Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64750BAA33F911F197506BFACE1D38B0.roa
File: 64750BAA33F911F197506BFACE1D38B0.roa (raw, json)
Hash identifier: Wz06OlxLDoddnqhlCMYjfcTWI1lngpgyBaYsHuxLsgY=
Subject key identifier: 92:0B:32:59:DA:2A:A4:88:70:21:FE:85:4D:94:68:A7:7A:9C:BF:14
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB36
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64750BAA33F911F197506BFACE1D38B0.roa
Signing time: Thu 09 Apr 2026 09:49:25 +0000
ROA not before: Thu 09 Apr 2026 09:49:20 +0000
ROA not after: Sun 19 Apr 2026 09:49:20 +0000
asID: 32043
IP address blocks: 156.228.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 09:49:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109366 (0x1ab36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 09:49:20 2026 GMT
Not After : Apr 19 09:49:20 2026 GMT
Subject: CN=69d77625-538d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:30:68:18:ee:a6:4d:8b:77:7a:96:74:de:ff:
11:9f:0e:6a:4d:4d:59:9c:8c:bb:c1:d7:e2:57:c7:
63:0e:0c:9c:0e:3f:35:9f:9a:b4:35:05:8e:99:ef:
c8:6c:8e:80:86:f2:c8:7f:fe:ca:e2:c4:17:e1:8d:
60:6c:0b:6e:a1:fa:b0:41:1d:37:88:f0:7e:50:85:
cf:9a:a2:11:45:5e:0d:c2:b2:57:56:1a:7f:fe:ae:
f1:06:2a:74:8b:6f:90:ab:8e:7b:eb:5c:d0:6e:1e:
2c:66:3e:00:63:78:da:dc:ae:b2:99:09:69:e3:32:
d7:d4:4a:18:a2:d7:5c:14:1e:4c:b3:f0:ae:65:b0:
31:c8:2c:a1:fb:24:fb:14:6c:ef:e0:87:8a:5e:7d:
d5:0f:9d:da:61:f7:85:d0:99:a3:e5:b6:1e:49:d1:
41:14:65:fa:02:b7:f6:4a:e6:11:9c:2d:a5:7b:a3:
ca:93:13:df:ef:2e:b1:ab:a9:e6:a1:2b:6b:cc:9e:
4a:a4:5e:a6:f9:74:3b:d1:9f:6e:c5:13:49:10:d6:
9e:b0:33:69:59:e3:16:75:78:d3:f3:56:c0:e8:75:
18:62:ac:2b:32:bf:6a:c7:7d:41:5e:80:d8:ef:88:
5a:fc:34:30:a9:c6:d0:36:d8:37:41:21:55:ff:7f:
e2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0B:32:59:DA:2A:A4:88:70:21:FE:85:4D:94:68:A7:7A:9C:BF:14
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64750BAA33F911F197506BFACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.5.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ac:ba:04:98:86:c1:3e:86:72:1a:de:ae:c5:14:e9:55:51:
2a:d2:ef:fc:83:51:cc:68:c6:63:41:de:13:a3:f6:90:b7:83:
7c:89:1c:4f:87:27:8a:60:b2:8e:d2:56:89:1b:47:e8:d6:4d:
7e:b4:fe:af:93:9f:04:ca:6c:09:d5:d7:4f:11:7f:4a:b6:ec:
20:1d:7c:94:e0:3b:6d:d7:39:17:dd:73:16:14:75:ce:b6:95:
4c:a3:65:b9:9a:10:2f:af:bd:98:b6:06:7f:d7:3e:4e:5f:4a:
ef:da:42:fd:f9:5f:ef:e8:17:c6:08:d2:07:d5:5c:b1:4a:33:
94:d7:d8:80:55:e8:fb:55:5a:f2:68:30:44:11:d5:51:29:10:
36:4a:a8:af:60:ce:08:32:61:6f:f0:73:15:25:bb:c2:f4:39:
d6:59:28:52:bc:15:f1:ca:85:84:b6:43:47:33:fd:b8:6e:06:
f9:2e:d8:de:39:0f:4c:4d:6b:73:bd:13:4f:7a:61:69:98:1d:
ce:ba:30:bc:43:1c:f2:f9:16:1e:46:3b:84:2a:9e:7f:e2:e9:
c8:8e:d0:6e:f8:1c:76:75:3b:d0:f8:63:3d:f4:00:44:5e:4a:
f6:ba:cf:cc:c6:1c:c5:65:c9:a4:11:a8:d1:02:0f:01:52:a8:
b6:a5:95:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:20:33 2026 by rpki-client