Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CF65358108C11F1B36237CEDAE4EC9C.roa
File: 8CF65358108C11F1B36237CEDAE4EC9C.roa (raw, json)
Hash identifier: dHNQKAEaqO5Dlug4pBj3S/ibHtr4VFTX1aDQkx++N1g=
Subject key identifier: BE:A0:14:77:6D:23:0E:8B:85:68:16:65:41:C2:28:A0:CC:91:E4:63
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019FE0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CF65358108C11F1B36237CEDAE4EC9C.roa
Signing time: Mon 23 Feb 2026 07:52:07 +0000
ROA not before: Mon 23 Feb 2026 07:52:03 +0000
ROA not after: Mon 30 Mar 2026 07:52:03 +0000
asID: 62468
IP address blocks: 156.245.188.0/23 maxlen: 24
156.245.200.0/22 maxlen: 24
156.245.248.0/24 maxlen: 24
156.245.249.0/24 maxlen: 24
156.245.250.0/24 maxlen: 24
156.245.251.0/24 maxlen: 24
156.245.252.0/24 maxlen: 24
156.245.253.0/24 maxlen: 24
156.245.254.0/24 maxlen: 24
156.245.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106464 (0x19fe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 23 07:52:03 2026 GMT
Not After : Mar 30 07:52:03 2026 GMT
Subject: CN=699c0727-a603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8f:05:ba:5c:50:80:c4:50:30:44:cc:6b:d8:
48:f6:cd:51:b9:8b:f4:41:c3:00:8f:0e:1b:25:e3:
21:0c:bf:77:0f:8e:82:18:e9:cc:b9:fa:8a:6e:46:
48:42:44:1f:3e:7c:1b:79:90:29:c2:b9:f8:e7:72:
1a:df:28:24:e4:4b:9d:a3:cb:ab:33:64:d2:40:69:
6e:98:0f:a3:cd:d2:e6:bd:a8:8d:45:f0:76:90:45:
da:b9:6b:63:41:e9:d7:bd:38:c5:bd:35:55:63:d3:
69:b3:3a:32:9f:69:cc:e8:37:ea:86:47:22:21:69:
df:8b:7b:77:6a:e2:60:37:48:dd:10:c6:b5:69:4c:
27:ae:4e:c1:ad:53:8a:5e:35:7a:78:99:11:23:ca:
7f:cb:8b:96:bd:cd:7a:68:e6:99:0a:db:bd:21:95:
da:d3:c3:7b:a6:bd:f7:3b:17:35:5d:e1:28:d3:9a:
0a:c9:26:d1:fd:1e:8e:69:82:f8:39:bc:f2:c8:41:
e3:8c:19:e7:9f:ab:28:2a:1b:03:a4:c3:47:7c:a2:
63:fd:73:92:ac:c7:b4:90:5d:9e:ef:50:26:26:6f:
63:fd:b9:8e:fd:b1:f0:93:3b:81:11:18:5d:67:ca:
5c:7d:45:7d:14:82:9b:6a:89:5c:23:f8:eb:fb:7f:
92:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A0:14:77:6D:23:0E:8B:85:68:16:65:41:C2:28:A0:CC:91:E4:63
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CF65358108C11F1B36237CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.188.0/23
156.245.200.0/22
156.245.248.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:44:f3:4d:b4:4f:66:77:e4:46:16:c6:5a:05:b4:22:42:e9:
a3:41:11:f6:bf:35:36:88:12:fd:e3:08:f2:49:0f:68:ac:1f:
27:9f:0e:6b:b3:e7:ac:8b:03:48:05:41:3e:28:de:2b:04:13:
73:87:41:5a:30:87:d3:90:5f:0e:56:96:20:03:76:23:20:6c:
19:2f:dc:d0:28:7e:01:5f:0a:37:97:31:99:71:3b:f4:68:ab:
2f:a6:08:01:bf:49:c6:a6:1a:9a:68:7b:f0:16:d4:28:d2:15:
a7:8a:df:58:ff:00:6c:50:09:2c:4d:a8:09:b2:da:85:fd:de:
5f:0c:62:c7:39:ec:d8:7c:1c:8c:64:2a:31:f3:5f:fb:80:9a:
5d:d1:32:51:c2:8c:ca:29:8d:02:6c:e9:ba:22:91:0c:8c:04:
b4:aa:49:41:67:e7:76:e6:ce:41:23:90:1c:70:4b:e7:fa:4d:
c4:39:41:3b:b2:88:46:a5:2a:84:17:cd:69:a0:4e:97:aa:14:
1e:18:e2:74:2b:90:30:c2:8b:c0:59:8f:a9:a6:91:35:83:e2:
58:e0:ff:c5:cb:a3:2f:c7:6e:ba:ed:6f:a9:5a:19:69:5a:05:
69:43:6e:1f:c9:e4:b2:d7:94:c0:24:ac:c7:1c:ec:f9:b3:f9:
e6:72:a2:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:43 2026 by rpki-client