Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/32163B9222BB11F1A85E86CFDAE4EC9C.roa
File: 32163B9222BB11F1A85E86CFDAE4EC9C.roa (raw, json)
Hash identifier: c0osRZv/cIDOtvXUwYwGP/fnA4My8dWhNG1duhMOycM=
Subject key identifier: D8:DA:A9:A7:4D:E1:6A:FB:F9:A6:D8:99:40:43:7C:65:53:44:78:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A5CB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/32163B9222BB11F1A85E86CFDAE4EC9C.roa
Signing time: Wed 18 Mar 2026 11:11:22 +0000
ROA not before: Wed 18 Mar 2026 11:11:17 +0000
ROA not after: Sat 28 Mar 2026 11:11:17 +0000
asID: 134489
IP address blocks: 156.238.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107979 (0x1a5cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 18 11:11:17 2026 GMT
Not After : Mar 28 11:11:17 2026 GMT
Subject: CN=69ba885a-9638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8f:f5:db:f5:de:3e:15:19:85:fd:5e:68:3f:
32:2d:4e:49:b3:2a:f4:54:84:bf:43:ee:0b:18:85:
46:43:ab:43:3a:f1:f7:59:29:51:08:ee:28:7a:1a:
08:83:48:e9:c8:92:0d:3a:e0:19:b9:9c:f5:1c:1c:
d5:2c:6a:80:b9:42:5f:c6:7a:aa:26:2d:24:75:b7:
36:06:7b:3a:2e:df:fe:66:25:fb:08:c8:f2:c1:9a:
c0:ec:ac:3c:d5:22:11:c1:12:a7:3b:9c:2c:e2:d1:
0f:f8:80:be:ef:c8:5e:c2:28:9d:d7:79:15:fe:9d:
97:4d:9f:42:d2:ec:21:0e:82:11:7d:4a:12:b8:66:
77:fd:b5:6f:58:8c:9d:c2:42:36:60:3d:80:58:67:
b0:51:ae:a6:41:9d:c6:be:7a:84:5d:76:4e:ad:57:
32:64:79:e5:47:4f:ae:ee:4a:4c:aa:99:39:ce:06:
15:ce:3d:dc:74:c3:9c:4c:7d:cf:10:ff:fa:50:41:
70:6f:a1:34:5c:10:27:32:7b:68:5a:5e:74:4c:a1:
f3:fa:41:e7:4b:88:f8:c1:44:68:b8:ac:39:e9:ec:
f6:1e:36:eb:fe:53:0b:57:09:b3:a1:55:f0:3e:4c:
16:3a:e7:99:4d:79:c5:a4:da:f7:5d:da:71:e5:25:
e7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DA:A9:A7:4D:E1:6A:FB:F9:A6:D8:99:40:43:7C:65:53:44:78:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/32163B9222BB11F1A85E86CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.86.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b8:9f:26:0d:88:44:4b:b7:fd:e8:59:3f:0c:67:56:91:bb:
0d:cd:f4:03:8e:28:6f:63:dc:cb:2c:55:7f:c4:aa:db:7a:ae:
41:fb:08:51:f3:d3:d9:03:e0:8c:83:94:f0:02:b2:aa:82:66:
63:0c:97:d0:47:5e:27:f2:ee:6a:4b:90:e1:57:14:ab:b8:0d:
ab:ae:6d:1c:db:7d:6b:86:d1:8a:6a:00:62:c8:7b:6a:29:4b:
17:4d:6c:17:bc:2a:1d:99:06:17:2e:eb:3b:1d:75:31:94:ee:
ec:80:f3:47:d0:3f:cc:69:ec:0d:74:3a:75:c0:65:4e:0a:4d:
24:19:92:ca:98:7a:5e:91:df:f5:89:70:88:b5:c4:b3:41:64:
65:79:62:20:93:3a:e4:40:06:62:23:4f:2f:9f:26:fc:13:93:
d7:3f:e9:df:4b:68:c5:e2:c3:31:6f:ec:45:c0:3a:11:1f:73:
e8:63:a5:3f:86:23:5a:3f:fa:73:50:18:f6:88:68:74:a8:76:
87:9c:d4:9b:07:fe:44:36:5a:0c:00:47:9f:f1:18:4d:2b:7a:
0c:dd:72:de:b9:0c:ac:72:5c:7f:1e:e8:03:c5:12:7a:b2:23:
90:a7:ed:43:7b:59:a1:60:e5:70:86:16:e2:9f:93:8d:44:bd:
60:13:5e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:06 2026 by rpki-client