Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D8A55C64398511F1815D2FC2CE1D38B0.roa
File: D8A55C64398511F1815D2FC2CE1D38B0.roa (raw, json)
Hash identifier: OixlL4621H5sYzTN45ghqikCPu3rJfj40BVBMXNwe30=
Subject key identifier: CC:C5:C3:AD:DA:C6:0B:45:65:06:B2:11:22:99:28:7C:F2:97:08:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AD27
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D8A55C64398511F1815D2FC2CE1D38B0.roa
Signing time: Thu 16 Apr 2026 11:17:26 +0000
ROA not before: Thu 16 Apr 2026 11:17:21 +0000
ROA not after: Wed 20 May 2026 11:17:21 +0000
asID: 154376
IP address blocks: 156.254.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109863 (0x1ad27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 11:17:21 2026 GMT
Not After : May 20 11:17:21 2026 GMT
Subject: CN=69e0c545-86b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c7:22:d9:84:b0:78:aa:22:31:49:dd:51:3f:
70:30:24:ae:94:06:60:62:23:0d:ca:7d:81:c3:a4:
ab:ca:81:a6:d2:1d:cb:b0:0c:24:dc:86:49:de:45:
66:48:7f:03:56:11:cb:0c:78:32:5b:98:a9:88:38:
72:9c:4d:1a:2b:35:a5:8b:ea:ed:34:43:9a:94:59:
3c:35:45:32:c5:4b:2c:d0:c0:f0:12:25:6c:c9:8d:
98:0e:19:c6:1c:f2:b8:ca:81:01:62:dc:81:5f:5e:
99:b3:89:85:3d:27:c0:9f:bc:ca:e2:a8:fd:3a:f5:
f3:2b:b4:9f:b1:7e:52:cd:4f:17:13:02:19:d5:f1:
2f:16:3b:76:cc:4c:43:06:6b:a0:cf:1e:04:7e:bd:
75:0d:ce:ff:f8:7d:f8:97:ce:f1:8a:69:56:76:6a:
48:ef:bd:40:47:86:32:33:a5:46:05:53:17:92:0e:
6c:e6:23:03:e4:2d:32:c6:41:09:a8:03:3d:10:34:
68:0c:6e:bd:ad:12:64:9b:42:03:f6:fa:6b:c5:70:
cb:f0:96:ba:38:a6:5d:7c:f1:7a:47:a7:9d:6c:08:
74:d2:e7:cb:5d:47:1d:b5:82:06:cd:c7:0f:dc:5c:
3e:2f:27:24:29:c7:da:49:c1:16:5e:57:3d:9b:a4:
32:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:C5:C3:AD:DA:C6:0B:45:65:06:B2:11:22:99:28:7C:F2:97:08:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D8A55C64398511F1815D2FC2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.5.0/24
Signature Algorithm: sha256WithRSAEncryption
89:56:7e:bb:84:9e:2a:3a:80:0f:e6:32:42:43:45:0b:0e:e1:
3a:73:9d:35:37:b6:45:0e:2f:50:f5:92:90:83:8a:e0:10:de:
08:cf:23:8b:4d:8c:18:1c:fc:4d:78:61:29:22:ac:f4:68:a5:
f5:4f:31:df:aa:7c:06:a2:f6:b1:97:0d:8f:bf:6d:f0:7d:38:
d9:a3:98:03:ed:df:a7:fe:cc:8d:7e:c1:77:9f:98:64:d5:1c:
54:8b:7c:b4:3d:72:85:85:b5:35:9f:2d:aa:b3:5b:21:69:af:
4e:7b:82:a6:cb:e0:55:3c:48:29:50:e6:13:ba:e2:75:51:62:
00:c6:83:44:6e:c5:ae:d0:fc:cc:89:cd:f9:ec:56:08:55:5f:
45:44:f7:f9:e1:79:2b:a7:8d:cc:9f:f6:5b:b2:a4:c2:e8:0a:
8f:e6:51:ee:48:7f:51:48:5b:4d:82:09:0f:2b:59:a9:aa:65:
56:e2:2d:6a:78:ae:ed:54:95:93:ed:d0:f2:88:c8:f0:4f:3e:
bb:3e:a9:33:c7:fe:86:90:da:8c:87:8f:3e:4a:e0:05:8e:6e:
57:fe:0e:f7:76:e6:76:0b:18:9b:85:e2:22:c6:14:5f:6f:31:
00:69:d1:79:63:fb:12:70:0a:2f:a5:9c:cb:37:5b:87:62:f5:
3e:c7:3f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:54:19 2026 by rpki-client