Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A015214A1DF611F19D00D17EDAE4EC9C.roa
File: A015214A1DF611F19D00D17EDAE4EC9C.roa (raw, json)
Hash identifier: UF0p/LsRG4dFPyjn/RYK3McijIYIvLBPnYWM5iTJnA8=
Subject key identifier: D7:C2:EC:FC:09:86:2A:45:47:22:70:BF:08:D8:BE:10:A1:89:9C:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A484
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A015214A1DF611F19D00D17EDAE4EC9C.roa
Signing time: Thu 12 Mar 2026 09:34:11 +0000
ROA not before: Thu 12 Mar 2026 09:34:07 +0000
ROA not after: Thu 16 Apr 2026 09:34:07 +0000
asID: 22773
IP address blocks: 156.238.154.0/24 maxlen: 24
156.238.155.0/24 maxlen: 24
156.238.156.0/24 maxlen: 24
156.238.157.0/24 maxlen: 24
156.238.158.0/24 maxlen: 24
156.238.159.0/24 maxlen: 24
156.238.160.0/24 maxlen: 24
156.242.16.0/24 maxlen: 24
156.242.17.0/24 maxlen: 24
156.242.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107652 (0x1a484)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 12 09:34:07 2026 GMT
Not After : Apr 16 09:34:07 2026 GMT
Subject: CN=69b28893-b17f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:41:a9:54:aa:63:da:86:0d:70:bc:9a:d5:25:
7f:a9:3e:85:44:b1:5b:d3:12:29:d4:ed:e7:3d:c7:
a0:ad:5c:3a:3a:72:f9:ea:a8:96:48:7f:76:cc:c9:
ac:86:42:f1:09:2f:84:09:dd:95:de:e8:1e:df:20:
f5:2f:e9:3e:a2:dc:d0:59:8f:4a:88:54:b6:58:6d:
fd:71:9e:ac:63:e9:ea:61:4c:3a:97:b2:7e:ad:af:
62:8f:5b:0c:29:33:ea:4c:60:87:52:46:cd:55:e4:
69:a1:6e:7f:94:86:1b:9f:7a:fe:6b:b3:6a:0a:ef:
f3:14:51:d0:11:cd:2d:be:50:88:9e:d4:e2:e5:a6:
2a:02:cd:a4:54:e0:6f:b8:39:51:2d:7a:b2:79:04:
07:be:1b:54:56:7e:15:cf:e6:71:54:d6:62:cc:eb:
5f:b9:30:52:64:ed:1e:fc:62:4d:16:c5:3d:7a:e6:
8b:5d:38:cb:b7:2b:92:87:d5:a9:11:aa:f9:4e:b1:
7d:49:bd:84:aa:09:b5:dc:3a:2e:67:9e:1a:c5:e4:
8d:2a:30:e8:b9:b2:43:55:9d:b7:89:6e:42:93:b9:
42:89:ef:cf:3e:14:ad:f5:7c:eb:74:6a:ca:1e:c4:
da:02:04:ae:4b:c1:b1:1a:c9:36:90:56:f3:5f:03:
e7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C2:EC:FC:09:86:2A:45:47:22:70:BF:08:D8:BE:10:A1:89:9C:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A015214A1DF611F19D00D17EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.154.0-156.238.160.255
156.242.16.0-156.242.18.255
Signature Algorithm: sha256WithRSAEncryption
47:9a:23:93:85:95:ae:ad:42:47:79:e8:45:d0:6f:26:ab:7e:
dc:0f:3d:eb:63:a4:a9:e7:48:b7:78:fc:bc:a8:81:44:f6:d5:
d5:b8:f3:7c:f9:6a:89:10:40:55:8f:af:9c:a0:47:23:56:88:
5a:89:2c:34:7c:0d:4f:4d:de:4d:08:28:5e:9f:c7:ac:a2:ed:
ab:b0:cd:7d:11:70:e2:c0:d8:99:3e:88:c2:b2:8b:18:b5:66:
cc:1f:47:0b:7b:2a:70:6f:af:76:89:77:ec:e2:be:75:35:b2:
73:83:b5:3d:22:01:22:4c:0d:7a:07:8b:35:d3:ad:b3:24:78:
8e:85:05:53:f9:06:dc:4b:d8:29:21:32:59:c3:5c:c0:c5:5c:
2e:e9:3a:52:67:4a:33:cd:7c:13:20:a7:fa:0f:c7:3a:a2:70:
ca:ac:f4:8a:cc:92:62:ea:d9:4d:32:2b:4e:48:74:bc:6c:bb:
60:fc:6b:a2:24:4b:ff:fc:df:aa:93:5c:0d:f7:52:11:f4:e1:
1b:83:d8:f3:b2:f7:af:52:14:61:af:06:92:cc:a4:cf:cc:a2:
41:8e:9c:7c:2a:30:03:8c:ac:b2:ef:b1:7d:d4:3b:f0:a1:0a:
88:e4:6d:1d:f1:67:c7:c6:7c:1d:e7:23:9f:78:7d:d8:68:ed:
2a:95:35:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:23 2026 by rpki-client