Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0B45F942E0211F18AB6AFC4DAE4EC9C.roa
File: C0B45F942E0211F18AB6AFC4DAE4EC9C.roa (raw, json)
Hash identifier: 8wqDxmqORqE5/QtF6YUxrV2RP5qHTHssDcsfghon6+I=
Subject key identifier: 3F:CF:DC:FC:C0:45:AC:E2:45:56:50:F5:AA:C2:EC:5F:6D:D2:BE:94
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A924
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0B45F942E0211F18AB6AFC4DAE4EC9C.roa
Signing time: Wed 01 Apr 2026 19:41:19 +0000
ROA not before: Wed 01 Apr 2026 19:41:12 +0000
ROA not after: Sat 02 May 2026 19:41:12 +0000
asID: 11427
IP address blocks: 156.229.180.0/22 maxlen: 24
156.229.232.0/22 maxlen: 24
156.229.240.0/22 maxlen: 24
156.233.4.0/22 maxlen: 24
156.233.152.0/21 maxlen: 24
156.241.8.0/21 maxlen: 24
156.248.96.0/21 maxlen: 24
156.249.72.0/21 maxlen: 24
156.249.88.0/21 maxlen: 24
156.249.104.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108836 (0x1a924)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 1 19:41:12 2026 GMT
Not After : May 2 19:41:12 2026 GMT
Subject: CN=69cd74de-4bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cd:fd:a7:9f:e0:e8:85:2d:05:f7:38:ff:21:
75:f0:65:81:48:ac:5c:54:58:0f:77:59:92:cd:ef:
c5:b7:c5:ee:ba:5d:74:63:82:c0:2a:18:61:ad:91:
c4:8a:96:88:dd:bf:16:ae:31:0e:08:d2:99:f3:29:
13:d9:49:56:dc:b8:0b:fc:45:a7:ee:b5:5e:55:bd:
18:0b:c6:b8:25:12:b9:2d:3f:95:b6:83:b9:0b:b8:
e7:f9:7d:8a:2a:56:ef:ad:7d:2b:e4:b6:d6:40:3e:
33:6e:29:f0:2a:93:98:ed:f6:79:59:b0:22:9c:9c:
66:b4:d1:84:ea:a0:b8:4d:d7:60:01:d7:39:c0:02:
bd:83:47:3e:21:4f:07:38:ed:13:ee:7e:00:df:9a:
a2:78:ad:38:6e:e5:be:2f:ef:95:79:a5:07:4b:77:
67:93:08:b4:f5:e3:60:c4:8e:d9:9f:a1:a3:1c:ea:
18:4b:12:82:dc:d6:ea:9e:aa:65:d8:fb:d9:37:c1:
0b:43:e7:2f:7f:91:9a:34:c0:10:41:9a:05:92:e9:
72:9c:5e:dc:5e:73:fa:5c:03:d2:3c:c7:44:17:22:
9e:5e:bc:ae:37:66:a3:d0:fa:ac:b0:f3:fd:64:4b:
bf:f3:fa:03:a1:cf:e7:26:ca:9c:d2:1c:ea:4a:f3:
d9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CF:DC:FC:C0:45:AC:E2:45:56:50:F5:AA:C2:EC:5F:6D:D2:BE:94
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0B45F942E0211F18AB6AFC4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.180.0/22
156.229.232.0/22
156.229.240.0/22
156.233.4.0/22
156.233.152.0/21
156.241.8.0/21
156.248.96.0/21
156.249.72.0/21
156.249.88.0/21
156.249.104.0/21
Signature Algorithm: sha256WithRSAEncryption
18:14:cb:23:ad:4d:1f:c1:be:80:f8:9b:5b:9b:77:dc:fa:4e:
fc:13:07:a5:9a:26:92:48:ef:f5:d9:60:8e:12:b4:cb:81:34:
e5:bd:69:67:90:c4:86:1c:7f:91:17:0c:a7:dd:f4:d1:fb:29:
a7:8b:cb:dd:9f:99:ee:ea:8c:7f:83:ba:9c:e4:69:ab:8e:9f:
90:57:fe:4d:64:e9:60:23:c1:49:98:c8:62:45:09:a1:07:a5:
c6:50:7d:f9:ea:6f:b2:42:d3:32:7e:76:8e:c3:b5:dd:06:f3:
90:b0:42:a2:b3:9c:3f:fd:17:50:a0:fc:d8:2b:a9:8b:3a:51:
50:74:64:37:58:bf:a2:b1:8c:4d:16:15:d2:21:81:e6:e3:da:
46:fc:c2:ee:2f:d3:53:9a:51:43:69:98:4f:ed:4a:a9:4f:2f:
88:f4:cd:13:a5:f4:a6:b5:7d:0b:8e:72:75:ec:3a:bf:12:71:
1e:72:5f:b6:15:4d:91:ce:16:ea:e2:6a:98:89:f2:cb:68:fc:
36:77:dc:27:48:cd:24:3e:18:99:54:4f:08:35:af:e0:29:2e:
3e:4f:fb:b4:b5:69:c4:29:fc:1b:a9:d0:47:66:0b:6d:71:8f:
7d:ca:18:5f:dc:1e:15:a6:89:47:c8:0f:dd:a6:54:d9:be:13:
3c:63:96:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:53:28 2026 by rpki-client