Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A2550B70544011F1BD62C2B0CE1D38B0.roa
File: A2550B70544011F1BD62C2B0CE1D38B0.roa (raw, json)
Hash identifier: RbmERyaokicJ9sDrtPAblNyXRUP/jA6Lww5rnzJVAMc=
Subject key identifier: 60:7A:74:72:7A:CD:8C:51:46:20:38:46:31:BD:46:83:65:E3:2B:B3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B63A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A2550B70544011F1BD62C2B0CE1D38B0.roa
Signing time: Wed 20 May 2026 11:40:01 +0000
ROA not before: Wed 20 May 2026 11:39:56 +0000
ROA not after: Sat 08 Aug 2026 11:39:56 +0000
asID: 149014
IP address blocks: 156.236.96.0/22 maxlen: 24
156.236.108.0/22 maxlen: 24
156.236.112.0/22 maxlen: 24
156.236.116.0/22 maxlen: 24
156.236.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112186 (0x1b63a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 20 11:39:56 2026 GMT
Not After : Aug 8 11:39:56 2026 GMT
Subject: CN=6a0d9d90-ca97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:85:69:bd:e2:76:5d:6e:c8:1b:2d:84:32:6e:
24:47:8d:5c:fe:24:91:32:31:1b:9f:d8:e1:77:80:
50:6b:17:bb:17:28:d4:cf:80:53:f6:50:cc:ae:29:
9d:bd:64:bc:db:a8:13:cc:9f:87:46:d9:27:30:8f:
c1:48:24:e4:9b:fb:22:fe:98:24:25:40:37:b0:a1:
ce:6d:c4:25:d6:60:5e:3d:77:cd:11:83:ad:df:a9:
16:a6:3d:5c:56:ac:b5:e0:e6:ab:29:4b:be:8c:61:
f7:1e:60:18:b2:c8:b6:34:19:e7:a3:91:fe:e7:47:
da:4f:97:ef:a0:ad:e0:1a:aa:34:da:60:eb:57:c8:
7c:70:14:5c:59:ec:cf:b1:f0:48:e9:46:ff:fe:08:
90:9c:c5:55:82:44:0a:0b:22:7f:17:f2:f2:1d:3e:
a0:80:a8:9d:5b:d3:9f:a4:18:2a:8f:c2:d7:ad:d6:
d0:2f:37:4a:11:80:db:38:b0:1d:f2:e1:12:aa:ed:
e5:67:09:ac:d3:07:59:67:ea:2e:ca:74:55:5a:08:
89:1d:81:dc:ac:34:a5:2f:8e:ef:6e:32:eb:6b:a2:
1d:c4:4d:ff:e7:dc:41:52:56:92:f9:0a:58:f4:af:
bf:c3:77:c4:58:c7:48:29:c4:45:30:45:1c:7b:8a:
c7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7A:74:72:7A:CD:8C:51:46:20:38:46:31:BD:46:83:65:E3:2B:B3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A2550B70544011F1BD62C2B0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.96.0/22
156.236.108.0-156.236.119.255
156.236.124.0/22
Signature Algorithm: sha256WithRSAEncryption
41:8c:00:57:b5:db:4c:a2:85:9b:db:01:1f:4d:50:71:e6:c3:
86:68:82:42:cb:3d:0a:66:4f:32:cc:9b:82:99:7a:90:a0:87:
a8:b1:d5:98:8f:4a:ef:79:00:62:6e:63:29:f5:c2:34:3c:28:
be:19:28:a0:69:41:86:17:a6:92:a9:9c:fc:a1:59:a5:c3:a0:
ad:32:56:43:c3:d1:63:72:8b:71:22:8a:4c:5e:a8:e5:cc:dd:
fb:79:ce:ff:99:c7:ed:7e:2f:20:84:74:21:cf:a6:99:b3:4e:
60:be:4e:65:d1:09:1a:d4:98:d9:6c:31:31:fa:7a:d8:3b:d6:
a4:bd:a7:d5:3b:6e:d1:ef:ae:a6:db:93:11:d1:4b:b7:5d:58:
4e:2e:38:7b:d9:f4:fd:a1:04:9f:b0:e2:b2:43:41:20:92:88:
52:4f:6e:6a:d9:2e:7f:54:16:5f:3a:ad:11:ca:3c:2b:3f:59:
3c:8d:23:e0:4b:b9:0c:a1:f5:df:a5:20:8c:8b:79:bb:df:57:
34:ab:c7:0a:be:4c:3d:85:bc:c3:10:1b:5c:63:1f:10:6c:94:
75:b8:5c:09:bb:eb:c4:00:12:b4:8a:aa:0a:45:1b:f0:b7:35:
dd:76:00:4e:4d:ba:74:19:98:6a:29:52:7f:dd:3a:48:b1:f6:
ec:b4:36:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:23 2026 by rpki-client