Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5297C52422A811F1A59C09E3DAE4EC9C.roa
File: 5297C52422A811F1A59C09E3DAE4EC9C.roa (raw, json)
Hash identifier: /o5vMMhjtp11oro3afWAAWtjSrgx09BTR3HGXqF+/4E=
Subject key identifier: 3E:51:9C:34:33:ED:11:62:A0:D3:BE:17:7F:BE:6E:B4:58:F7:D2:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A5C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5297C52422A811F1A59C09E3DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 08:56:16 +0000
ROA not before: Wed 18 Mar 2026 08:56:11 +0000
ROA not after: Tue 31 Mar 2026 08:56:11 +0000
asID: 139880
IP address blocks: 156.227.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107977 (0x1a5c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 18 08:56:11 2026 GMT
Not After : Mar 31 08:56:11 2026 GMT
Subject: CN=69ba68b0-6461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:4e:1f:cb:98:fc:5b:be:33:af:99:a4:5d:ff:
2c:b5:f9:cf:5e:96:b2:9e:3d:97:f8:21:b8:69:89:
83:f3:e7:62:63:33:65:2f:54:a3:a3:76:72:77:72:
12:00:c7:df:97:55:1c:49:36:90:57:0e:23:b6:5b:
37:70:40:75:60:15:47:04:ec:f5:15:70:83:07:11:
f2:78:96:ae:91:3f:cb:8e:fd:2d:7f:6e:3d:cf:58:
e7:58:57:01:c6:e0:ee:08:36:e9:44:f7:f4:c8:5e:
27:e5:55:78:07:58:fa:36:a8:be:4c:1a:cf:6e:28:
1e:7e:21:69:8b:04:b2:f7:2a:fb:a4:82:a6:48:e6:
39:bf:1c:82:02:a5:40:2d:8e:09:bc:76:ac:1a:71:
fa:ef:06:d5:e1:37:23:0c:16:08:64:c3:1c:57:d8:
4b:c5:8a:b2:48:2c:ef:b2:60:4f:07:6b:61:b6:a5:
96:8b:53:72:c8:72:ce:2f:2d:4e:a0:22:ee:8c:34:
e4:b7:83:98:ff:ea:5d:f7:6c:d2:68:93:1a:e6:fa:
08:c0:e8:5b:e3:67:e7:0d:61:01:fb:95:74:f7:9d:
4b:07:d1:b6:a8:ea:a8:df:b6:31:cb:87:21:c9:7a:
f4:bb:d5:85:b6:6a:e8:e1:63:c8:e9:5e:51:01:5b:
0e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:51:9C:34:33:ED:11:62:A0:D3:BE:17:7F:BE:6E:B4:58:F7:D2:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5297C52422A811F1A59C09E3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5d:a2:db:d0:79:91:dc:99:e7:ce:23:68:10:e5:17:ab:f6:5a:
3e:6b:13:59:be:82:aa:92:86:03:31:dd:38:3b:b0:c7:c7:1a:
c4:5f:71:64:af:c7:e7:ca:73:33:17:70:5f:70:2f:24:0c:f9:
c1:71:07:dc:b9:e4:8c:1f:59:88:68:f5:ba:8f:65:e1:34:57:
8c:e0:35:1e:61:5a:f5:d5:ae:b5:f8:92:72:73:a8:b8:f6:a5:
b1:21:5c:8c:87:a7:ec:c7:7c:bc:06:c3:08:03:01:8c:10:1e:
f6:a0:8f:13:fe:f8:b7:90:ed:04:42:02:28:ba:0e:8f:33:ee:
0e:d8:30:71:84:4b:73:d8:22:1f:77:15:35:13:1c:94:bc:f3:
a9:5e:8b:57:8d:e9:0c:1b:3a:8b:9e:0c:56:35:90:f1:b8:b5:
ca:17:25:4d:04:15:26:6f:32:41:1e:da:17:a7:0e:58:8d:30:
1f:1f:dd:f6:0b:ec:a3:4d:2e:91:10:67:c8:24:d3:71:4b:03:
bb:52:e2:9d:49:61:98:78:40:44:7c:8c:74:f6:86:78:a3:53:
2b:8d:bc:74:4d:83:18:d6:71:eb:08:c4:cc:97:e0:a4:af:5b:
2e:8e:43:d5:d3:d4:e2:23:02:12:3d:11:12:b1:b1:d8:36:9d:
38:4a:50:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:00 2026 by rpki-client