Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B0E2BAC0EF611F19A1AC193DAE4EC9C.roa
File: 8B0E2BAC0EF611F19A1AC193DAE4EC9C.roa (raw, json)
Hash identifier: 15sMGPKCrxeB5j5s5ox98cexSo8R9Qi8UzTcpLf1vKo=
Subject key identifier: A2:AD:ED:09:5A:09:A2:22:F3:66:D3:C3:1E:6F:57:56:2B:EA:21:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019F1C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B0E2BAC0EF611F19A1AC193DAE4EC9C.roa
Signing time: Sat 21 Feb 2026 07:25:48 +0000
ROA not before: Sat 21 Feb 2026 07:25:44 +0000
ROA not after: Mon 23 Mar 2026 07:25:44 +0000
asID: 138415
IP address blocks: 156.247.32.0/24 maxlen: 24
156.247.33.0/24 maxlen: 24
156.247.34.0/24 maxlen: 24
156.247.35.0/24 maxlen: 24
156.247.36.0/24 maxlen: 24
156.247.37.0/24 maxlen: 24
156.247.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106268 (0x19f1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 21 07:25:44 2026 GMT
Not After : Mar 23 07:25:44 2026 GMT
Subject: CN=69995dfc-20d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ca:5d:b8:94:a8:01:0a:f2:cc:f3:4f:62:43:
bd:cc:a0:46:43:49:23:35:ff:c4:07:75:52:4a:14:
47:43:c2:a0:fa:b4:5f:66:14:d2:6f:cc:b2:51:d4:
2e:48:e1:36:38:67:c8:47:62:cd:90:df:b8:67:3e:
e8:22:94:44:f9:92:57:f3:22:f6:f1:0e:49:7f:1d:
95:5c:bd:6d:4c:de:bd:06:7a:e6:6b:7d:4b:0a:dc:
eb:f0:b9:b5:8f:dc:30:00:31:0f:0f:c6:0d:0a:4a:
df:0f:29:44:da:9d:92:12:50:dd:c6:e4:1c:dc:98:
6f:1c:38:96:ae:56:70:b6:f1:af:d8:81:60:53:d6:
bb:1d:e9:bc:42:b3:5b:ff:37:59:7c:0f:6b:2b:4f:
89:d2:a5:06:8d:0d:12:7a:e2:b7:9b:e0:fa:e6:3a:
3d:65:06:fa:cf:a6:cb:d7:64:1b:7c:81:d9:01:9d:
e2:a4:3a:41:7d:33:3f:70:5a:c0:a0:d5:20:6a:38:
98:cb:47:6a:fa:ec:c0:f1:0c:64:23:f1:e1:11:ba:
1d:00:ba:bb:5e:d9:7f:9e:09:69:51:57:17:f4:c0:
30:7e:02:72:ec:41:1f:1b:ee:3e:90:1c:48:23:95:
bf:f2:79:2c:0d:c7:b3:7b:f3:6e:97:08:24:22:1c:
3c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AD:ED:09:5A:09:A2:22:F3:66:D3:C3:1E:6F:57:56:2B:EA:21:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B0E2BAC0EF611F19A1AC193DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.32.0-156.247.38.255
Signature Algorithm: sha256WithRSAEncryption
2f:1a:54:e0:0f:91:f6:bc:d5:41:89:6b:98:3e:1f:86:90:3f:
2e:6b:5c:29:5d:78:51:53:50:bf:6b:aa:5f:d3:bc:af:4b:bb:
f4:64:31:9b:1b:2d:a9:a5:38:4a:c7:79:2d:44:78:0f:98:c6:
a6:ee:ed:90:28:7b:3f:5a:37:4f:69:49:d0:07:47:af:1f:0d:
15:cd:0b:34:34:18:45:4d:96:3a:f0:cf:34:e0:0c:ca:ee:30:
92:d7:3c:70:5f:bf:8b:35:ab:c0:fb:aa:13:66:7a:03:4c:4f:
45:35:45:7d:fd:06:ea:51:83:4a:f4:97:40:6d:fd:84:b0:a4:
c6:ef:15:7b:f6:4b:32:53:c8:12:97:18:50:54:65:28:a5:81:
d0:a6:68:04:9d:cb:eb:a6:f5:63:16:f5:b9:48:46:9b:33:1b:
09:66:fc:23:bc:7b:dc:1c:7a:5e:8d:87:52:8c:00:2d:5a:68:
f4:17:5f:50:a9:64:12:c1:d1:7a:c6:48:69:b6:97:a1:da:65:
90:ea:65:96:b6:84:cc:d1:a6:66:da:8a:54:75:00:af:12:a6:
b5:95:d1:a3:9f:36:d1:14:65:8a:48:6e:e4:a9:b1:a0:44:1a:
98:8d:2c:b7:e1:ee:b2:54:f9:3f:aa:d2:81:46:55:01:a3:bf:
54:b3:aa:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:36:27 2026 by rpki-client