Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FC1AF2C31AD11F196DF11A3DAE4EC9C.roa
File: 9FC1AF2C31AD11F196DF11A3DAE4EC9C.roa (raw, json)
Hash identifier: IWlPWvv9dh09uMclnu0vdDtyhCwdsPKbJX0RI2zVQcA=
Subject key identifier: B9:82:AB:BE:33:72:26:40:76:65:D2:89:0C:66:98:E4:FB:A1:CB:88
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AA99
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FC1AF2C31AD11F196DF11A3DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 11:42:01 +0000
ROA not before: Mon 06 Apr 2026 11:41:55 +0000
ROA not after: Fri 17 Jul 2026 11:41:55 +0000
asID: 398478
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.229.176.0/20 maxlen: 24
156.245.64.0/18 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109209 (0x1aa99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 6 11:41:55 2026 GMT
Not After : Jul 17 11:41:55 2026 GMT
Subject: CN=69d39c09-19cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e9:10:95:7e:12:3c:cd:ce:b9:9d:4b:48:81:
7e:02:04:9a:90:49:5b:9b:86:42:d2:86:44:e1:88:
b5:0e:d7:11:3c:bf:6d:39:c2:da:e5:7e:5f:17:aa:
58:8d:23:49:6a:2b:b4:86:80:93:98:d2:13:9b:7d:
93:91:78:cd:20:b3:da:bc:ad:75:59:d5:60:e0:e4:
10:57:79:4e:4b:74:ab:09:95:7c:64:36:e1:94:5c:
bb:d0:ee:50:80:2f:4d:7f:dd:6a:ac:e5:b1:fa:27:
f0:c9:0b:cd:52:da:2d:83:55:3d:bb:10:0b:3e:72:
a3:7c:43:92:47:a8:83:75:34:3b:b9:29:22:70:2f:
bc:84:0b:34:6a:ca:52:12:23:ff:05:13:7a:56:4e:
ef:ab:1d:98:9b:73:a4:2e:49:5e:c4:a8:27:23:82:
8b:d4:89:41:c2:8c:ab:21:ab:ba:62:b2:db:0a:53:
8a:d9:41:a4:e0:5e:00:82:b8:06:ba:1a:a7:d0:b4:
cd:7b:5d:26:e0:6d:ce:a2:35:b3:fd:3c:aa:19:d0:
e3:06:64:ec:f4:86:db:b2:84:7b:46:5c:47:12:48:
12:56:aa:9a:8d:d4:ca:98:af:59:8d:f2:54:22:24:
36:f6:6c:dd:73:be:98:30:25:50:1e:d7:58:07:23:
7f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:82:AB:BE:33:72:26:40:76:65:D2:89:0C:66:98:E4:FB:A1:CB:88
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FC1AF2C31AD11F196DF11A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.229.176.0/20
156.245.64.0/18
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
09:c0:47:fa:d4:ce:c8:0e:96:af:84:04:ef:88:8c:ee:de:e0:
97:01:a8:7c:0c:a6:6b:da:81:c8:ca:9e:2a:b2:f3:09:ac:5b:
ca:45:47:d1:aa:ad:b9:0f:40:38:be:9c:d2:a1:46:cb:03:d7:
d6:8b:cf:a8:d7:cb:95:0d:85:05:db:3f:11:ba:e9:01:6b:9f:
fe:43:b1:78:59:49:35:b9:c8:f2:37:ba:b7:8a:e0:8f:ce:56:
e5:88:d0:44:14:85:75:22:1e:e6:04:ac:4c:66:74:2f:af:7b:
0d:5b:dd:12:34:aa:6c:4f:25:d5:85:c1:06:b4:60:7d:ea:af:
b4:7a:c6:83:c9:c5:b1:ce:b2:f5:46:f1:0c:d6:cf:27:ab:f7:
46:d2:41:d1:76:9a:d0:77:68:bc:04:12:6d:81:0a:a6:84:bc:
9c:ec:c6:70:dc:34:a1:2d:12:a8:9e:2d:c7:93:c2:4f:d0:c6:
78:2c:1e:63:ae:a8:1f:da:0e:c8:f7:5c:da:64:e4:f7:e7:cb:
de:a7:50:2e:30:69:2e:60:b1:25:77:96:d2:78:03:5d:73:c0:
6c:69:52:96:29:8b:d2:46:98:e7:ff:de:a3:e8:23:d8:1c:e0:
e5:18:51:21:1a:73:77:4b:42:14:74:97:35:d4:23:a7:88:22:
9a:ff:88:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:42:10 2026 by rpki-client