Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CBC9B79A534F11F19F208CF8CE1D38B0.roa
File: CBC9B79A534F11F19F208CF8CE1D38B0.roa (raw, json)
Hash identifier: hiQ6ut/ja/lP+06IsKC051R7Cz96l8s+wpfUjm9wgPI=
Subject key identifier: ED:CB:E8:E6:D0:3D:6A:27:B8:DC:6B:7D:AA:F2:67:BE:4F:52:16:DF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B598
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CBC9B79A534F11F19F208CF8CE1D38B0.roa
Signing time: Tue 19 May 2026 06:56:03 +0000
ROA not before: Tue 19 May 2026 06:55:45 +0000
ROA not after: Wed 19 Aug 2026 06:55:45 +0000
asID: 55020
IP address blocks: 156.224.16.0/23 maxlen: 24
156.224.18.0/23 maxlen: 24
156.224.20.0/22 maxlen: 24
156.224.24.0/22 maxlen: 24
156.224.28.0/23 maxlen: 24
156.224.30.0/23 maxlen: 24
156.224.63.0/24 maxlen: 24
156.235.96.0/21 maxlen: 24
156.235.104.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112024 (0x1b598)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 19 06:55:45 2026 GMT
Not After : Aug 19 06:55:45 2026 GMT
Subject: CN=6a0c0982-6eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:52:ab:5c:f6:c4:35:a1:59:1c:60:47:2f:b4:
f4:cb:5f:5c:e3:e9:22:68:bf:45:ab:87:f8:2c:c3:
c4:6e:fb:8b:e6:dc:ea:22:b1:a1:32:b7:1c:de:58:
98:9d:2f:07:c4:e5:c0:bb:09:e8:ee:2e:e5:d7:6a:
5d:8b:fb:fc:de:da:db:15:32:ec:fd:b3:e5:6c:a1:
3b:d0:76:06:de:37:75:9b:46:a0:44:b6:82:fc:ab:
e4:fc:24:6a:61:dd:cd:2d:94:61:61:1f:60:51:85:
22:cd:bb:c2:e6:bd:f5:40:3c:cf:ba:e9:ff:aa:b3:
3f:3b:33:2f:b5:e2:55:4f:4c:81:e8:c8:d9:91:75:
94:7b:da:73:ea:87:99:40:46:b6:28:47:89:c0:c9:
0c:9b:e6:ca:7a:3e:82:b8:34:25:c9:ca:56:d6:6e:
3a:a1:f9:c7:67:f4:8d:e3:2c:34:23:2c:44:1a:68:
eb:d6:28:f9:93:07:44:45:51:d1:bf:be:fb:8d:a6:
3f:f8:ea:15:b9:a8:b5:66:1b:c5:d6:ea:d5:7a:5c:
9e:38:f8:da:31:f8:8d:eb:4f:cf:dd:23:37:37:bc:
8d:7b:ea:5a:98:25:76:cf:a4:2f:45:25:57:15:1d:
9a:51:6c:bb:ba:0c:27:28:8e:af:10:f8:9d:d8:ab:
a5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:CB:E8:E6:D0:3D:6A:27:B8:DC:6B:7D:AA:F2:67:BE:4F:52:16:DF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CBC9B79A534F11F19F208CF8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.16.0/20
156.224.63.0/24
156.235.96.0/20
Signature Algorithm: sha256WithRSAEncryption
41:31:af:3a:e7:1b:f4:e9:6d:cb:33:ee:3d:42:99:f0:8f:4a:
ed:7a:5d:4c:21:c1:a0:35:99:ea:a8:0d:20:0c:2a:df:e1:16:
80:b6:73:be:ce:08:5c:50:29:b4:74:68:73:74:09:29:92:27:
84:70:8e:29:59:4b:60:67:4e:7a:c4:d0:b6:ed:e8:e5:97:76:
54:3a:7a:8e:dc:5d:d8:e6:f8:8a:15:9e:3f:48:91:e2:92:c6:
02:8b:53:66:34:da:87:58:23:dd:0d:23:a2:41:11:61:7b:93:
87:9f:d8:d0:91:80:cd:ef:5f:76:3f:90:bc:69:34:c2:03:4f:
ec:78:e1:0a:37:31:57:19:ea:b5:ea:12:c0:1a:d2:a0:fb:f9:
14:56:4e:18:d7:b1:ca:2d:54:e2:0c:4f:b4:a7:00:11:a7:2d:
31:6f:b5:1b:54:b0:b1:53:63:aa:d0:6f:1d:72:56:82:8e:e3:
76:3d:f3:8d:1a:ef:5c:0a:48:bd:c9:55:91:fe:6e:de:ed:6b:
09:c6:da:70:4f:e3:10:e7:12:25:e2:d7:3b:41:15:ec:81:ce:
30:38:46:e0:b9:23:09:c5:c8:93:6b:aa:6d:59:2d:3e:e2:94:
2b:23:e2:1c:37:69:13:7c:43:a5:16:b9:6f:49:c4:97:ea:fa:
ce:42:17:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:06:57 2026 by rpki-client