Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B215D3031AB11F192D86597DAE4EC9C.roa
File: 8B215D3031AB11F192D86597DAE4EC9C.roa (raw, json)
Hash identifier: MYj3MZ0ZO9YIZaEHNT+zkQ9p58Ma8dXKIi/TX1VaBpE=
Subject key identifier: 63:28:E3:E9:1A:64:10:82:A2:F1:EE:D7:90:08:4B:7C:D0:44:C9:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AA93
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B215D3031AB11F192D86597DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 11:27:07 +0000
ROA not before: Mon 06 Apr 2026 11:27:02 +0000
ROA not after: Fri 17 Jul 2026 11:27:02 +0000
asID: 54600
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.229.176.0/20 maxlen: 24
156.239.24.0/21 maxlen: 24
156.239.32.0/20 maxlen: 24
156.239.48.0/22 maxlen: 24
156.239.52.0/23 maxlen: 24
156.245.64.0/18 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109203 (0x1aa93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 6 11:27:02 2026 GMT
Not After : Jul 17 11:27:02 2026 GMT
Subject: CN=69d3988b-d846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6a:d7:78:34:03:ac:ae:f2:d6:dd:3f:36:6e:
c9:25:9d:24:7d:ed:20:70:2e:15:7e:93:41:7a:82:
5a:c5:f9:6d:ff:ff:33:56:d6:8a:32:9f:48:dd:15:
11:a1:6f:9e:7a:b4:8c:6e:ac:f4:6b:be:c1:8e:14:
a1:7c:f8:8e:98:30:e1:c4:f5:bb:20:38:1d:94:3d:
94:65:73:17:7c:b7:eb:e3:70:d7:ad:17:17:88:3b:
45:9a:48:6d:41:5f:85:fa:46:b9:1d:e7:d8:85:18:
2c:54:84:80:22:8f:7d:a5:14:aa:89:9a:33:87:8f:
df:59:53:a0:64:29:36:cc:ce:91:1c:25:84:5c:80:
77:0a:01:b6:fd:9e:9f:bd:d0:4f:71:32:9e:55:b2:
17:42:ea:e4:1a:d8:0b:5d:33:5a:24:29:d1:52:61:
8b:36:f7:45:65:80:b4:33:71:f9:24:15:eb:10:95:
d6:5a:a2:12:d6:9d:66:4e:f1:ec:1a:fe:15:37:c6:
fa:d6:ea:9a:9e:9e:c7:1e:f1:01:dd:2f:36:0b:b0:
66:c3:7f:a0:a0:66:95:e0:e2:66:24:be:64:d7:9b:
e2:b2:60:d9:c5:a8:fb:45:69:25:75:d8:ad:b9:18:
c5:0a:45:ba:34:ff:d1:e3:50:b1:cb:cc:97:6e:46:
fc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:28:E3:E9:1A:64:10:82:A2:F1:EE:D7:90:08:4B:7C:D0:44:C9:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B215D3031AB11F192D86597DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.229.176.0/20
156.239.24.0-156.239.53.255
156.245.64.0/18
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
53:df:17:28:c0:ce:3b:18:42:f8:4b:0a:7e:a3:cf:30:f5:a7:
8b:81:1c:27:e8:fa:89:05:8e:16:c3:6f:2e:02:6f:d8:a3:b8:
c3:6b:8a:88:da:5f:fc:d6:2c:49:c1:87:15:a7:d6:63:a7:32:
fb:1d:1a:9f:77:65:60:76:ce:8b:03:09:54:dc:e8:5e:62:d8:
c8:7a:27:dd:b6:b8:d4:81:19:ca:54:87:6b:9d:5a:d3:c9:cc:
d8:18:52:b6:68:0a:78:78:f9:d7:3a:b8:4f:b6:0a:22:e2:0d:
2b:b9:64:5e:01:c3:8b:5b:6f:e6:2b:4e:42:9c:76:0e:0b:8e:
2c:8c:2d:f3:74:fb:6e:f3:69:8e:64:3b:cf:39:0e:30:77:d2:
4b:b9:ba:fd:a8:2a:95:98:93:fc:a7:07:fa:12:37:08:92:73:
00:03:04:38:ff:ec:c4:b1:69:58:2b:b1:e2:37:b8:21:c4:e0:
82:ca:cd:df:bd:aa:07:2f:1e:d2:7e:1b:5f:99:af:b4:80:b7:
7c:cf:a9:7d:00:af:a9:4a:4f:f3:2d:da:83:29:e2:58:7f:e5:
a6:1a:5c:df:41:60:ec:21:95:52:f2:94:b0:49:46:c2:ba:8d:
35:38:1f:95:dd:36:96:17:a0:2c:aa:36:61:90:ea:c8:47:67:
be:be:0c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:20:12 2026 by rpki-client