Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43511FC0268B11F1B3D5EF8BDAE4EC9C.roa
File: 43511FC0268B11F1B3D5EF8BDAE4EC9C.roa (raw, json)
Hash identifier: hgREmprsac7Uab2IfL+dBOjtopeejW//YTakDJ3ZNAc=
Subject key identifier: AE:79:21:80:A2:A4:3B:D9:AA:8A:79:31:F8:BA:3E:40:94:5C:9D:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A6C1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43511FC0268B11F1B3D5EF8BDAE4EC9C.roa
Signing time: Mon 23 Mar 2026 07:38:20 +0000
ROA not before: Mon 23 Mar 2026 07:38:15 +0000
ROA not after: Fri 17 Apr 2026 07:38:15 +0000
asID: 153671
IP address blocks: 156.231.70.0/23 maxlen: 24
156.231.88.0/22 maxlen: 24
156.231.92.0/22 maxlen: 24
156.238.12.0/23 maxlen: 24
156.238.28.0/22 maxlen: 24
156.238.60.0/22 maxlen: 24
156.242.64.0/23 maxlen: 24
156.242.100.0/22 maxlen: 24
156.242.104.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108225 (0x1a6c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 23 07:38:15 2026 GMT
Not After : Apr 17 07:38:15 2026 GMT
Subject: CN=69c0edec-8f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:27:63:6c:4b:a6:5d:8f:59:2e:52:d9:a3:
91:e7:19:5b:04:0b:06:a6:81:5f:c0:c1:fc:13:e1:
a1:0b:49:8c:72:ff:1c:fa:64:01:af:07:3f:0c:a2:
66:fd:b5:6d:04:ee:32:69:07:ec:d4:35:b9:7a:26:
3f:40:99:bc:f7:69:dd:2e:0f:1c:10:99:d1:79:5f:
24:14:ec:c4:90:50:65:36:9d:4e:9b:92:f7:54:e2:
30:2f:ac:58:fd:df:f3:8d:86:c1:b4:b6:f0:3c:6d:
17:9d:54:fb:7b:fe:69:80:42:ce:d8:2c:1a:c7:24:
2a:75:92:5a:45:28:fb:8d:6a:59:df:7a:01:89:83:
23:44:4c:d2:4d:41:06:68:45:0d:f4:b8:ff:4b:54:
31:7e:15:f2:28:46:3e:74:3f:43:8c:16:69:77:42:
ce:f0:d1:0c:2a:03:54:45:42:b8:56:34:a0:b0:57:
e8:32:42:be:20:22:ca:ce:a2:6f:35:91:0c:79:a3:
21:c1:c6:ee:d8:61:4a:62:8d:d4:1e:2f:2d:a0:09:
f8:1a:2b:8a:d1:91:98:74:be:3d:c7:6d:7d:a9:72:
5f:23:d4:40:47:a1:0c:54:3a:0f:50:85:b2:39:87:
a3:4a:c6:5f:94:ed:97:91:ee:60:07:54:a7:16:65:
c4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:79:21:80:A2:A4:3B:D9:AA:8A:79:31:F8:BA:3E:40:94:5C:9D:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43511FC0268B11F1B3D5EF8BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.70.0/23
156.231.88.0/21
156.238.12.0/23
156.238.28.0/22
156.238.60.0/22
156.242.64.0/23
156.242.100.0-156.242.107.255
Signature Algorithm: sha256WithRSAEncryption
35:60:a0:f0:52:71:a7:69:08:54:64:a2:14:5f:d8:fc:2c:be:
8d:96:ac:17:14:3a:73:ea:f4:4b:13:69:46:c7:3a:3a:ad:4a:
ff:b7:1f:a0:7f:30:4a:b5:5e:f7:e9:33:ae:a5:50:28:fc:d1:
45:7d:0c:d1:45:5f:32:36:f1:d2:7a:5f:35:17:85:87:9f:c8:
8d:48:68:da:6a:05:d6:ec:6a:2a:4c:78:1a:12:34:86:ae:2b:
9e:b7:d6:9b:5e:43:77:99:8e:96:1d:c5:cc:70:21:88:66:07:
43:98:96:7c:0a:5e:41:29:3a:f2:93:21:c6:6c:0c:59:2f:0e:
64:ee:27:35:3d:05:d8:a9:9e:44:63:cd:97:a0:9f:58:92:2e:
c7:97:ae:b0:02:39:6b:7b:4d:39:38:3c:6a:1e:a3:1e:c2:4b:
9b:4b:41:61:6d:87:2e:a0:d7:63:47:2c:c1:d1:2a:d8:73:c1:
54:da:2d:5c:ea:b5:77:9f:c1:b3:4c:d7:87:57:bf:0e:5a:75:
e7:78:6d:bb:58:86:e1:b3:b9:f4:45:80:fd:9f:86:ec:b1:65:
6f:1c:35:0d:8c:f6:5a:2a:f7:05:48:59:7e:64:56:78:63:05:
d6:2a:5d:1c:26:1a:20:d3:3b:19:ad:92:19:10:91:b3:03:4d:
b0:30:d7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:12 2026 by rpki-client