Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D4A50C227C311F1AFC8309ADAE4EC9C.roa
File: 8D4A50C227C311F1AFC8309ADAE4EC9C.roa (raw, json)
Hash identifier: X2yvYHjtoUJ6qXJUjMd4pZv4Wxg/KnQt6BuPuvALHTE=
Subject key identifier: 64:DA:3E:0F:48:24:C1:24:C6:21:EA:90:E2:BF:1A:BD:C9:C9:91:DD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A740
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D4A50C227C311F1AFC8309ADAE4EC9C.roa
Signing time: Tue 24 Mar 2026 20:53:47 +0000
ROA not before: Tue 24 Mar 2026 20:53:28 +0000
ROA not after: Fri 01 May 2026 20:53:28 +0000
asID: 62240
IP address blocks: 156.229.1.0/24 maxlen: 24
156.229.124.0/24 maxlen: 24
156.229.175.0/24 maxlen: 24
156.229.237.0/24 maxlen: 24
156.229.238.0/24 maxlen: 24
156.229.244.0/24 maxlen: 24
156.229.245.0/24 maxlen: 24
156.229.246.0/24 maxlen: 24
156.229.254.0/24 maxlen: 24
156.229.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108352 (0x1a740)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 24 20:53:28 2026 GMT
Not After : May 1 20:53:28 2026 GMT
Subject: CN=69c2f9db-8fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:ab:04:90:e5:c4:63:90:44:82:ba:0c:c3:
d1:c4:8b:e7:7c:4d:8d:4e:bd:be:6a:2e:b8:92:f2:
33:99:07:a8:de:d5:b2:50:a4:e8:7e:1d:46:69:35:
c0:90:53:ef:47:57:4c:b6:28:73:ad:e8:10:db:62:
8d:fd:d1:05:2f:95:4b:98:cd:2c:b3:78:f6:2e:fb:
d2:df:94:71:3f:2e:f6:22:00:76:c9:a3:09:ab:30:
8d:68:7f:11:61:d4:73:a3:5c:a3:15:57:39:f0:ff:
35:1e:4e:33:e3:67:2c:6a:9f:73:c5:45:61:26:5f:
32:05:91:bc:78:96:c9:b4:3d:3f:20:dc:0d:94:61:
4d:f3:97:4e:a0:8b:d9:62:67:6a:35:24:1c:71:96:
cd:b5:8b:91:95:81:f2:3f:33:7d:d5:86:94:6a:f3:
a9:aa:5b:bf:ae:c4:de:5c:5d:49:58:ec:2d:0a:f2:
02:c9:7f:f0:c3:4f:5e:83:b6:04:14:aa:c7:9a:3e:
08:c7:68:ec:83:e6:c4:73:33:31:ec:b2:93:a6:2d:
af:53:db:37:1b:29:8b:06:56:3d:f0:11:0e:7c:85:
6f:e8:67:28:c3:a1:c4:9c:3a:81:5b:44:03:b5:77:
7e:f5:38:85:07:81:8a:41:49:61:58:b6:58:57:24:
41:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DA:3E:0F:48:24:C1:24:C6:21:EA:90:E2:BF:1A:BD:C9:C9:91:DD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D4A50C227C311F1AFC8309ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.1.0/24
156.229.124.0/24
156.229.175.0/24
156.229.237.0-156.229.238.255
156.229.244.0-156.229.246.255
156.229.254.0/23
Signature Algorithm: sha256WithRSAEncryption
59:24:90:f4:46:ee:99:98:06:f7:10:43:58:63:6d:f7:69:d9:
04:ec:2a:3b:98:08:b3:68:dc:6b:3f:dc:e2:0b:01:99:2f:53:
09:2e:6b:64:07:30:06:cc:23:20:d7:a0:9c:79:4f:0d:51:ba:
4b:d6:49:d0:f3:42:3e:9b:43:68:10:39:97:86:f6:50:77:f5:
24:af:f3:7a:81:db:67:60:cf:7a:df:ab:0c:f1:43:98:26:45:
36:0a:a7:09:b1:b2:1f:25:24:94:32:1c:bf:dc:1f:67:e8:f9:
44:d2:41:bf:db:1a:72:36:8d:4f:75:ad:5f:0d:7a:20:64:7a:
ae:4d:4e:b4:a8:0a:fa:85:4a:27:0d:45:ba:31:4e:12:e8:a1:
c4:12:8e:ad:68:7f:d8:d9:1b:5d:5b:ea:ec:59:d9:22:db:39:
7e:2a:72:dc:f4:20:65:e8:2e:b5:6d:3b:34:01:20:72:91:bc:
dc:05:1b:ea:e2:70:1b:d2:d9:4a:e8:21:9f:75:ca:62:64:31:
a4:25:aa:c9:5c:73:25:ff:60:e8:0e:e5:dc:5c:1f:5f:a2:80:
d4:41:20:7e:26:c7:c1:a3:d9:fa:3c:46:7d:10:94:e5:f3:e3:
51:5b:0a:4c:34:78:c4:88:44:5e:71:12:d5:f2:57:bf:fc:2c:
f6:8b:e2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:36 2026 by rpki-client