Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EF9BD9A578811F18BE675B3CE1D38B0.roa
File: 9EF9BD9A578811F18BE675B3CE1D38B0.roa (raw, json)
Hash identifier: ZTECZEhaNyWPNBo+Yx6QUARItDlS9wMD881tJNEWPdw=
Subject key identifier: 5E:15:94:2F:57:CF:DD:21:82:CE:49:90:88:1D:5F:B0:A0:27:71:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B916
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EF9BD9A578811F18BE675B3CE1D38B0.roa
Signing time: Sun 24 May 2026 15:52:52 +0000
ROA not before: Sun 24 May 2026 15:52:47 +0000
ROA not after: Thu 02 Jul 2026 15:52:47 +0000
asID: 11427
IP address blocks: 156.238.176.0/22 maxlen: 24
156.238.184.0/22 maxlen: 24
156.244.132.0/22 maxlen: 24
156.244.200.0/22 maxlen: 24
156.244.212.0/22 maxlen: 24
156.248.16.0/22 maxlen: 24
156.248.88.0/22 maxlen: 24
156.249.68.0/22 maxlen: 24
156.249.84.0/22 maxlen: 24
156.249.116.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112918 (0x1b916)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 15:52:47 2026 GMT
Not After : Jul 2 15:52:47 2026 GMT
Subject: CN=6a131ed4-86b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c8:2e:7e:ca:07:b1:b6:c8:16:b0:c6:8d:da:
17:89:32:e5:c9:bd:91:b3:17:ed:b2:bc:ab:42:f9:
4f:cf:cb:76:9d:92:75:b5:8b:80:54:13:01:f6:b8:
d4:d0:d2:5c:b9:d7:f3:f0:3a:ed:2f:01:a0:c9:7d:
86:b7:67:bb:4d:42:ed:f9:74:aa:03:06:ae:59:04:
58:4f:f4:a8:17:6f:e2:08:87:3e:9c:5e:d4:65:b0:
92:fd:8c:e4:ca:78:24:f2:c2:b4:e5:e9:81:66:e8:
60:a5:61:07:11:93:98:8e:cd:05:77:53:a8:da:92:
d7:99:08:fe:97:64:00:21:5a:fd:75:64:1f:78:e9:
71:87:f3:90:16:9d:c7:f1:0d:b4:68:96:bd:ed:e8:
e3:b8:e0:d5:28:57:96:85:55:45:42:bd:87:21:fe:
5b:8f:c3:63:95:85:f0:00:07:a8:1e:1d:51:26:cd:
4b:43:6e:ad:d6:c6:9d:97:8f:29:93:38:01:36:c4:
1f:4b:0e:7e:2c:69:3f:1d:ca:0e:18:93:b3:2c:c4:
82:81:58:d5:bd:dc:37:54:b6:32:cf:ba:ca:72:f9:
c2:9d:7e:48:35:92:6f:6c:02:ee:be:e7:7f:99:f1:
dd:bb:a1:d2:a0:fe:96:94:73:2a:19:88:19:5e:ff:
56:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:15:94:2F:57:CF:DD:21:82:CE:49:90:88:1D:5F:B0:A0:27:71:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EF9BD9A578811F18BE675B3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.176.0/22
156.238.184.0/22
156.244.132.0/22
156.244.200.0/22
156.244.212.0/22
156.248.16.0/22
156.248.88.0/22
156.249.68.0/22
156.249.84.0/22
156.249.116.0/22
Signature Algorithm: sha256WithRSAEncryption
81:db:c5:b8:83:a5:9d:cb:0e:cb:33:04:07:68:f5:a4:31:0f:
a8:18:a1:01:db:7c:d7:dc:d1:43:c0:db:6f:1d:f6:d7:6c:30:
41:a7:25:45:c2:03:d9:a4:d7:5f:5d:af:59:e0:32:5c:6d:00:
0a:5f:22:18:2b:da:2c:13:8d:8c:df:e4:f1:a4:a9:d4:54:df:
41:f6:7e:99:1d:0a:a7:e7:75:ae:45:64:8c:bb:9e:b9:ae:a9:
b6:ab:c9:7d:66:6a:ab:ca:e8:3a:82:69:48:b9:ba:cb:8e:6d:
ec:c2:11:ff:4a:7a:73:03:52:eb:0a:4f:85:de:d4:9e:9d:96:
2f:db:60:4a:ad:f0:47:25:28:41:9a:48:9e:b7:e4:9b:72:e3:
23:83:af:2f:c7:b2:20:51:91:80:03:f1:02:c0:e9:83:95:a1:
cb:8e:a2:00:ed:83:b5:26:81:d0:c4:db:19:b6:d2:30:77:88:
8a:b2:47:cb:4e:d9:86:1d:f5:e9:07:7c:06:e6:ba:65:d7:15:
a4:c9:8d:33:11:ca:59:bd:3f:f8:c0:5e:d6:28:35:15:3c:ac:
12:78:c0:97:27:eb:1f:60:10:04:f6:d7:83:a2:14:40:ac:2a:
2c:3e:f5:30:11:67:47:99:25:d8:58:7a:25:7c:f2:98:61:0b:
17:91:18:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:07 2026 by rpki-client