Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53E56C941D1A11F19AEB0F7CDAE4EC9C.roa
File: 53E56C941D1A11F19AEB0F7CDAE4EC9C.roa (raw, json)
Hash identifier: 2VuFI+5TovjIaOAVKAAlYSkcRk3OR+JCp17EVV2PkvQ=
Subject key identifier: F0:25:7D:4D:0F:EC:04:C3:33:FF:70:2E:95:04:75:90:7B:11:F2:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A3FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53E56C941D1A11F19AEB0F7CDAE4EC9C.roa
Signing time: Wed 11 Mar 2026 07:17:14 +0000
ROA not before: Wed 11 Mar 2026 07:17:10 +0000
ROA not after: Thu 09 Apr 2026 07:17:10 +0000
asID: 135377
IP address blocks: 156.232.92.0/24 maxlen: 24
156.232.93.0/24 maxlen: 24
156.232.94.0/24 maxlen: 24
156.232.95.0/24 maxlen: 24
156.232.96.0/24 maxlen: 24
156.232.97.0/24 maxlen: 24
156.232.98.0/24 maxlen: 24
156.232.99.0/24 maxlen: 24
156.232.100.0/24 maxlen: 24
156.232.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107516 (0x1a3fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 11 07:17:10 2026 GMT
Not After : Apr 9 07:17:10 2026 GMT
Subject: CN=69b116fa-6a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a9:7d:64:87:a6:65:bc:25:69:58:79:ba:80:
67:20:51:71:6e:25:87:db:be:08:fb:d9:f3:c7:ce:
0c:8e:da:aa:a7:53:27:c0:e4:d5:a3:82:65:c3:52:
3b:05:22:66:1a:7a:42:51:13:d1:f5:2d:4b:85:47:
cb:0c:90:09:e3:fb:b8:15:5a:9d:ac:0d:39:74:5d:
ed:21:41:57:e5:85:be:ca:df:05:32:1a:b7:3b:d7:
99:79:f3:e5:a9:b3:7e:aa:41:8a:67:41:1b:1e:19:
f1:e8:ac:b5:54:e5:61:8e:0f:14:4e:2e:62:b0:0e:
3f:ce:8f:f1:fb:a1:d1:fa:23:64:fc:80:45:21:e4:
3d:65:d9:78:8e:36:41:ea:f5:97:df:db:5f:0c:b9:
06:04:49:8a:ce:51:30:96:d4:ed:10:a4:26:8e:3b:
1b:96:97:9c:d9:9a:f0:04:77:99:29:94:d2:d4:1f:
76:d2:3a:63:df:4f:42:b2:a6:fc:53:96:d0:fc:07:
13:5c:e7:a4:6d:4b:8d:41:73:6b:58:91:4f:ad:d2:
60:c7:fb:6d:89:b6:70:31:89:27:7f:e3:3e:90:4e:
bc:43:a7:40:45:1f:41:27:66:6e:09:7d:81:2a:a0:
b1:0a:ed:81:9d:f4:4e:eb:ad:12:05:06:5f:8d:41:
81:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:25:7D:4D:0F:EC:04:C3:33:FF:70:2E:95:04:75:90:7B:11:F2:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53E56C941D1A11F19AEB0F7CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.92.0-156.232.101.255
Signature Algorithm: sha256WithRSAEncryption
0b:c5:0b:d1:41:08:4f:b8:ad:32:4d:fa:62:7a:69:b4:2b:dd:
c4:58:9a:ee:f2:c9:04:f3:f1:67:6f:78:df:c6:03:86:3a:20:
f5:d1:3b:d5:f6:90:6c:c9:89:4f:9b:64:ac:6c:dc:61:bf:d0:
42:e6:72:44:65:36:ca:f3:97:d0:c4:c6:f7:ff:8c:81:19:2f:
44:a3:ba:ba:05:14:67:6d:0f:4e:44:89:b6:0b:12:1d:15:51:
61:89:d3:5b:f8:95:2c:4a:3e:9a:bb:c8:c4:d2:7f:58:31:0d:
24:4d:b7:af:01:9b:fa:f0:a9:22:b6:9f:a8:32:77:2c:92:ee:
3d:80:2f:64:0d:d0:11:4b:81:b9:07:26:71:f4:3b:9d:40:fc:
40:20:97:aa:b8:fa:2c:6c:6a:e0:74:a4:4c:49:f0:db:ec:7b:
6e:27:00:61:62:7e:6c:cd:66:66:ed:fb:c1:11:22:96:54:9a:
67:33:b5:81:b5:61:9a:9e:76:24:6c:ba:51:ac:ff:13:c1:56:
58:0d:31:91:48:ba:0a:56:3e:d3:5e:32:9e:a5:66:98:04:12:
61:09:d0:54:a2:13:95:93:14:01:88:13:3b:1d:54:2c:0f:63:
4b:8c:0a:fe:b8:ef:0f:76:b0:e8:1f:1e:a8:0f:24:f9:53:fa:
e8:2c:88:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:22 2026 by rpki-client