Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5442F34E29A611F18B830BA9DAE4EC9C.roa
File: 5442F34E29A611F18B830BA9DAE4EC9C.roa (raw, json)
Hash identifier: 1kNOtXnjT+2nuEJQpgPE5ixU84o6T3tZ+ft9jXcoWZM=
Subject key identifier: ED:A5:CB:81:67:76:7D:A7:02:3E:2C:6E:6A:B9:7D:F0:95:E1:6E:B9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A78F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5442F34E29A611F18B830BA9DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 06:29:38 +0000
ROA not before: Fri 27 Mar 2026 06:29:33 +0000
ROA not after: Fri 01 May 2026 06:29:33 +0000
asID: 395793
IP address blocks: 156.225.2.0/23 maxlen: 24
156.225.15.0/24 maxlen: 24
156.225.50.0/23 maxlen: 24
156.228.15.0/24 maxlen: 24
156.228.62.0/24 maxlen: 24
156.228.210.0/24 maxlen: 24
156.228.211.0/24 maxlen: 24
156.230.159.0/24 maxlen: 24
156.236.14.0/23 maxlen: 24
156.243.223.0/24 maxlen: 24
156.243.225.0/24 maxlen: 24
156.243.230.0/24 maxlen: 24
156.243.241.0/24 maxlen: 24
156.243.245.0/24 maxlen: 24
156.243.250.0/24 maxlen: 24
156.243.251.0/24 maxlen: 24
156.243.252.0/24 maxlen: 24
156.243.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108431 (0x1a78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 27 06:29:33 2026 GMT
Not After : May 1 06:29:33 2026 GMT
Subject: CN=69c623d2-027e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:98:be:9c:17:1f:05:48:88:79:36:c1:14:5f:
a0:69:1a:15:b1:49:9a:7d:86:a1:b5:f9:03:cd:06:
ca:ab:85:c0:31:e4:08:0c:15:3e:40:a6:ff:f6:a3:
58:45:bc:3c:c3:65:b6:62:67:43:dc:c8:c4:86:e3:
49:ef:7f:9b:cb:f8:d7:06:14:36:cd:0a:dc:98:8b:
46:e5:08:f2:9e:72:49:9c:a3:38:3c:5e:35:2f:c0:
2f:62:b9:78:d4:05:9f:99:fb:de:db:40:22:96:aa:
4b:79:ec:20:1e:61:61:68:ba:a0:4a:6c:30:66:09:
b7:89:8d:9f:23:93:35:53:33:d1:bd:a1:d5:1f:59:
c9:c1:7f:09:14:75:03:a1:e9:de:6d:9d:bc:5f:c4:
42:7d:a5:50:ec:43:91:60:78:c9:cd:ba:03:d5:84:
ae:a6:cc:fd:7f:b5:86:b3:ef:6b:26:f7:62:5b:59:
34:01:69:d8:66:42:c4:1c:54:8c:d8:d6:77:88:5c:
6d:4e:3c:1f:85:5a:61:d6:a4:92:b5:bb:4e:5a:c3:
62:3a:aa:dc:67:2d:cf:95:05:a3:55:f4:64:47:82:
5d:fd:09:33:7a:f4:35:e6:31:86:12:f8:e4:ea:4c:
c3:91:7d:ed:2b:6b:df:dc:f6:33:6e:ac:5d:e3:c0:
08:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A5:CB:81:67:76:7D:A7:02:3E:2C:6E:6A:B9:7D:F0:95:E1:6E:B9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5442F34E29A611F18B830BA9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.2.0/23
156.225.15.0/24
156.225.50.0/23
156.228.15.0/24
156.228.62.0/24
156.228.210.0/23
156.230.159.0/24
156.236.14.0/23
156.243.223.0/24
156.243.225.0/24
156.243.230.0/24
156.243.241.0/24
156.243.245.0/24
156.243.250.0-156.243.253.255
Signature Algorithm: sha256WithRSAEncryption
3a:59:04:ee:42:d3:13:8f:87:5e:28:9b:e5:bb:81:2a:82:b9:
52:e4:a8:36:3b:a4:00:a4:f0:ba:79:eb:b9:00:f1:b7:c1:d6:
76:17:29:03:57:bf:56:73:3b:fe:68:43:bf:be:2f:01:56:ea:
ed:49:0c:17:0f:a3:ce:98:67:7c:59:c4:81:14:ca:62:d7:01:
3e:31:df:1e:45:a8:99:93:66:7f:17:6d:e0:39:e1:61:b0:c1:
bf:9f:ac:9b:c9:a2:48:4e:0c:35:6c:04:55:ca:6e:40:7a:d6:
a9:00:07:ad:49:b6:0c:aa:30:8b:c0:91:63:cf:70:22:d9:be:
36:98:4a:b0:05:5c:68:02:09:bf:cd:de:85:33:04:7a:ff:43:
1a:1e:43:61:5f:71:aa:3f:c6:0f:7c:0a:d6:e1:d2:cf:59:66:
fe:22:37:5a:c4:c0:4a:de:07:dc:78:2b:19:6c:c3:27:57:ef:
5b:aa:19:38:29:6b:e6:8f:af:23:e6:45:09:5a:eb:1e:ef:67:
21:2f:ae:b2:51:a4:8c:c6:21:58:9d:47:42:e2:65:ee:e3:cc:
2d:e4:1b:f6:66:99:3a:4c:ed:21:1d:22:17:15:6c:30:6d:c4:
1f:59:5b:bc:b3:ff:82:76:e7:16:4a:6a:45:4b:be:d4:13:37:
29:49:75:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:35:08 2026 by rpki-client