Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D1ED432408311F190863DA2CE1D38B0.roa
File: 8D1ED432408311F190863DA2CE1D38B0.roa (raw, json)
Hash identifier: yYCOe3OUagmltLaSurQNhK/AMyHE0pB25c1CCACWdJ0=
Subject key identifier: F8:91:E2:E8:69:F0:4B:7F:DF:C1:38:FA:B9:60:24:2D:10:3D:9E:AC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AF1B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D1ED432408311F190863DA2CE1D38B0.roa
Signing time: Sat 25 Apr 2026 08:48:38 +0000
ROA not before: Sat 25 Apr 2026 08:48:33 +0000
ROA not after: Mon 01 Jun 2026 08:48:33 +0000
asID: 984
IP address blocks: 156.242.66.0/24 maxlen: 24
156.242.67.0/24 maxlen: 24
156.242.68.0/24 maxlen: 24
156.242.80.0/24 maxlen: 24
156.242.89.0/24 maxlen: 24
156.242.90.0/24 maxlen: 24
156.242.92.0/24 maxlen: 24
156.242.93.0/24 maxlen: 24
156.243.229.0/24 maxlen: 24
156.249.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110363 (0x1af1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 08:48:33 2026 GMT
Not After : Jun 1 08:48:33 2026 GMT
Subject: CN=69ec7fe6-c089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f6:13:10:99:76:49:d7:ad:2f:b2:09:19:c3:
8a:a2:d1:e9:7e:b7:1b:39:3c:cc:ab:d3:47:95:70:
4a:65:04:85:4c:70:77:94:81:45:62:e8:1a:96:36:
44:6b:c6:37:ea:7a:89:9b:ef:85:0d:94:6f:a7:48:
fb:25:4f:bc:0a:a3:4f:f0:42:7b:12:6a:cd:cf:00:
4d:b3:57:82:04:15:70:cc:a2:ca:af:57:4d:84:d9:
09:06:dd:bb:e4:32:d8:85:ed:a7:35:a9:a9:6e:ab:
1f:32:bf:ad:98:5d:72:2d:04:b6:04:71:64:3a:d5:
f2:f7:6e:07:a4:90:3b:6a:20:33:ab:33:1b:08:3a:
11:17:4d:63:70:b1:95:81:45:c7:b7:ed:c3:c8:b9:
b8:a0:ab:db:53:0a:27:d3:84:76:d8:4e:19:01:04:
49:08:11:b7:a8:df:f9:8a:d3:0b:87:f7:f2:a7:29:
14:90:fc:de:f5:3e:75:60:14:8a:90:04:e2:c5:9d:
8c:16:50:22:43:0d:53:e5:6e:dd:1e:17:6b:84:a3:
03:f4:f6:2c:5f:f8:b4:b0:53:80:15:04:4d:07:4a:
84:f8:ea:67:2d:e2:1f:2f:6b:1e:e0:06:8a:5f:05:
fe:df:5a:7d:85:9b:30:2c:a9:53:ce:76:af:dc:e2:
ce:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:91:E2:E8:69:F0:4B:7F:DF:C1:38:FA:B9:60:24:2D:10:3D:9E:AC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D1ED432408311F190863DA2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.66.0-156.242.68.255
156.242.80.0/24
156.242.89.0-156.242.90.255
156.242.92.0/23
156.243.229.0/24
156.249.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:e2:f2:16:67:57:20:56:62:d5:5d:a3:14:ae:06:e0:4b:b6:
a6:f1:51:b7:a6:07:72:99:6c:de:ee:3f:87:29:af:92:d8:55:
11:90:6c:d4:a1:a7:89:ac:39:83:77:b1:db:e8:20:ca:82:fa:
d7:3c:00:47:66:cc:b5:4d:a9:13:c3:d3:46:5a:56:df:d0:ae:
0a:8b:d7:83:18:9e:f6:32:41:fa:f9:1a:ac:3f:41:bf:65:1c:
1c:bd:43:4b:48:99:8d:b9:4c:29:2c:99:9f:de:d7:3b:31:06:
70:95:b3:f3:fb:dd:11:a1:da:a7:01:c7:01:96:35:ac:7f:34:
eb:d2:82:e2:ba:ef:0a:bb:37:7a:59:13:a3:41:4e:ca:c6:bf:
3f:42:b2:f3:07:68:00:e4:7d:b5:0d:ba:84:93:cc:8a:04:5d:
24:0f:db:54:cb:ce:e5:09:2f:35:72:80:34:d3:37:91:41:a6:
e5:63:1b:17:23:ce:9b:ea:1d:e0:1e:dd:fc:52:d5:9d:4b:23:
8b:8b:40:ec:bb:68:02:3d:bd:96:a2:a9:b5:30:5f:e5:76:70:
23:5e:c1:6b:de:49:06:03:7c:2b:e5:50:fe:2e:e5:07:25:6b:
92:4b:bc:cd:5f:46:d7:66:32:56:2c:f2:80:f0:ad:5a:90:0b:
60:6a:8d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:26:35 2026 by rpki-client