Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B29D0D78688311F1BF1673EDCE1D38B0.roa
File: B29D0D78688311F1BF1673EDCE1D38B0.roa (raw, json)
Hash identifier: VqCv5JS6uPE87Nsc9QcgNmXv9WOHTKu2K9ne5iBeXBY=
Subject key identifier: EB:30:46:3E:7F:73:5A:CB:1C:AE:6D:9B:98:C9:9A:3D:CA:73:D0:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BD13
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B29D0D78688311F1BF1673EDCE1D38B0.roa
Signing time: Mon 15 Jun 2026 06:30:27 +0000
ROA not before: Mon 15 Jun 2026 06:30:21 +0000
ROA not after: Fri 04 Sep 2026 06:30:21 +0000
asID: 142403
IP address blocks: 156.236.66.0/24 maxlen: 24
156.236.70.0/24 maxlen: 24
156.236.71.0/24 maxlen: 24
156.236.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113939 (0x1bd13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 15 06:30:21 2026 GMT
Not After : Sep 4 06:30:21 2026 GMT
Subject: CN=6a2f9c03-304a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a8:4f:b6:0b:c9:ea:83:f4:6c:0d:01:5e:19:
74:68:0a:e2:c5:47:28:9e:db:b4:b4:1d:40:8e:72:
3c:92:9d:ae:74:ee:63:3b:20:64:fe:aa:9e:a5:08:
89:c1:2b:72:05:0d:ed:fd:c5:8e:e9:89:79:06:9d:
f4:22:78:ae:70:c7:8d:b2:e6:2f:1c:07:7d:90:ad:
f1:4d:c2:c7:4c:69:db:cd:b6:72:d0:aa:cc:43:46:
57:b4:67:f3:7e:1a:f6:d7:ed:fa:27:22:88:78:f0:
6b:0c:69:11:d4:5c:95:fb:e5:7d:f5:c5:e4:fe:00:
39:19:ed:ef:f2:b5:3b:a6:d7:33:06:9b:a6:59:b2:
29:b5:c2:fd:76:74:48:36:b3:f0:c7:4b:56:df:bf:
b6:79:36:c7:8b:0c:0b:fe:97:a7:4b:40:1a:d2:a0:
19:0e:7b:a1:23:5e:8f:85:f3:31:f0:d3:61:70:79:
d5:d7:64:db:4c:e6:28:41:7a:5d:9f:f3:7a:35:ef:
e5:0a:5c:4a:61:03:a8:69:cc:b0:fe:7d:32:71:77:
54:66:45:76:68:0e:76:e6:3e:1b:13:4d:d7:ea:d9:
4f:ab:77:da:0e:44:57:a6:e7:39:a4:57:a6:ac:df:
89:db:d4:a3:1d:85:a4:ea:64:81:84:de:c8:5c:ff:
72:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:30:46:3E:7F:73:5A:CB:1C:AE:6D:9B:98:C9:9A:3D:CA:73:D0:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B29D0D78688311F1BF1673EDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.66.0/24
156.236.70.0-156.236.72.255
Signature Algorithm: sha256WithRSAEncryption
b0:90:aa:66:c0:78:57:76:2e:b6:6b:1d:92:6c:2c:aa:bd:d3:
0c:83:27:2d:12:0b:2b:fd:e1:51:10:ef:36:2a:18:29:b3:8f:
cb:e3:7c:79:ef:1a:c1:ac:c2:f4:96:d5:a4:34:00:88:d6:f9:
33:b4:81:e4:94:e8:0b:1f:b4:fc:a7:37:2c:9d:ab:a8:fa:26:
ef:1b:4c:67:03:a9:e0:2e:8d:53:83:79:1e:e6:a0:7c:11:96:
aa:97:cc:39:73:0f:9f:6d:84:d4:be:76:84:6d:2e:a6:1f:c9:
e4:d4:22:65:e8:21:de:e0:6e:53:b2:5b:b9:7c:12:ef:af:b3:
1b:ab:f4:44:28:d9:ba:7e:64:f1:bf:5e:1a:a9:ba:be:0c:40:
8d:8c:7f:89:50:57:02:09:1a:a6:1c:f5:98:c8:82:24:6c:cd:
8a:e4:bf:3e:2a:a4:36:c9:05:83:f8:7e:fb:8c:a0:ee:77:81:
fd:f9:2b:e7:75:34:66:fd:f3:6d:26:03:95:3a:2a:bb:e6:8f:
a5:ce:da:07:8e:53:38:65:a1:68:51:86:a3:96:a8:26:07:a0:
a8:06:42:2f:cb:56:52:a1:6a:b1:f7:39:b4:68:fa:52:0d:ea:
b4:92:b4:7a:fd:35:5c:79:40:cf:a4:9a:94:45:ff:44:8d:58:
8a:be:b5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 00:03:48 2026 by rpki-client