Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3DDCFC98157F11F1AFCA6BA2DAE4EC9C.roa
File: 3DDCFC98157F11F1AFCA6BA2DAE4EC9C.roa (raw, json)
Hash identifier: bUfMi8pvKmXBAdQqkMU0/zy5+2De5CfDbnVloYhdwiA=
Subject key identifier: 07:C8:76:3E:59:85:5F:49:76:99:9E:6D:41:0A:89:97:08:39:44:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A18A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3DDCFC98157F11F1AFCA6BA2DAE4EC9C.roa
Signing time: Sun 01 Mar 2026 14:59:27 +0000
ROA not before: Sun 01 Mar 2026 14:59:23 +0000
ROA not after: Wed 08 Apr 2026 14:59:23 +0000
asID: 48031
IP address blocks: 156.238.24.0/24 maxlen: 24
156.238.25.0/24 maxlen: 24
156.238.26.0/24 maxlen: 24
156.238.27.0/24 maxlen: 24
156.238.32.0/24 maxlen: 24
156.238.33.0/24 maxlen: 24
156.238.34.0/24 maxlen: 24
156.238.35.0/24 maxlen: 24
156.238.36.0/24 maxlen: 24
156.238.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106890 (0x1a18a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 1 14:59:23 2026 GMT
Not After : Apr 8 14:59:23 2026 GMT
Subject: CN=69a4544f-af01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7a:16:fa:f8:a2:aa:5d:8b:0d:d0:e0:53:cb:
8e:bb:92:10:f2:2a:f7:e4:8b:29:9e:75:a3:97:e9:
53:e2:47:80:cc:01:12:3f:ba:56:2d:2c:c0:5f:86:
74:9b:e6:ef:ed:13:b3:19:48:f5:a6:1a:b5:a9:79:
dd:74:fe:5d:8e:43:fb:ac:ab:7c:b4:91:a7:ef:23:
7a:ba:04:20:00:a5:5d:2f:16:9c:83:53:50:72:de:
f1:fe:4f:58:a4:55:6c:59:11:97:47:50:f9:85:46:
b1:68:a2:c5:28:d5:9b:04:83:91:92:e3:db:5e:de:
71:ab:ae:3f:22:0c:d2:d3:bc:e5:03:5c:1f:1f:ba:
f3:45:cf:ac:7f:bf:a0:8a:77:c3:08:91:d9:b8:90:
66:e8:0c:09:81:df:e7:a9:df:c1:43:d4:16:9c:6c:
1b:2a:5f:7c:80:2d:13:52:3f:06:f7:e6:41:49:bd:
ec:f1:0e:ad:4c:91:31:b6:00:df:f6:98:58:66:5f:
7c:b4:fc:4e:a3:44:5b:74:73:8f:f5:0a:0b:cc:65:
79:e5:23:f1:fb:2c:96:c2:e0:d6:6d:bb:7a:cd:de:
6e:84:f3:5e:ed:db:88:3e:96:ee:d8:a3:bc:8a:62:
7e:87:4f:ad:f0:1e:37:62:d3:5d:2d:6e:03:ff:48:
49:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C8:76:3E:59:85:5F:49:76:99:9E:6D:41:0A:89:97:08:39:44:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3DDCFC98157F11F1AFCA6BA2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.24.0/22
156.238.32.0-156.238.37.255
Signature Algorithm: sha256WithRSAEncryption
60:30:75:9a:d2:83:b4:af:2a:62:3d:c3:0b:99:19:61:ed:03:
5a:56:20:a1:e6:fd:9a:36:a8:74:d0:e0:b5:4b:fa:ce:58:14:
5b:4b:3a:b8:ef:d5:13:fe:30:34:a8:c6:b6:86:f3:2e:01:10:
9b:51:eb:d9:97:5f:85:d9:d0:d0:0b:73:77:84:57:16:82:39:
5b:be:5f:ee:cf:67:c4:17:20:23:e4:2d:4a:14:a3:2d:f5:c7:
db:38:7e:79:1d:c7:c6:c4:b6:98:b4:e9:73:c9:05:f3:35:6f:
1e:b1:77:5e:72:ce:5c:a6:21:9f:54:77:4e:de:c6:92:f5:ab:
53:65:26:1f:ee:74:78:f1:ec:ff:7a:f1:94:b1:80:98:e0:8a:
63:81:69:fb:2d:11:53:42:46:2f:2c:04:40:13:4e:ef:1c:ac:
b6:32:6e:e2:94:d0:27:0a:39:bf:94:ae:a8:79:66:c4:46:89:
a1:db:fd:ea:8c:a3:b8:1c:ce:52:21:79:93:72:49:34:9c:7d:
65:f3:6f:bd:16:1b:c8:e8:02:f5:a7:02:70:51:8d:30:29:f2:
96:cd:69:14:35:39:03:53:3a:15:c4:ad:20:dc:de:4a:0c:f8:
66:af:f4:1c:7d:3b:61:f8:72:a8:24:d7:bb:a5:a5:70:3e:2a:
90:47:30:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:01:37 2026 by rpki-client