Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDE894B4455F11F19CBDF4B2CE1D38B0.roa
File: BDE894B4455F11F19CBDF4B2CE1D38B0.roa (raw, json)
Hash identifier: CvsZ9MVD3mJHC4dkXUjGgtO2ZQCoFFnbNaNb0eHCNHc=
Subject key identifier: 6E:7A:48:17:9F:F3:02:35:18:83:0E:4D:56:9D:A1:0B:82:78:E3:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B0A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDE894B4455F11F19CBDF4B2CE1D38B0.roa
Signing time: Fri 01 May 2026 13:14:54 +0000
ROA not before: Fri 01 May 2026 13:14:49 +0000
ROA not after: Tue 02 Jun 2026 13:14:49 +0000
asID: 140869
IP address blocks: 156.225.80.0/24 maxlen: 24
156.225.81.0/24 maxlen: 24
156.225.82.0/24 maxlen: 24
156.225.83.0/24 maxlen: 24
156.225.84.0/24 maxlen: 24
156.225.85.0/24 maxlen: 24
156.225.86.0/24 maxlen: 24
156.225.87.0/24 maxlen: 24
156.225.88.0/24 maxlen: 24
156.225.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110758 (0x1b0a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 13:14:49 2026 GMT
Not After : Jun 2 13:14:49 2026 GMT
Subject: CN=69f4a74e-2bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:16:e1:d0:6c:8c:1a:4b:38:fc:f9:46:d3:7b:
87:1f:e8:e8:07:ca:c4:a0:45:b4:6e:a2:a7:8a:69:
9c:01:69:88:ca:c8:d6:0a:e8:2e:82:cd:57:0b:dc:
a9:2d:29:37:66:24:26:d3:51:60:db:79:32:a7:3c:
eb:72:7c:c5:17:db:7b:e2:3d:3d:76:df:8a:ee:44:
78:69:34:69:3a:2c:12:e1:1f:bb:3a:0c:f7:ec:27:
de:4d:62:68:d0:57:de:a6:80:4c:29:92:de:39:62:
bc:f6:bc:94:eb:df:89:33:9d:e9:20:74:1d:97:dd:
49:14:49:10:df:3a:4f:38:fd:aa:19:4d:66:cc:45:
e2:18:06:7f:10:c7:65:3c:13:72:f2:2e:f2:91:0d:
37:8b:d1:2e:d7:b0:0a:99:09:0c:34:bf:f6:17:23:
ba:3b:70:b0:33:d7:a2:8c:49:b6:20:de:75:05:79:
d2:57:31:21:08:e9:22:5e:0d:d7:df:08:94:0a:1b:
12:61:54:a4:8b:80:c9:17:66:b3:94:7d:9b:5c:9a:
b3:d7:15:28:c4:6f:73:1e:b9:51:12:97:f3:84:d6:
e5:b0:d9:72:cf:b9:3a:c5:08:c2:f3:ec:14:53:36:
c6:6c:c7:39:0c:b9:89:52:8b:7d:9f:3d:c7:66:ba:
e1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7A:48:17:9F:F3:02:35:18:83:0E:4D:56:9D:A1:0B:82:78:E3:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDE894B4455F11F19CBDF4B2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.80.0-156.225.89.255
Signature Algorithm: sha256WithRSAEncryption
ae:a5:27:9b:51:47:69:ba:78:f0:1d:25:97:7c:3d:fe:17:74:
f7:29:0f:d6:32:4d:fc:68:e9:87:cd:d0:60:49:2e:65:ba:9f:
df:b8:82:b2:d8:6d:72:37:30:24:09:a6:7b:b6:62:2e:d0:83:
a6:60:e7:8f:a1:b5:73:62:60:32:9c:b0:8d:7b:9f:4b:5f:17:
3c:1a:e6:8a:b2:29:9b:ac:c5:b6:cd:40:da:a5:e5:0c:90:97:
30:40:09:71:eb:ba:52:eb:45:f4:b7:b7:2b:24:71:c8:8b:ca:
0d:37:4d:02:99:5b:12:95:ed:b7:cf:af:17:30:22:ea:21:db:
b4:d2:0a:b3:6e:c3:79:28:f7:07:29:f3:85:32:d6:fc:e4:9c:
07:02:d5:69:36:a0:61:cc:8b:fb:be:b0:64:c8:bc:06:9c:0a:
97:f4:06:6b:e0:f7:60:fc:ad:06:68:a5:7b:77:f2:07:c0:bb:
d4:87:27:ac:fd:46:e1:38:45:97:f6:3a:61:59:81:3a:da:60:
39:69:4f:20:3f:ad:43:42:2a:ae:35:6a:a5:12:44:eb:74:79:
b9:16:36:ae:f6:5e:ac:bc:1c:14:41:67:44:87:53:80:61:4e:
c5:8d:5e:de:8b:29:0a:93:78:b3:2a:0c:d1:48:ab:45:3f:9c:
a1:32:2a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 12:31:31 2026 by rpki-client