Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2284D872058411F19BF3767DDAE4EC9C.roa
File: 2284D872058411F19BF3767DDAE4EC9C.roa (raw, json)
Hash identifier: g8FNVxTlr/FvH9V/Ecg2PPeYSzSFJdssQI764+1pGkg=
Subject key identifier: D0:2D:33:D4:1C:F9:D8:49:99:0B:5D:9C:08:61:D3:1B:74:41:1A:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019C5B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2284D872058411F19BF3767DDAE4EC9C.roa
Signing time: Mon 09 Feb 2026 06:54:10 +0000
ROA not before: Mon 09 Feb 2026 06:54:05 +0000
ROA not after: Tue 10 Mar 2026 06:54:05 +0000
asID: 137899
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105563 (0x19c5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 9 06:54:05 2026 GMT
Not After : Mar 10 06:54:05 2026 GMT
Subject: CN=69898492-8e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:57:46:ef:0a:aa:54:08:57:f8:b7:8c:82:a6:
e8:10:4a:12:04:fc:c7:24:cb:73:f2:35:ef:f2:66:
7c:43:ce:63:f5:10:fa:3f:64:2b:d8:3f:b0:52:2c:
11:4e:f0:b0:62:59:20:1e:d0:4b:c9:bf:ce:d4:89:
1d:05:ec:f7:b7:86:34:55:3a:ac:17:14:dc:c4:20:
74:af:d5:ad:7c:c2:75:87:56:b9:90:8a:b1:84:92:
07:11:35:ec:e0:8c:ee:5c:23:9f:21:4c:ce:7b:3d:
e5:a4:2f:17:1e:af:90:d7:78:51:5c:ff:87:a2:4e:
9e:4a:e4:79:19:46:6d:c6:ba:c9:e6:c3:9a:0d:04:
66:0c:9d:30:54:d4:e0:c9:7c:dc:77:40:be:39:33:
0e:7b:51:4b:22:9a:43:d0:65:fd:d1:68:7c:ef:5c:
38:e0:68:26:c9:f2:87:73:09:21:a8:aa:9c:0e:9f:
59:b3:13:09:d5:8a:a3:e8:c9:36:21:cf:6a:85:7d:
bb:f7:c5:aa:64:a0:94:8d:c8:8a:a5:f7:b8:28:4f:
59:f6:89:ea:da:63:11:97:ec:40:e2:67:5a:02:d0:
a8:19:67:d6:6b:35:e5:26:7c:a1:83:20:e6:60:14:
57:1d:71:69:20:9b:eb:40:2f:90:b8:48:e7:e8:79:
a6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2D:33:D4:1C:F9:D8:49:99:0B:5D:9C:08:61:D3:1B:74:41:1A:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2284D872058411F19BF3767DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
78:14:6e:50:6e:68:fb:87:c1:fe:83:ea:a5:ea:11:c6:34:9a:
25:c5:69:d3:9c:0b:55:56:e9:a3:f5:8b:0e:2e:f7:a4:5a:e4:
a4:d0:88:d9:dd:7b:6f:46:72:16:e1:ab:f2:60:7a:63:ce:79:
7e:22:a3:95:d5:67:d0:b9:b2:7f:78:f9:6f:0c:75:e3:04:cf:
97:d4:32:1e:ef:43:22:7d:fa:b6:8d:32:09:35:4d:2b:9b:ba:
48:fe:35:c8:78:91:a4:56:d7:91:24:5a:a1:2d:8d:02:a4:48:
4f:92:d4:32:12:17:8f:38:bd:1e:9c:4e:fa:5e:67:49:40:ea:
6f:39:15:11:e7:a4:02:fe:6f:ce:94:50:15:5b:d4:5d:2e:54:
82:1c:49:9e:36:a5:b8:c6:ea:92:5f:de:e5:b1:89:94:01:6c:
c4:bd:7c:94:df:9b:24:54:70:3b:c6:9b:6b:f9:66:bd:60:46:
e2:68:63:d4:1e:0d:f7:b0:93:1d:db:c9:0a:ef:23:c6:10:31:
13:1c:ee:89:99:e9:b8:0e:f8:00:e4:dd:90:bd:cc:f7:15:a7:
9e:e1:d8:d5:5b:2a:6a:f7:cb:1a:80:4d:0f:49:42:2c:e8:00:
7f:61:3d:c8:d8:79:a1:a4:c8:1c:01:63:00:94:81:1d:0a:c4:
62:b2:ae:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:45:17 2026 by rpki-client