Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/818AB2981DF211F18A1986E5DAE4EC9C.roa
File: 818AB2981DF211F18A1986E5DAE4EC9C.roa (raw, json)
Hash identifier: YG6vbnBDVsJokn3iYe93CN5pG4mLrw+nk7Vqb2cJ8es=
Subject key identifier: 44:94:60:3D:68:5C:BA:97:63:CB:96:03:25:7A:FA:CC:8D:1B:59:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A472
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/818AB2981DF211F18A1986E5DAE4EC9C.roa
Signing time: Thu 12 Mar 2026 09:04:42 +0000
ROA not before: Thu 12 Mar 2026 09:04:37 +0000
ROA not after: Thu 16 Apr 2026 09:04:37 +0000
asID: 22773
IP address blocks: 156.233.243.0/24 maxlen: 24
156.233.244.0/24 maxlen: 24
156.233.245.0/24 maxlen: 24
156.233.246.0/24 maxlen: 24
156.233.247.0/24 maxlen: 24
156.233.248.0/24 maxlen: 24
156.233.249.0/24 maxlen: 24
156.233.250.0/24 maxlen: 24
156.233.251.0/24 maxlen: 24
156.238.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107634 (0x1a472)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 12 09:04:37 2026 GMT
Not After : Apr 16 09:04:37 2026 GMT
Subject: CN=69b281aa-d401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:1e:d5:55:7a:8d:b3:84:5e:df:16:a3:f7:
08:ca:40:10:41:4e:0f:71:6b:92:63:fc:8f:6b:9d:
6b:b9:66:44:54:62:d8:1c:9c:52:35:07:10:b6:c9:
ba:f8:49:ad:97:db:2d:f9:16:30:92:b9:0b:d2:53:
6d:09:c9:b5:b6:43:b1:8f:15:26:b3:d0:e4:b3:5e:
32:18:fc:0c:b3:65:1c:50:23:58:83:52:4e:53:db:
93:7d:86:a3:52:0f:17:de:2a:86:62:0a:5d:27:18:
05:db:cd:f8:7d:4b:65:bc:ce:e3:97:c6:3c:06:3a:
34:ce:bf:64:51:3f:ea:68:8a:35:98:7a:29:40:28:
1b:d5:f5:bd:56:d5:fa:be:c5:ae:12:ed:14:57:8e:
cd:e4:ec:85:89:87:2b:c6:1a:9c:b6:14:64:23:67:
ea:45:04:3f:ef:8e:16:81:f0:45:a2:48:f2:8f:ab:
02:8d:e2:3f:aa:a3:7f:19:e5:d7:21:8e:02:0b:e2:
1b:45:8e:35:e9:9f:f3:ce:6e:04:07:64:da:73:77:
25:22:e6:81:fc:a2:59:22:6d:c8:9a:ff:1b:30:52:
5c:c2:82:d8:12:4d:88:e5:99:bc:3c:3c:4b:53:df:
a7:5e:45:4e:e1:45:72:69:d6:0d:2f:f7:48:8e:d1:
ea:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:94:60:3D:68:5C:BA:97:63:CB:96:03:25:7A:FA:CC:8D:1B:59:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/818AB2981DF211F18A1986E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.243.0-156.233.251.255
156.238.161.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:a1:cf:92:c0:ab:1a:bb:cd:b5:f9:8e:1f:35:43:90:86:91:
63:a5:9c:b4:79:d5:21:61:76:05:12:11:aa:72:7a:e6:43:67:
8e:49:ae:d7:12:e8:dc:c3:67:6c:6f:11:82:ac:68:c9:76:f8:
00:4d:97:b5:5b:c5:38:17:37:32:d8:84:5b:d2:36:a8:90:98:
88:de:a6:b8:a6:38:83:a0:3d:a7:87:de:a2:58:f8:28:47:87:
74:4f:90:8b:94:37:8c:97:65:ba:98:8d:f5:0a:4e:df:34:92:
f6:8d:83:d1:f9:63:94:19:09:cb:28:8c:cc:cd:57:f5:8e:ab:
48:91:7f:6e:a9:5b:6d:65:42:50:87:f6:20:67:f6:c4:db:59:
f2:f1:c6:33:83:95:b8:0a:3d:ed:98:7f:f7:97:9b:27:4d:75:
73:dd:a8:74:2a:2d:7b:41:bc:44:31:78:fd:52:ea:f7:ea:2a:
23:c5:6b:6e:46:c2:19:af:73:70:09:4a:f8:6b:f2:b3:f5:d6:
48:9c:25:6f:4f:ce:60:6f:09:9f:02:0b:6e:7b:36:c9:7a:6e:
82:06:d0:64:df:ec:ff:91:a2:a5:45:ad:0c:f9:0b:74:d6:3f:
f7:af:ec:9f:53:a6:62:cc:e5:60:1d:35:cb:fb:0d:2c:42:31:
ba:77:0f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:42 2026 by rpki-client