Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2F6331C4149311F184AB267FDAE4EC9C.roa
File: 2F6331C4149311F184AB267FDAE4EC9C.roa (raw, json)
Hash identifier: qr9GAm6gIOfDaIbMrtzZSZ36TTaLPKA5tusTuKyKsYU=
Subject key identifier: 18:2A:14:77:E0:E6:7D:4F:A9:12:8E:29:82:E9:47:FD:FC:8F:18:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A159
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2F6331C4149311F184AB267FDAE4EC9C.roa
Signing time: Sat 28 Feb 2026 10:49:41 +0000
ROA not before: Sat 28 Feb 2026 10:49:37 +0000
ROA not after: Sat 04 Apr 2026 10:49:37 +0000
asID: 133731
IP address blocks: 156.234.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106841 (0x1a159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 28 10:49:37 2026 GMT
Not After : Apr 4 10:49:37 2026 GMT
Subject: CN=69a2c845-6bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bb:f3:1c:e0:f9:d4:90:44:1f:7c:3c:3b:a7:
64:92:92:02:ef:83:88:0c:5b:83:aa:fd:7e:54:33:
c9:62:11:87:6d:f5:c4:2f:18:ca:2d:9e:55:26:d9:
4e:6b:8d:dd:68:ba:a2:43:1f:34:b6:5a:32:77:98:
5c:c7:9f:e5:75:30:9c:dc:54:ad:db:93:54:22:8b:
7b:00:e1:2b:03:13:e3:ba:14:40:09:4c:62:5e:b7:
8f:1e:0c:85:d5:f8:6f:25:1f:27:57:be:75:78:25:
f5:9b:57:fb:a0:3f:2a:a3:23:c5:14:d2:96:bf:6f:
3b:6b:43:c9:8f:42:93:34:f1:8c:f9:72:16:5d:17:
b0:4e:f4:9b:6a:8b:fa:3d:00:21:77:cc:2d:0b:42:
5f:24:ca:d6:cb:a0:fc:eb:e1:81:6b:12:95:c4:43:
85:f9:01:40:1c:43:1d:11:51:a7:c0:99:26:54:35:
69:b9:56:41:eb:33:d6:b9:72:4f:bf:85:e2:74:b1:
1d:27:dd:97:48:32:83:bf:9e:0a:b6:86:46:b1:b8:
b2:ce:52:1f:96:96:e4:5d:e1:34:8d:a0:17:59:ad:
44:3b:cb:31:d1:a6:e5:c2:a8:b5:34:34:8d:5c:f4:
46:69:04:d9:55:f9:66:e8:72:76:c6:3c:6a:42:4e:
b2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2A:14:77:E0:E6:7D:4F:A9:12:8E:29:82:E9:47:FD:FC:8F:18:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2F6331C4149311F184AB267FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/24
Signature Algorithm: sha256WithRSAEncryption
86:95:af:42:50:63:dd:0f:7b:4c:f8:1b:52:b4:ac:09:03:ff:
5c:cd:ba:bf:c1:2e:1c:eb:4f:79:17:81:cb:2e:e7:c9:53:21:
4f:d7:6d:a7:66:3f:db:12:80:e9:90:6a:a3:4f:55:01:0d:4a:
a6:aa:42:26:8a:4f:94:df:b7:02:5f:bb:0d:61:8c:d2:5b:17:
fa:bf:16:1b:b2:ea:3f:b2:85:bd:19:4d:d1:2c:ad:e3:ee:ae:
84:0c:60:94:70:f3:3b:15:d0:fc:fd:00:56:6f:dc:69:6a:46:
0e:cb:20:18:3c:d3:8c:1f:d1:cd:7c:2b:97:54:0c:2f:3b:64:
c0:a0:e0:31:c9:84:10:48:4c:54:13:4f:30:f3:62:01:0e:c9:
58:8a:73:38:91:ad:47:54:a3:c9:54:8e:22:f0:27:09:77:ff:
3f:de:4b:ff:73:fb:84:42:31:17:6b:90:f8:02:8e:3b:23:38:
69:9d:76:37:c9:8a:c2:80:ed:17:05:ca:15:ea:32:0a:4d:46:
6c:47:70:1d:35:36:6d:05:e8:ea:c1:c9:9d:dd:92:1b:f8:4d:
d6:1e:db:2e:90:cd:99:b7:2a:f7:41:9e:91:b5:93:58:0c:5c:
ad:37:34:c9:ab:b3:7d:c6:39:9d:79:07:f6:ab:ba:a5:ac:82:
16:7d:aa:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:12 2026 by rpki-client