Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D65FA18FC2211F09EE74DD3DAE4EC9C.roa
File: 5D65FA18FC2211F09EE74DD3DAE4EC9C.roa (raw, json)
Hash identifier: odzNc7SjZLsB9zpR34YHc5PcupeHb1miy40unI4bRdE=
Subject key identifier: 1F:16:2F:DA:ED:47:80:C0:80:27:F2:8D:22:21:FB:4D:59:BA:F6:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019A44
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D65FA18FC2211F09EE74DD3DAE4EC9C.roa
Signing time: Wed 28 Jan 2026 08:21:38 +0000
ROA not before: Wed 28 Jan 2026 08:21:33 +0000
ROA not after: Wed 04 Mar 2026 08:21:33 +0000
asID: 9304
IP address blocks: 156.227.132.0/24 maxlen: 24
156.227.139.0/24 maxlen: 24
156.227.140.0/24 maxlen: 24
156.227.159.0/24 maxlen: 24
156.233.66.0/24 maxlen: 24
156.245.136.0/23 maxlen: 24
156.245.152.0/22 maxlen: 24
156.245.156.0/22 maxlen: 24
156.245.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105028 (0x19a44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 28 08:21:33 2026 GMT
Not After : Mar 4 08:21:33 2026 GMT
Subject: CN=6979c712-dfa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c3:42:ef:60:6d:f7:69:37:51:72:c9:71:39:
f5:7f:a2:e3:3b:49:c7:92:84:81:84:fc:b8:ab:13:
8a:4f:32:01:28:e8:e1:69:47:3c:ef:f3:4a:22:79:
eb:08:fb:f3:1e:5e:6a:44:d4:60:cb:f3:92:23:57:
f5:df:b9:20:07:c1:66:d0:19:da:9f:6c:5c:6d:a9:
37:da:19:83:2a:3d:53:ee:b6:72:4f:c6:95:43:26:
70:02:21:1e:9f:94:18:b5:b3:13:34:86:12:1b:12:
d9:61:be:19:c9:4d:4f:b6:07:f7:11:03:49:d1:05:
26:b7:68:20:16:70:f3:ed:80:4d:2c:6c:c9:80:37:
63:f8:5b:d6:f1:c2:67:72:79:b7:d2:06:b0:13:4a:
91:e4:2a:cf:7f:dd:1c:b5:e7:88:a9:28:50:8f:22:
5d:7b:65:23:76:e0:f1:15:5b:04:19:4b:5b:72:d2:
14:16:00:08:7e:46:72:c5:fd:5c:21:53:ad:5b:51:
57:a0:e6:42:70:b2:36:f6:a2:e3:33:1d:8a:a2:16:
46:98:0b:13:2d:85:df:e7:65:f5:e6:52:bf:3e:58:
a9:75:b5:ba:42:b8:58:f1:6c:92:f7:26:13:22:a9:
ae:32:d4:e8:85:aa:d1:8a:60:44:f3:6c:dc:73:9a:
41:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:16:2F:DA:ED:47:80:C0:80:27:F2:8D:22:21:FB:4D:59:BA:F6:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D65FA18FC2211F09EE74DD3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.132.0/24
156.227.139.0-156.227.140.255
156.227.159.0/24
156.233.66.0/24
156.245.136.0/23
156.245.152.0/21
156.245.163.0/24
Signature Algorithm: sha256WithRSAEncryption
41:25:8b:31:b4:b8:65:db:44:09:7c:b4:48:59:a5:b6:31:43:
a0:55:86:c1:2b:9b:08:b7:30:cc:2f:9b:51:19:56:4a:a3:ec:
4a:c8:dc:5f:38:5c:d7:7a:6c:ea:f5:df:1f:64:0b:cb:93:e0:
38:8c:16:32:08:42:eb:c0:9d:24:ab:80:12:46:45:d8:77:ff:
ae:d1:48:c1:36:cd:d0:fc:1b:87:e1:c6:8b:b1:41:32:93:e0:
e6:08:d7:57:07:69:a7:8e:3c:9d:36:0a:70:7b:f7:96:a5:93:
d4:ee:5d:bb:66:99:e5:4a:eb:71:d5:48:ab:8d:f0:4e:85:0b:
cf:10:86:d0:69:ed:f3:71:90:34:7d:26:c3:be:42:96:ee:3a:
14:c4:65:ae:48:a4:cb:29:ec:da:e2:36:ee:7e:1f:12:ef:98:
02:e3:f5:6e:44:27:5f:93:29:87:d5:60:13:08:b4:ac:78:8f:
7c:ff:3d:28:14:f6:e8:20:03:6e:66:87:da:37:75:38:5a:22:
b1:72:bd:33:5e:07:d3:06:c6:e1:6c:2e:52:c1:26:0f:99:8a:
be:6a:df:a6:27:f4:43:fc:b0:dc:9b:b9:f5:1c:1c:da:41:3a:
ea:47:55:7a:5f:cc:a4:e7:22:e1:2c:95:09:ef:2d:30:95:33:
30:4a:e7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:18:48 2026 by rpki-client