Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3059F0C1D5011F1B968C9B1DAE4EC9C.roa
File: A3059F0C1D5011F1B968C9B1DAE4EC9C.roa (raw, json)
Hash identifier: IL6Au7uX+bxNFGbMDewAQBG7vj071f8cvobvfUnw2yY=
Subject key identifier: 76:C8:A8:37:C5:7D:9D:0F:41:CD:BC:48:26:CB:F7:32:5E:97:4F:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A441
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3059F0C1D5011F1B968C9B1DAE4EC9C.roa
Signing time: Wed 11 Mar 2026 13:46:00 +0000
ROA not before: Wed 11 Mar 2026 13:45:55 +0000
ROA not after: Mon 20 Apr 2026 13:45:55 +0000
asID: 214413
IP address blocks: 156.226.131.0/24 maxlen: 24
156.226.132.0/24 maxlen: 24
156.226.218.0/23 maxlen: 24
156.226.243.0/24 maxlen: 24
156.226.244.0/24 maxlen: 24
156.243.113.0/24 maxlen: 24
156.243.114.0/24 maxlen: 24
156.252.30.0/23 maxlen: 24
156.255.59.0/24 maxlen: 24
156.255.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107585 (0x1a441)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 11 13:45:55 2026 GMT
Not After : Apr 20 13:45:55 2026 GMT
Subject: CN=69b17217-39e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a5:13:e5:98:81:9e:52:dc:06:71:71:e3:ed:
64:d1:94:e2:80:9f:99:39:1e:2b:fb:28:4d:9d:9e:
08:28:70:d7:7f:83:f5:b1:03:19:5b:39:49:38:f4:
34:84:49:5a:de:9b:15:0c:2e:9a:b6:de:a5:18:44:
06:88:f7:16:58:fb:b3:a1:80:e2:d9:71:86:1c:e3:
fd:40:87:2a:f4:cc:f7:7c:ea:f2:26:fb:29:c9:6c:
e5:08:75:66:6f:fc:2d:f8:99:56:5a:b7:c5:2f:fe:
25:0c:cd:c0:d5:ef:9e:79:d8:69:7c:ef:0a:d5:85:
f3:1d:63:46:9f:36:5b:51:0a:d2:41:62:37:4a:e7:
26:d6:20:08:4e:a2:cc:1f:01:61:0c:54:89:3a:b4:
6f:93:fc:4f:88:69:9a:f5:0c:d8:c4:09:9b:ca:d9:
8b:dd:06:a7:8f:2e:37:c5:ea:19:8b:d4:89:b7:20:
81:88:10:48:13:f6:b9:65:58:eb:a8:83:3c:89:3d:
f7:a2:85:f1:49:b0:98:95:f9:fd:ba:93:43:c2:d4:
9b:b6:f3:9a:d3:8b:73:00:89:79:d3:be:2d:f2:6a:
48:b7:0a:22:dd:c8:4f:09:55:cc:78:49:6f:d9:59:
fe:43:b7:08:37:50:8f:af:69:99:a3:52:3c:93:02:
52:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C8:A8:37:C5:7D:9D:0F:41:CD:BC:48:26:CB:F7:32:5E:97:4F:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3059F0C1D5011F1B968C9B1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.131.0-156.226.132.255
156.226.218.0/23
156.226.243.0-156.226.244.255
156.243.113.0-156.243.114.255
156.252.30.0/23
156.255.59.0-156.255.60.255
Signature Algorithm: sha256WithRSAEncryption
8c:ec:e1:90:7a:e1:15:c9:b2:40:c2:63:98:48:82:72:5b:d2:
eb:6c:d7:12:2e:f1:0b:e9:d2:a4:ae:c9:af:76:f0:29:56:2c:
02:ff:d8:bd:96:6f:f4:26:36:40:b1:32:34:b7:8d:e1:59:7c:
50:24:54:93:a1:dc:db:27:c3:ce:11:fe:f9:18:8a:af:91:c4:
8e:77:3f:79:fc:02:5a:a4:37:7b:64:d6:3b:92:33:25:b0:c1:
40:68:11:4c:6c:40:dd:00:15:dc:7e:65:b4:90:4e:b2:48:ab:
89:d7:67:9e:e3:15:7a:f4:54:e5:2b:cb:42:7e:2c:ce:7b:37:
f4:49:b5:14:fc:55:00:af:d0:e6:50:d8:05:eb:ec:e8:53:b9:
62:ec:05:ea:53:41:7b:85:02:85:4b:57:3b:e5:ec:dd:54:16:
ed:8d:8d:2e:0d:d0:43:31:18:3a:f8:87:be:c9:26:2c:da:c0:
db:11:f1:60:1e:be:47:15:4d:45:93:5f:c4:43:db:5f:0e:db:
91:cc:63:d2:ef:1c:2e:b5:b0:a9:ff:6c:71:57:dd:b6:cf:4c:
42:bd:6c:6b:d0:81:6d:98:1f:90:2c:a1:8e:f7:1a:57:03:17:
04:2e:ef:85:f6:83:f8:d1:bf:9f:17:d5:1c:a7:c0:04:9b:d7:
af:95:69:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:44 2026 by rpki-client