Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D2E09400581711F1A15F78A3CE1D38B0.roa
File: D2E09400581711F1A15F78A3CE1D38B0.roa (raw, json)
Hash identifier: ndCa+yr1v1uQ/Ej0bZoWG0xEqUvVdePnIbhqMecKQiU=
Subject key identifier: 02:60:B3:B2:EA:53:B6:B1:37:2E:6C:76:52:F8:A3:6F:3B:85:B3:BB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B970
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D2E09400581711F1A15F78A3CE1D38B0.roa
Signing time: Mon 25 May 2026 08:57:57 +0000
ROA not before: Mon 25 May 2026 08:57:52 +0000
ROA not after: Tue 09 Jun 2026 08:57:52 +0000
asID: 154177
IP address blocks: 156.244.13.0/24 maxlen: 24
156.244.14.0/24 maxlen: 24
156.244.15.0/24 maxlen: 24
156.244.16.0/24 maxlen: 24
156.244.17.0/24 maxlen: 24
156.244.19.0/24 maxlen: 24
156.244.20.0/24 maxlen: 24
156.244.23.0/24 maxlen: 24
156.244.24.0/24 maxlen: 24
156.244.26.0/24 maxlen: 24
156.244.31.0/24 maxlen: 24
156.244.44.0/24 maxlen: 24
156.244.45.0/24 maxlen: 24
156.244.46.0/24 maxlen: 24
156.244.47.0/24 maxlen: 24
156.244.48.0/24 maxlen: 24
156.244.53.0/24 maxlen: 24
156.244.56.0/24 maxlen: 24
156.244.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113008 (0x1b970)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 25 08:57:52 2026 GMT
Not After : Jun 9 08:57:52 2026 GMT
Subject: CN=6a140f15-c7ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:97:2c:44:67:34:e7:40:08:a8:0b:33:dd:7e:
b6:48:e9:d7:f9:70:25:c3:ce:93:60:d1:7d:2b:e2:
05:d3:c3:c8:64:7c:88:84:54:7f:24:56:79:a8:46:
0d:16:fc:45:e7:fd:8e:50:e3:9f:37:62:fd:02:93:
14:64:1a:cc:52:5e:bb:67:76:fb:a8:49:94:c0:dd:
29:e9:40:6d:38:a7:b7:a0:bd:2c:5a:7d:d4:6f:3b:
75:d5:39:56:04:24:31:d4:2b:e5:aa:e9:6d:ed:3b:
47:bb:28:a8:85:7c:78:0e:28:68:9e:ec:09:d0:8d:
c5:ba:de:f7:08:d2:35:72:ba:e0:00:d9:49:d4:71:
d3:fd:56:c2:a2:1b:1d:cb:fd:d5:0b:58:01:83:7b:
54:a6:23:8a:22:d1:f2:4d:39:4d:4a:0b:0c:73:6e:
6f:5a:ee:3e:63:c4:60:5e:15:bd:84:f6:7d:8b:da:
0c:69:fb:3a:05:09:7a:28:f9:f2:a4:a5:02:9e:66:
e6:0f:89:63:d4:8e:61:e2:2f:a5:e6:e1:44:8d:c7:
7c:ee:cb:b4:6c:d8:d5:47:02:6d:b1:3b:49:14:b5:
40:64:c6:26:8f:70:52:fe:d7:4d:2e:be:fe:a3:2d:
48:82:b5:e9:a2:2d:d3:71:21:55:cd:79:fa:98:0d:
53:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:60:B3:B2:EA:53:B6:B1:37:2E:6C:76:52:F8:A3:6F:3B:85:B3:BB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D2E09400581711F1A15F78A3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.13.0-156.244.17.255
156.244.19.0-156.244.20.255
156.244.23.0-156.244.24.255
156.244.26.0/24
156.244.31.0/24
156.244.44.0-156.244.48.255
156.244.53.0/24
156.244.56.0/23
Signature Algorithm: sha256WithRSAEncryption
82:4f:bc:a5:e2:aa:a5:19:9c:c9:bc:bd:6b:4f:a8:5c:e9:47:
23:7f:af:a9:9b:49:9c:57:df:75:d7:cc:e0:e7:ec:12:cd:87:
6b:07:5f:a1:50:9d:38:53:fb:c8:3b:3e:e4:bd:1e:cd:32:bf:
4f:de:68:f1:0a:34:fc:3c:35:ee:54:16:2f:f8:c0:e6:4f:f2:
c5:62:c5:c0:22:1b:af:ee:bf:ce:16:57:d7:d9:58:ff:34:8f:
67:fa:c3:98:68:e9:d3:13:6d:92:02:04:51:4c:ac:42:6f:ea:
97:57:9d:e6:59:83:cc:12:c1:dc:b2:fb:20:82:d0:8a:43:6b:
a7:bf:22:ef:96:d6:db:d3:b1:38:df:67:9a:f4:23:9e:bd:d9:
39:1d:59:db:59:b6:88:3d:7f:e8:fd:3d:e5:f3:d5:bf:92:8b:
2a:70:6b:a1:25:2c:1c:62:3e:97:78:4d:e6:22:42:68:ef:fd:
a4:8f:cb:0e:47:f3:29:81:78:ff:63:f0:89:d3:41:3b:c8:23:
bf:80:4d:17:28:3e:e2:be:e1:d5:81:78:1f:65:34:84:49:30:
9f:6b:b5:24:13:11:f7:bb:a9:d4:f7:26:3b:9c:dd:32:4f:89:
cc:69:98:f5:0e:6b:73:44:a6:26:61:2e:c1:82:82:eb:c1:34:
11:84:75:52
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:37 2026 by rpki-client