Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5255F946278A11F18135D8D2DAE4EC9C.roa
File: 5255F946278A11F18135D8D2DAE4EC9C.roa (raw, json)
Hash identifier: pHhosrEuTX+ui+lhdk9Jsmo/3Sd7LZ9lCyo9H4D22ug=
Subject key identifier: E0:8D:7E:32:D9:C5:20:B9:13:44:73:C5:82:68:6D:C6:1F:96:38:4B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A710
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5255F946278A11F18135D8D2DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 14:04:07 +0000
ROA not before: Tue 24 Mar 2026 14:04:02 +0000
ROA not after: Wed 08 Apr 2026 14:04:02 +0000
asID: 274065
IP address blocks: 156.238.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108304 (0x1a710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 24 14:04:02 2026 GMT
Not After : Apr 8 14:04:02 2026 GMT
Subject: CN=69c299d7-d86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cf:63:82:5f:13:3a:40:20:3e:57:c9:31:1a:
f8:a9:3e:2e:f3:fd:d1:3e:5d:2b:57:0f:1f:1d:18:
fc:a3:62:8f:e7:0c:bc:02:c5:0c:8c:ae:0e:b4:09:
b4:2e:d0:03:17:a9:94:1d:99:d6:40:b0:3f:05:cf:
88:92:80:86:de:f8:11:23:61:9e:fb:34:0a:ec:84:
c1:9f:ce:ac:cf:a2:e4:b1:17:44:f7:ab:a8:f0:fe:
3e:ca:3e:3f:b2:7d:be:47:30:0e:d6:36:81:78:33:
f5:6d:ef:bb:61:e7:9c:44:b9:8c:c7:f3:c7:4f:82:
28:df:7f:7b:2e:0a:10:d2:14:e3:af:7e:c0:6d:39:
84:dd:b9:cd:fc:b3:aa:3a:64:bf:3e:33:60:89:ef:
6c:a8:e3:6d:ed:d7:1f:68:b9:10:85:af:8f:af:13:
fd:0c:19:67:e9:94:35:d3:bd:01:f2:eb:a6:2d:c9:
dd:c4:fd:2b:44:e9:df:0c:87:e7:ac:22:f3:2e:56:
5b:72:dc:c0:94:08:6d:e1:6f:ab:b1:4c:ea:e4:23:
2c:0b:c2:37:6c:96:63:af:fb:5a:0a:5c:95:b0:6a:
c8:31:fb:bc:31:d9:c5:3e:79:21:67:47:08:d5:a4:
15:68:34:23:b2:49:c9:e5:39:d1:e9:80:93:8e:81:
49:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:8D:7E:32:D9:C5:20:B9:13:44:73:C5:82:68:6D:C6:1F:96:38:4B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5255F946278A11F18135D8D2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.81.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e1:03:37:2a:cc:fe:87:9b:06:9c:e5:8f:c5:ed:41:c3:fb:
6e:85:8e:ee:8a:f8:dc:13:a3:d9:ab:9e:a6:71:b1:81:98:95:
fa:96:3e:65:fa:c7:05:08:6d:75:6e:68:a0:62:f9:af:35:55:
f3:fc:2a:2b:8f:54:75:8d:4e:b7:79:fe:22:2f:84:a5:34:e3:
66:00:20:95:d6:27:7b:dc:9e:cc:3d:01:7a:a1:e0:be:65:b5:
82:83:f3:1b:05:6c:fe:b5:5d:3b:84:b2:1e:85:44:12:88:ba:
a3:16:52:47:ad:56:82:d7:74:b4:a9:32:d5:4f:7b:12:6f:c3:
8c:6b:02:2e:02:3b:59:2d:ac:60:49:dd:1f:20:06:56:c4:bc:
b0:98:e1:52:e6:89:58:93:a4:43:1d:0a:45:f5:65:fd:cd:23:
57:00:2e:14:6e:ad:9b:91:85:a3:89:c7:68:bf:50:ca:ed:3d:
66:9f:26:80:b4:0c:2a:60:90:85:5a:8e:28:ad:21:fd:4c:93:
cf:10:23:8f:d2:67:76:2b:c6:df:1e:24:6d:a4:d3:77:46:48:
51:40:1c:8e:5b:3b:a7:f5:a7:a0:39:f5:f2:d3:00:0e:d9:42:
6e:e6:22:57:98:a2:83:4f:7a:c2:61:c1:43:25:b3:2c:a6:59:
17:31:03:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:21 2026 by rpki-client