Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28B530A8250911F1A37907BCDAE4EC9C.roa
File: 28B530A8250911F1A37907BCDAE4EC9C.roa (raw, json)
Hash identifier: 6oUfVcixGPcTjGWoHNyc6EAvNp2AuzmG6lY0DQYNwAI=
Subject key identifier: 0C:5F:07:9B:4D:AB:C1:F1:9D:25:E0:8C:DB:12:C7:0F:E6:04:EE:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A654
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28B530A8250911F1A37907BCDAE4EC9C.roa
Signing time: Sat 21 Mar 2026 09:34:30 +0000
ROA not before: Sat 21 Mar 2026 09:34:25 +0000
ROA not after: Tue 28 Apr 2026 09:34:25 +0000
asID: 44559
IP address blocks: 156.246.219.0/24 maxlen: 24
156.246.220.0/24 maxlen: 24
156.246.221.0/24 maxlen: 24
156.246.222.0/24 maxlen: 24
156.246.223.0/24 maxlen: 24
156.246.224.0/24 maxlen: 24
156.246.225.0/24 maxlen: 24
156.246.226.0/24 maxlen: 24
156.246.227.0/24 maxlen: 24
156.246.228.0/24 maxlen: 24
156.246.229.0/24 maxlen: 24
156.246.230.0/24 maxlen: 24
156.246.231.0/24 maxlen: 24
156.246.232.0/24 maxlen: 24
156.246.233.0/24 maxlen: 24
156.246.234.0/24 maxlen: 24
156.246.235.0/24 maxlen: 24
156.246.236.0/24 maxlen: 24
156.246.237.0/24 maxlen: 24
156.246.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108116 (0x1a654)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 21 09:34:25 2026 GMT
Not After : Apr 28 09:34:25 2026 GMT
Subject: CN=69be6626-b041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4d:d4:6d:b9:bb:dd:41:04:6f:c4:20:5e:fc:
fe:7d:48:7d:1e:61:f1:53:81:5d:bf:54:68:d2:b7:
2d:98:64:f2:24:12:d5:60:23:1c:2d:5b:82:84:b9:
39:bc:67:e3:23:53:3a:65:e3:a2:36:86:f0:6e:30:
1d:fe:ae:4e:85:25:16:39:07:aa:d8:df:59:42:eb:
b8:3a:b8:db:e7:b3:f2:83:c4:cb:4c:3f:26:e8:d6:
f8:9a:ba:23:60:75:6e:00:b0:44:cb:33:51:6c:14:
cb:7e:86:e6:85:20:34:45:7a:5a:2d:97:bb:81:88:
3a:7c:f9:df:b0:ca:e0:86:a3:dd:c2:e7:a0:1e:8d:
32:a1:91:6b:07:5c:e2:e3:f7:3d:bc:8f:f6:a0:28:
1d:21:39:f8:e5:ef:db:c7:82:d7:01:7b:ac:d3:e0:
8a:d3:f7:c1:05:b6:71:93:1d:e5:23:7e:e7:df:66:
47:ff:4c:4b:7e:8e:73:61:0f:a6:04:e8:ef:c9:eb:
e0:3f:b6:48:b9:ae:1a:33:70:b7:2a:71:ac:7f:d9:
0d:67:76:32:f6:8f:43:e2:78:50:8b:cf:34:a8:f2:
1f:5c:1c:51:04:9d:cd:01:5f:16:15:88:a8:c8:05:
02:ac:58:81:f1:73:40:df:e0:8f:f0:16:8f:20:e0:
ea:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:5F:07:9B:4D:AB:C1:F1:9D:25:E0:8C:DB:12:C7:0F:E6:04:EE:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28B530A8250911F1A37907BCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.219.0-156.246.238.255
Signature Algorithm: sha256WithRSAEncryption
90:90:6c:cf:81:bf:09:e3:58:3b:1f:92:18:43:67:22:b1:9d:
79:a7:a3:18:ae:bc:58:50:2b:f1:be:cf:b4:4f:ae:e5:34:2f:
6c:a7:fe:1c:38:31:e1:18:4a:d3:b9:94:42:ed:cf:6b:56:03:
5b:2c:45:23:14:a4:65:90:05:49:ab:2c:f2:10:52:8d:c2:9b:
e0:c8:64:9b:1b:c8:99:77:a0:26:c8:26:4f:09:69:5f:07:32:
12:10:c0:e6:32:b4:36:c5:72:63:a8:66:f0:07:55:c4:e8:7d:
42:2b:e3:31:7e:f8:ff:69:75:47:f7:03:14:4b:3f:52:41:35:
73:47:fa:19:9d:47:1a:24:de:87:22:da:57:cd:e7:8b:00:e3:
71:b7:14:7d:9c:a9:02:81:4a:ec:32:1a:12:55:f0:0b:cc:29:
fe:5d:ba:fd:f6:c5:e3:be:90:a0:cd:47:79:30:66:b5:64:b4:
6b:29:ad:f4:65:62:d1:1e:3b:83:a6:98:a0:a5:4c:7b:73:e8:
26:eb:7a:d0:64:02:6c:62:8f:e8:de:0a:33:50:91:b3:25:ce:
1a:cd:47:f1:c2:03:6f:df:d7:c9:d1:98:15:42:71:e7:35:38:
39:c2:4b:78:3f:da:4a:88:c4:08:7b:ec:dc:7a:96:e0:09:64:
1b:b4:c9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:14:59 2026 by rpki-client