Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5A881EC55F511F19FC8341DCF1D38B0.roa
File: A5A881EC55F511F19FC8341DCF1D38B0.roa (raw, json)
Hash identifier: gTu4y+Py/7yf584MiJtrP2Zov/ivVXwECHNRdRsFxPU=
Subject key identifier: 9B:E3:99:B9:E6:0B:28:B5:44:D1:86:7E:47:2B:5D:8D:3D:0A:DC:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B820
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5A881EC55F511F19FC8341DCF1D38B0.roa
Signing time: Fri 22 May 2026 15:48:16 +0000
ROA not before: Fri 22 May 2026 15:48:11 +0000
ROA not after: Fri 26 Jun 2026 15:48:11 +0000
asID: 63139
IP address blocks: 156.225.115.0/24 maxlen: 24
156.225.120.0/24 maxlen: 24
156.225.121.0/24 maxlen: 24
156.225.122.0/24 maxlen: 24
156.225.123.0/24 maxlen: 24
156.225.124.0/24 maxlen: 24
156.225.125.0/24 maxlen: 24
156.225.126.0/24 maxlen: 24
156.225.127.0/24 maxlen: 24
156.227.9.0/24 maxlen: 24
156.227.14.0/24 maxlen: 24
156.227.15.0/24 maxlen: 24
156.227.192.0/24 maxlen: 24
156.227.193.0/24 maxlen: 24
156.227.194.0/23 maxlen: 24
156.227.196.0/24 maxlen: 24
156.227.197.0/24 maxlen: 24
156.227.198.0/24 maxlen: 24
156.229.51.0/24 maxlen: 24
156.229.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112672 (0x1b820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 22 15:48:11 2026 GMT
Not After : Jun 26 15:48:11 2026 GMT
Subject: CN=6a107ac0-ef9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:74:1a:b2:73:d8:c8:d9:57:0a:12:e6:9b:2e:
e1:67:8c:4a:d5:17:d4:65:4c:94:2c:af:31:35:f3:
f6:22:11:51:2e:c9:ed:1a:51:27:9a:cf:b7:74:2b:
05:0a:50:b5:10:a5:15:74:a1:b1:40:4e:2f:b9:78:
a2:90:bb:35:1c:3b:0c:54:0d:73:d8:93:c6:1c:cf:
00:0a:1c:2d:b6:de:a4:28:f4:86:b6:b0:13:3d:5d:
e5:28:d1:3b:51:6f:cb:90:cb:53:ee:2d:ca:0a:28:
76:ab:12:14:5f:58:52:c2:e4:56:9e:24:da:ee:d4:
17:4b:57:30:4a:ff:df:0d:70:ef:54:1d:66:cc:09:
fa:89:6d:64:4d:b0:d1:20:f2:eb:67:2d:cc:cb:4a:
5b:cb:2d:ee:a9:1d:0a:d6:7a:75:cd:83:67:1d:a2:
1f:32:d8:88:74:73:42:15:80:d3:f8:7a:3a:20:83:
2d:09:bf:d1:f0:90:c4:64:87:7f:cf:27:7b:15:f8:
64:9f:d8:f8:6a:af:44:de:f7:2f:c7:e7:4a:e6:14:
80:ab:8e:98:f4:0b:d1:33:9e:ab:c6:cd:ac:24:6e:
a7:f5:9c:7c:59:66:28:b6:06:cc:c9:0b:c8:66:68:
8a:e5:15:70:56:14:6a:99:bc:58:c0:3d:ed:2b:45:
d6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E3:99:B9:E6:0B:28:B5:44:D1:86:7E:47:2B:5D:8D:3D:0A:DC:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5A881EC55F511F19FC8341DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.115.0/24
156.225.120.0/21
156.227.9.0/24
156.227.14.0/23
156.227.192.0-156.227.198.255
156.229.51.0/24
156.229.65.0/24
Signature Algorithm: sha256WithRSAEncryption
94:1f:7b:ee:d7:0b:68:f3:54:42:b0:b0:a9:c0:43:8b:87:23:
0a:9e:28:8f:8c:c6:b2:86:54:8c:60:8e:15:35:23:42:e8:a9:
8f:76:67:54:9b:fb:95:67:3a:ae:73:ac:36:62:3a:76:8e:93:
b6:ad:d2:1b:ec:40:b7:d2:41:e0:a0:6a:89:08:f3:89:5c:9d:
52:5d:76:e6:db:f6:ba:57:66:32:b0:4d:72:91:cd:73:ba:e3:
2c:b0:81:27:91:0d:50:62:96:8a:94:c2:f5:00:f3:13:93:c8:
dd:3a:59:4c:01:1d:7d:dc:c5:56:7f:ed:d2:27:6f:af:17:53:
40:e1:79:1e:09:a6:0f:c4:5e:4d:c5:f7:a9:2e:0b:a4:62:15:
65:7e:43:67:c8:0f:b7:72:6e:8c:93:fd:2f:be:2e:5b:65:0c:
d5:3e:50:5a:93:9e:84:b0:5c:63:94:ed:c1:f9:6a:73:73:6f:
93:1a:58:c9:1f:57:fc:69:18:b8:a6:46:cb:c2:38:76:ba:d1:
07:ef:f2:1d:06:ed:05:86:7e:df:52:cf:32:a1:b7:ea:b5:0b:
69:bd:fa:f3:5a:77:ca:97:1a:db:ab:27:3f:cd:24:eb:08:ab:
e8:b8:8b:15:d6:0e:7a:ba:97:db:41:9b:a1:a5:4f:d8:31:22:
13:bd:23:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:09 2026 by rpki-client