F1:0B:27:5B:AA:53:5F:71:84:B5:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A504
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E28F52C1F8C11F18F4A0AC3DAE4EC9C.roa
Signing time: Sat 14 Mar 2026 10:00:24 +0000
ROA not before: Sat 14 Mar 2026 10:00:19 +0000
ROA not after: Sun 31 May 2026 10:00:19 +0000
asID: 399077
IP address blocks: 156.251.52.0/24 maxlen: 24
156.251.53.0/24 maxlen: 24
156.251.54.0/24 maxlen: 24
156.251.55.0/24 maxlen: 24
156.251.56.0/24 maxlen: 24
156.251.57.0/24 maxlen: 24
156.251.58.0/24 maxlen: 24
156.251.60.0/24 maxlen: 24
156.251.62.0/24 maxlen: 24
156.251.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107780 (0x1a504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 14 10:00:19 2026 GMT
Not After : May 31 10:00:19 2026 GMT
Subject: CN=69b531b7-728d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:18:ad:2b:36:4b:81:10:26:14:00:6d:53:
d2:b3:ae:14:53:b7:ac:e4:0d:c8:8d:5f:4e:f4:98:
5b:bb:5f:98:f1:18:8e:65:a7:af:e5:33:d8:0e:f4:
74:7e:05:0e:f7:56:c0:ea:f9:aa:a7:79:89:47:bd:
85:e0:32:d9:0c:25:78:3e:e7:d2:cb:82:fa:08:9f:
e3:d0:74:09:da:ef:a5:2b:6c:ee:fe:75:5a:c9:07:
6b:d6:fe:6d:91:02:92:50:cf:b1:01:aa:90:5e:8a:
dc:a8:ea:74:24:7e:70:a1:1e:cf:c5:a0:f1:69:e3:
68:16:37:12:42:4d:2a:a9:6c:6a:60:80:5a:4d:d1:
cb:43:e1:0c:7a:f8:ab:e4:30:3f:39:c8:a3:11:47:
43:c5:01:6f:9e:03:73:ec:99:28:8f:e3:ba:6f:76:
1b:9f:3e:27:51:96:47:16:87:10:dd:5d:c5:aa:8c:
4e:04:23:a8:3a:d8:34:8c:0e:e2:8c:42:5c:03:42:
cf:b9:04:15:dd:f1:ba:50:b9:3e:81:0f:06:1e:e4:
70:16:d6:2f:89:8f:8a:41:ac:34:30:c8:cf:85:00:
bb:af:c5:40:cb:c7:c2:b2:04:1c:77:a1:4e:21:23:
e2:eb:9c:54:ac:18:b5:41:d8:61:5f:9e:51:bf:4d:
51:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:92:29:31:F2:59:5D:FF:D6:F1:0B:27:5B:AA:53:5F:71:84:B5:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E28F52C1F8C11F18F4A0AC3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.52.0-156.251.58.255
156.251.60.0/24
156.251.62.0/23
Signature Algorithm: sha256WithRSAEncryption
22:0f:c0:b3:9a:9e:7f:28:99:a5:b6:84:63:37:d4:0c:b2:93:
40:a5:db:26:83:66:a5:e0:5b:c5:c3:63:eb:34:06:69:d0:fa:
e9:40:11:c6:fd:9b:40:7f:17:e9:69:0b:f1:b3:4f:57:2f:0f:
94:3c:cf:38:14:0e:0e:e7:ac:57:1d:2b:76:78:25:32:51:f8:
bd:22:9e:11:c4:52:26:3d:24:fb:01:0f:34:12:d1:d6:60:09:
c6:24:ab:b2:67:f8:5e:75:cb:52:1b:13:1d:b9:bd:1c:78:e6:
3a:cb:b9:72:5d:85:c9:0d:e4:65:92:63:cf:a8:4e:6d:d7:c0:
28:c2:12:d5:dd:02:a1:a4:16:33:61:74:62:46:b1:27:17:7b:
bb:75:4d:84:52:09:07:b4:01:b8:0c:07:53:5c:50:a7:83:04:
bd:ec:10:78:3c:55:bb:94:e7:87:4b:e1:2c:90:b0:35:d1:5c:
99:ad:4a:ac:24:c2:fa:83:ef:aa:63:be:e4:04:fd:be:c3:fb:
ab:80:6d:4c:81:eb:15:7a:ad:35:7e:3c:3c:a8:f6:b8:50:4c:
20:f2:ce:fd:90:8c:a3:2e:9a:53:b6:7b:2f:c5:76:6e:97:56:
79:99:76:7f:3c:05:b1:0e:0e:55:05:cd:3d:86:5e:c8:aa:21:
25:3f:82:03
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIDAaUEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzE0MTAwMDE5WhcNMjYwNTMxMTAwMDE5WjAYMRYw
FAYDVQQDEw02OWI1MzFiNy03MjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAspkYrSs2S4EQJhQAbVPSs64UU7es5A3IjV9O9Jhbu1+Y8RiOZaev5TPY
DvR0fgUO91bA6vmqp3mJR72F4DLZDCV4PufSy4L6CJ/j0HQJ2u+lK2zu/nVayQdr
1v5tkQKSUM+xAaqQXorcqOp0JH5woR7PxaDxaeNoFjcSQk0qqWxqYIBaTdHLQ+EM
evir5DA/OcijEUdDxQFvngNz7Jkoj+O6b3Ybnz4nUZZHFocQ3V3FqoxOBCOoOtg0
jA7ijEJcA0LPuQQV3fG6ULk+gQ8GHuRwFtYviY+KQaw0MMjPhQC7r8VAy8fCsgQc
d6FOISPi65xUrBi1QdhhX55Rv01RgQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFDuS
KTHyWV3/1vELJ1uqU19xhLUDMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85RTI4RjUyQzFGOEMxMUYxOEY0QTBBQzNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBAKc+zQDBACc+zoDBACc+zwD
BAGc+z4wDQYJKoZIhvcNAQELBQADggEBACIPwLOann8omaW2hGM31Ayyk0Cl2yaD
ZqXgW8XDY+s0BmnQ+ulAEcb9m0B/F+lpC/GzT1cvD5Q8zzgUDg7nrFcdK3Z4JTJR
+L0inhHEUiY9JPsBDzQS0dZgCcYkq7Jn+F51y1IbEx25vRx45jrLuXJdhckN5GWS
Y8+oTm3XwCjCEtXdAqGkFjNhdGJGsScXe7t1TYRSCQe0AbgMB1NcUKeDBL3sEHg8
VbuU54dL4SyQsDXRXJmtSqwkwvqD76pjvuQE/b7D+6uAbUyB6xV6rTV+PDyo9rhQ
TCDyzv2QjKMumlO2ey/Fdm6XVnmZdn88BbEODlUFzT2GXsiqISU/ggM=
-----END CERTIFICATE-----
Generated at Sat Mar 21 21:28:16 2026 by rpki-client