Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D10A1C02506811F1A3A014CFCE1D38B0.roa
File: D10A1C02506811F1A3A014CFCE1D38B0.roa (raw, json)
Hash identifier: MHNkYO6rzEyvQ/cx06SrCqOQEP95AP6qCiVmUQ0Kpx0=
Subject key identifier: 67:A6:38:24:F6:DC:1B:3E:60:6F:BB:E2:6D:9B:F2:29:ED:55:D3:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B4AE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D10A1C02506811F1A3A014CFCE1D38B0.roa
Signing time: Fri 15 May 2026 14:17:34 +0000
ROA not before: Fri 15 May 2026 14:17:30 +0000
ROA not after: Sat 13 Jun 2026 14:17:30 +0000
asID: 17497
IP address blocks: 156.245.8.0/22 maxlen: 24
156.245.8.0/24 maxlen: 24
156.245.9.0/24 maxlen: 24
156.245.10.0/24 maxlen: 24
156.245.11.0/24 maxlen: 24
156.245.176.0/21 maxlen: 24
156.245.176.0/24 maxlen: 24
156.245.177.0/24 maxlen: 24
156.245.178.0/24 maxlen: 24
156.245.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111790 (0x1b4ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 14:17:30 2026 GMT
Not After : Jun 13 14:17:30 2026 GMT
Subject: CN=6a072afe-e6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9d:ec:1b:d9:dc:7a:6e:e5:73:d0:cf:27:46:
f5:68:0a:82:fd:28:19:2c:ff:56:ee:e1:01:81:27:
35:7e:1f:de:95:39:a1:95:58:1e:3f:5b:80:13:aa:
1c:dd:45:7e:62:ab:6c:00:6a:02:bb:18:63:65:58:
a8:4f:81:3d:fe:93:14:37:84:40:a0:ac:90:8a:3b:
fc:b8:16:53:39:e5:9b:89:62:4b:54:b4:51:c8:c8:
e0:8d:73:d5:1b:34:0b:94:f0:9e:0a:fc:6d:ac:9a:
22:44:7d:36:92:fe:3d:06:d5:8f:5e:31:82:85:4d:
a8:19:32:28:8b:8f:e3:89:3c:56:72:93:56:43:02:
c4:c1:74:8b:82:9a:3c:b5:ea:7d:83:49:30:31:b4:
24:a1:1f:f9:ea:dd:75:27:83:db:2e:b2:2f:1e:d1:
84:8e:1c:f9:51:85:f6:48:1d:8a:10:f0:da:b6:07:
28:17:1b:42:5d:f0:4c:7e:67:ba:86:3c:c4:72:71:
1c:83:4f:f0:ff:14:4f:a8:29:ed:2d:c2:8d:8c:42:
03:e0:89:c7:59:80:74:c7:3e:11:28:26:a8:91:e3:
73:a8:d6:26:52:62:ed:c5:07:e1:59:be:c0:0d:18:
6a:c8:33:46:e3:e6:b8:33:c5:2e:2d:16:9b:f7:ee:
1f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A6:38:24:F6:DC:1B:3E:60:6F:BB:E2:6D:9B:F2:29:ED:55:D3:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D10A1C02506811F1A3A014CFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.8.0/22
156.245.176.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:1d:c1:a9:9f:16:b6:d0:c3:e1:5d:ec:10:2b:ed:d7:0e:c0:
55:14:92:bc:6f:4c:bc:f9:ce:01:b7:20:70:dd:a1:f0:0e:5c:
12:43:c3:d0:2d:cb:da:4e:79:ee:62:ff:43:0c:58:2d:92:81:
bf:e5:da:77:46:99:45:c7:ff:0b:43:33:5f:78:76:e8:50:29:
a9:7e:f4:66:fe:7f:db:ab:8a:d3:de:4b:d3:27:3b:b0:1b:bc:
fd:21:9a:7e:3c:5f:da:ff:c2:1c:33:8c:d6:f4:b2:43:50:d6:
f7:6b:db:f7:83:05:7e:fc:34:74:29:10:81:47:42:c4:42:e8:
27:55:64:bc:76:a0:e5:d1:2c:fc:01:8d:bf:ef:62:a9:52:d4:
e0:5d:24:ad:a8:b8:59:36:0b:58:61:74:f3:85:3e:c8:2a:d4:
23:04:2c:b9:1c:7d:24:7c:e6:1a:3b:bc:59:37:18:ed:4a:2d:
50:d3:a8:20:bc:89:2a:34:88:a7:ef:3c:75:ac:94:eb:90:2a:
bc:0a:20:fb:35:69:4c:b5:19:e4:57:06:cb:46:aa:1a:15:5e:
a4:05:cd:84:08:40:5d:51:c9:9e:a8:cb:e2:bb:98:1c:a2:bf:
0a:45:8f:ce:d9:38:a6:4c:e9:1d:45:dd:83:3c:4a:2e:d6:87:
34:a5:9b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:26 2026 by rpki-client