Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB90A8C8553711F1B3093B13CF1D38B0.roa
File: FB90A8C8553711F1B3093B13CF1D38B0.roa (raw, json)
Hash identifier: Yed3b/VKGmwtMexX29/uCi2X4jQ1Uo5x31BNQaFxiZ4=
Subject key identifier: 61:FC:8D:6C:2D:E5:E4:48:A0:DD:78:05:0B:3C:EF:3A:10:48:CA:43
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B777
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB90A8C8553711F1B3093B13CF1D38B0.roa
Signing time: Thu 21 May 2026 17:10:36 +0000
ROA not before: Thu 21 May 2026 17:10:30 +0000
ROA not after: Fri 10 Jul 2026 17:10:30 +0000
asID: 32043
IP address blocks: 156.230.159.0/24 maxlen: 24
156.243.241.0/24 maxlen: 24
156.249.216.0/22 maxlen: 24
156.249.244.0/22 maxlen: 24
156.249.248.0/22 maxlen: 24
156.252.6.0/23 maxlen: 24
156.252.10.0/24 maxlen: 24
156.252.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112503 (0x1b777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 21 17:10:30 2026 GMT
Not After : Jul 10 17:10:30 2026 GMT
Subject: CN=6a0f3c8c-ae15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:66:ae:4c:b9:1c:cf:e3:82:e7:b0:8b:42:5d:
9f:16:12:8b:32:c0:4f:2e:1b:28:16:b0:2e:28:e7:
d4:4e:d5:f0:02:b9:3c:5c:91:8a:8a:1c:94:02:8f:
9a:77:59:a1:b2:47:32:b5:13:38:74:94:e2:6b:07:
d3:86:32:c6:b7:4a:74:68:de:6a:aa:d0:6f:f9:9e:
76:de:04:81:45:c9:c1:1a:ca:23:c1:4b:71:0d:12:
3b:6f:7f:76:45:2c:19:11:04:29:c3:87:31:29:1b:
f7:17:3b:64:6d:b4:ea:0b:11:72:6d:9a:81:d2:74:
15:11:ce:ff:f0:26:32:40:d9:1a:fd:e0:75:9b:fa:
b0:d3:d3:fe:75:8e:19:40:ee:36:79:4f:30:53:6a:
fe:e0:4a:a2:78:88:ad:c0:87:f1:c2:2d:5d:16:34:
f7:c7:bf:de:24:db:94:cc:8e:a4:37:77:f0:5f:32:
7e:e4:1f:e3:9c:d8:36:6c:2c:4a:15:81:16:7f:ad:
8b:d9:30:06:a9:95:83:d1:43:56:31:04:99:07:54:
2f:79:c4:d9:4a:bc:5b:29:4a:9b:cb:e0:11:80:0c:
fd:2d:75:83:db:ba:b1:ae:08:15:1c:9e:9a:46:36:
bb:72:9c:4b:de:21:b8:8d:62:45:ff:0f:c4:71:85:
8c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:FC:8D:6C:2D:E5:E4:48:A0:DD:78:05:0B:3C:EF:3A:10:48:CA:43
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB90A8C8553711F1B3093B13CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.159.0/24
156.243.241.0/24
156.249.216.0/22
156.249.244.0-156.249.251.255
156.252.6.0/23
156.252.10.0/24
156.252.16.0/23
Signature Algorithm: sha256WithRSAEncryption
af:c9:f9:f7:ac:e5:7b:7e:08:7f:82:72:73:ff:0b:50:09:f0:
89:5b:85:67:dc:d8:ea:9f:65:58:c5:8d:af:b4:31:94:2a:48:
54:f5:90:fb:96:63:6a:5a:92:d5:84:35:49:39:a4:14:0c:71:
fe:5c:8d:b6:12:fb:0e:35:e4:07:55:3e:80:6e:56:fd:1f:24:
cf:9a:93:17:0c:2e:35:c6:1e:ca:b2:52:28:2e:f9:79:49:ab:
6f:0e:79:91:2a:e0:d2:20:33:6b:09:1e:9d:7d:d1:9e:61:25:
88:33:07:a3:5d:98:13:01:e3:9e:73:26:aa:cb:57:8a:fe:f5:
04:6b:09:de:68:66:bb:db:ff:0c:f9:79:84:00:e0:10:2d:c3:
11:ff:1c:e9:b1:c7:f3:c3:c0:31:48:79:cb:8d:11:5f:c9:d6:
d8:e1:50:22:06:78:06:13:f0:8a:fa:75:ec:68:f6:34:1a:e8:
0f:01:f0:33:a0:7f:e4:67:bb:0a:b3:4c:b7:76:76:15:7c:76:
cc:6d:04:4a:a7:bb:31:de:76:13:ba:d0:48:f3:04:c7:b5:fe:
6c:53:8f:3b:c6:b6:c9:62:93:2a:b8:8c:08:c4:91:f3:ac:13:
cc:47:91:8d:d9:f8:06:28:d2:8c:09:35:7e:c1:a1:11:8e:c0:
42:75:58:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:12 2026 by rpki-client