Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63F51FBE1E4911F1945593D7DAE4EC9C.roa
File: 63F51FBE1E4911F1945593D7DAE4EC9C.roa (raw, json)
Hash identifier: xdvcDcAlQ8BdXsSC8T25ABpnzebgQbxMm8Oiw64gEMQ=
Subject key identifier: 20:F3:68:E3:99:A3:01:59:A1:54:2A:77:40:2A:32:5D:EF:60:A3:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A4C6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63F51FBE1E4911F1945593D7DAE4EC9C.roa
Signing time: Thu 12 Mar 2026 19:26:38 +0000
ROA not before: Thu 12 Mar 2026 19:26:34 +0000
ROA not after: Thu 16 Apr 2026 19:26:34 +0000
asID: 22773
IP address blocks: 156.243.64.0/20 maxlen: 24
156.243.100.0/24 maxlen: 24
156.243.101.0/24 maxlen: 24
156.243.203.0/24 maxlen: 24
156.243.204.0/24 maxlen: 24
156.248.26.0/24 maxlen: 24
156.248.27.0/24 maxlen: 24
156.248.28.0/24 maxlen: 24
156.248.29.0/24 maxlen: 24
156.249.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107718 (0x1a4c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 12 19:26:34 2026 GMT
Not After : Apr 16 19:26:34 2026 GMT
Subject: CN=69b3136e-f98d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e6:d9:ee:c7:8e:ba:76:c3:c5:32:a8:ce:2a:
dc:91:4f:06:5c:cd:0c:9b:0c:0e:38:ef:f6:e2:35:
0b:8e:9d:fc:e4:10:72:39:87:21:40:5e:77:7e:87:
6e:aa:64:8d:9e:2e:99:c1:35:67:15:a8:c2:72:de:
57:9a:95:6f:48:10:64:e5:a3:cc:97:72:4a:9f:ce:
d5:2e:24:85:c6:bd:26:1e:5a:be:94:41:8a:ae:51:
47:67:00:51:80:86:00:b2:51:c3:5d:94:75:b4:02:
70:76:2c:f2:f7:ca:2b:0f:ea:4c:0e:02:0a:75:f1:
c0:b9:26:90:3c:ae:03:02:8a:cf:f0:c3:d6:d7:59:
a5:59:34:30:f5:7d:e3:dd:d9:e1:f8:f3:59:97:f1:
4b:26:99:15:b9:33:a5:19:2c:39:0c:3b:21:4d:50:
d4:a1:8e:5d:88:c4:d2:d0:d7:44:29:3b:3e:f5:be:
cd:b1:22:d2:ab:f9:45:b0:d0:ad:ad:e7:67:98:fe:
92:a7:39:88:08:b7:14:ca:4f:bb:28:bd:83:f1:c0:
86:6e:36:51:67:1f:e3:52:11:f7:cf:e3:99:c6:2c:
e8:af:48:0e:91:ff:83:60:6d:64:35:2a:d4:dc:cf:
f1:38:d1:5d:11:6d:35:47:8c:05:42:88:e0:e3:25:
d7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F3:68:E3:99:A3:01:59:A1:54:2A:77:40:2A:32:5D:EF:60:A3:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63F51FBE1E4911F1945593D7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.64.0/20
156.243.100.0/23
156.243.203.0-156.243.204.255
156.248.26.0-156.248.29.255
156.249.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:fa:b0:b6:0f:b8:16:c0:9a:0a:63:6d:49:a2:a8:56:66:82:
85:50:3f:5a:f7:90:a4:9c:e9:76:90:7a:62:ac:1c:43:0d:9e:
32:42:70:61:a3:ea:d3:ca:d6:cd:25:d9:1f:fc:66:29:b3:1f:
a5:4f:5c:04:36:9a:88:92:a2:ac:b1:67:23:c5:80:19:96:3f:
65:93:46:21:14:69:84:c1:db:cb:ae:96:6a:27:1f:2e:78:6b:
7a:50:a1:f4:59:52:4d:37:99:60:86:4f:42:dd:5c:0d:85:59:
b2:0e:ba:1a:14:34:8e:0a:a7:37:d4:85:dd:ce:5a:e6:c9:6a:
8c:c1:50:db:b3:de:fb:05:aa:7b:d9:c1:7c:64:8d:6a:de:80:
8f:65:6a:6c:2a:2d:94:8b:e1:d2:65:94:2d:b0:db:28:4d:09:
13:14:7f:58:2b:fe:9a:f9:d2:4b:a1:85:e5:c6:d1:e9:37:4b:
bd:16:a3:40:bd:ab:38:04:cd:ea:ba:16:b7:6b:30:2c:dc:26:
b2:35:2a:04:5a:08:69:45:b7:7b:d8:af:a3:c8:61:ac:28:0a:
7c:86:ac:5f:c0:6e:f3:4d:b3:17:c3:18:8a:8f:1e:98:90:25:
e1:0f:3b:a5:62:e1:fc:fa:c6:bb:13:18:37:41:be:67:86:1a:
6e:38:4b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:35 2026 by rpki-client