Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D26B38942ADC11F1B70E01AFDAE4EC9C.roa
File: D26B38942ADC11F1B70E01AFDAE4EC9C.roa (raw, json)
Hash identifier: f2DglJ8fJ5sROFxsuNztNk2KD+LWvkA3Ui2ygu/QfZA=
Subject key identifier: E4:AD:1B:04:A8:A7:92:BD:7E:2A:72:FC:4B:07:2D:01:59:E8:F1:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A852
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D26B38942ADC11F1B70E01AFDAE4EC9C.roa
Signing time: Sat 28 Mar 2026 19:32:14 +0000
ROA not before: Sat 28 Mar 2026 19:32:09 +0000
ROA not after: Tue 05 May 2026 19:32:09 +0000
asID: 211961
IP address blocks: 156.233.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108626 (0x1a852)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 19:32:09 2026 GMT
Not After : May 5 19:32:09 2026 GMT
Subject: CN=69c82cbe-376c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6d:9c:1f:a5:c4:51:ac:1e:ee:b3:11:dd:90:
47:6a:0b:79:00:a1:c1:5c:94:e0:a6:93:cd:cd:f7:
28:ab:f5:37:52:b6:c8:02:f3:c8:cd:52:f0:57:79:
62:54:d9:81:86:cf:d5:e3:d2:74:78:42:3e:dd:82:
9a:09:bb:24:36:e2:d7:d2:da:3e:66:74:3f:51:91:
d0:40:b3:18:8e:fb:a2:a9:a6:b9:f8:8c:76:43:01:
b8:18:9f:02:45:68:88:da:be:45:ed:ac:44:47:89:
59:72:43:0e:68:89:1b:fb:bb:5f:82:0a:a8:81:5a:
fd:9f:7f:4b:aa:8e:aa:fc:bc:c9:5a:12:b2:6c:ad:
b3:85:68:d5:a4:d2:27:9d:24:38:c4:b0:bd:21:5f:
19:3f:68:60:b8:30:1a:56:8a:52:83:95:2b:43:bd:
f0:29:de:ff:cc:cb:1a:0a:d1:ed:b7:4a:8f:f4:9a:
35:b3:8e:ed:25:de:6e:67:a4:12:d6:aa:c9:a6:1b:
88:b4:85:d7:66:e9:31:b6:83:58:21:45:0a:60:c7:
fb:ce:02:3a:56:b2:bf:cd:84:e6:41:86:ff:7d:a7:
5c:32:4d:93:88:d2:e1:9c:98:6c:77:cf:50:81:25:
a9:ca:8e:4f:bb:9b:ae:55:32:d6:b7:1f:9f:93:8c:
92:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:AD:1B:04:A8:A7:92:BD:7E:2A:72:FC:4B:07:2D:01:59:E8:F1:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D26B38942ADC11F1B70E01AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.34.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:df:c3:c8:55:5e:80:9d:3d:77:74:4f:e8:d0:0e:76:02:96:
57:af:65:f6:93:ec:eb:a7:66:99:fb:41:33:8f:5c:22:10:d0:
2d:b4:fa:2c:33:04:9a:03:0b:55:fc:7d:8c:32:28:11:a6:8d:
fc:cf:7b:13:6d:ff:aa:66:17:de:99:da:a8:71:49:07:f5:5f:
c2:f5:ba:bf:5b:7d:63:ca:f6:3d:7c:da:46:95:79:c5:91:f7:
8a:39:95:fe:2b:ea:c1:23:98:57:16:d3:fc:30:00:3f:e3:0d:
a1:5a:91:a9:34:6b:5e:08:4d:31:2e:52:49:b5:5f:9a:26:9c:
80:9c:7c:32:a7:85:f4:3d:bb:09:7d:3c:0e:c1:7e:e9:69:c3:
cf:94:43:8f:92:14:98:32:ec:68:10:5c:10:73:3d:eb:ef:1e:
0b:59:62:9c:37:76:6d:cd:64:2a:40:fb:a8:74:9a:19:99:17:
2c:7d:d4:69:f3:50:ab:d4:e5:38:b5:12:f5:bf:01:4a:97:bf:
a0:0a:5f:77:9c:04:cb:28:6f:28:ca:ad:46:ab:a6:41:06:3e:
11:cb:f1:dd:a2:a4:bf:5b:15:5b:94:14:1f:8c:e6:46:90:eb:
18:4c:f1:be:c5:84:47:76:40:e8:7d:8e:c9:49:c5:37:6e:12:
c9:ed:44:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:55:48 2026 by rpki-client