Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F99F9D80108611F1993E40ACDAE4EC9C.roa
File: F99F9D80108611F1993E40ACDAE4EC9C.roa (raw, json)
Hash identifier: JTkt9mZb1gdrsHClsERjCqnpA6ZVkeUB6nDuhe8qEGU=
Subject key identifier: D0:22:BF:E6:3F:4D:9B:71:3D:25:48:13:CC:0D:93:83:49:66:74:9E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019FC5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F99F9D80108611F1993E40ACDAE4EC9C.roa
Signing time: Mon 23 Feb 2026 07:12:12 +0000
ROA not before: Mon 23 Feb 2026 07:12:07 +0000
ROA not after: Mon 30 Mar 2026 07:12:07 +0000
asID: 137547
IP address blocks: 156.245.128.0/21 maxlen: 24
156.245.128.0/24 maxlen: 24
156.245.129.0/24 maxlen: 24
156.245.130.0/24 maxlen: 24
156.245.131.0/24 maxlen: 24
156.245.132.0/24 maxlen: 24
156.245.133.0/24 maxlen: 24
156.245.134.0/24 maxlen: 24
156.245.135.0/24 maxlen: 24
156.245.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106437 (0x19fc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 23 07:12:07 2026 GMT
Not After : Mar 30 07:12:07 2026 GMT
Subject: CN=699bfdcc-d87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d8:fb:96:b6:d1:84:06:c4:10:68:a2:e7:e1:
e8:2e:47:26:be:21:60:27:90:e9:8d:a5:63:a9:50:
cf:db:9a:77:c8:4e:6d:f3:eb:41:f9:8b:8f:76:fe:
83:2f:42:df:65:28:4d:e7:4e:91:39:1c:f0:08:88:
80:6d:0d:60:88:e6:03:ed:92:2b:3c:52:5b:f9:c3:
ed:46:cf:97:a5:da:7f:31:78:7f:04:46:b4:46:b1:
98:c8:ce:da:cf:33:fa:24:59:c2:98:ab:b0:12:6c:
f2:ca:53:df:cd:2f:ea:5b:26:be:b0:c9:c1:00:26:
c1:87:b2:08:56:f6:d6:05:21:ea:a2:10:5b:9a:9e:
7b:a2:e6:f4:97:51:16:e9:70:43:37:85:ec:e5:fd:
55:95:cb:40:83:7a:57:5a:a3:7c:dd:a5:ea:e4:84:
a8:c4:40:4f:57:3b:89:05:34:aa:bd:7f:13:1a:20:
07:ca:79:a9:8d:67:ac:c6:96:07:18:e0:3f:3f:33:
2c:6e:6b:15:4c:9b:35:90:c8:5f:0d:4f:f2:c1:0b:
7d:25:f4:6b:f9:bf:4d:e1:cc:a7:83:29:b8:54:0a:
ff:09:76:72:93:6f:29:9a:2b:1c:80:12:d8:ce:ca:
50:7c:f3:89:0b:9b:2e:57:6a:9a:6a:72:25:55:b7:
a2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:22:BF:E6:3F:4D:9B:71:3D:25:48:13:CC:0D:93:83:49:66:74:9E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F99F9D80108611F1993E40ACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.128.0/21
156.245.248.0/21
Signature Algorithm: sha256WithRSAEncryption
61:c7:d4:42:34:2c:82:a1:18:41:b9:21:46:6b:f8:15:04:d9:
1a:07:c7:b4:df:c8:fc:f0:55:b8:2f:9c:0f:f5:71:69:f5:be:
c7:60:f0:01:c9:04:9f:d0:53:22:13:b8:72:18:d2:8d:dc:af:
e8:1d:87:df:17:74:87:b1:21:10:03:dd:0e:ba:f9:70:84:94:
4c:49:d5:4a:55:4f:c6:c0:0d:fb:f3:b4:bc:45:b9:3a:22:48:
01:88:e6:ba:81:39:f4:1a:56:dd:37:8c:1e:7c:bb:04:ef:d6:
5e:7d:c7:84:f9:de:46:1e:30:74:2f:ef:4e:11:2c:0c:bc:2f:
00:3a:a3:e3:e4:d0:36:27:a0:69:1c:4f:1d:66:dd:03:29:1c:
78:84:c8:7a:b9:18:61:42:41:18:a7:dd:5e:97:89:8d:e7:c8:
a4:b7:9f:5c:df:bb:db:0a:aa:2a:1c:88:89:0d:92:5b:7f:73:
b5:c2:ca:ea:40:38:67:f2:af:57:66:17:27:80:1c:8c:2b:fb:
1d:a4:24:11:9f:40:1d:4f:7e:2e:48:17:c8:e6:ad:a7:3d:15:
fd:ef:e8:4a:c5:5e:9f:54:09:e5:63:ad:e9:f6:8e:27:7f:17:
6d:a2:19:0d:7d:14:84:70:42:3a:e2:dc:ec:ea:ce:ad:39:a5:
ce:1c:8a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:16:39 2026 by rpki-client