Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3D8353C210D11F1A90F4989DAE4EC9C.roa
File: A3D8353C210D11F1A90F4989DAE4EC9C.roa (raw, json)
Hash identifier: ZQPAcr6a6EBkszS4w3sxe5EZfCBBZ1tXZcfMh8qJ6DY=
Subject key identifier: 9F:17:C1:73:71:41:BB:B6:AD:61:DC:ED:D8:A8:40:7A:F2:E1:12:54
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A578
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3D8353C210D11F1A90F4989DAE4EC9C.roa
Signing time: Mon 16 Mar 2026 07:56:30 +0000
ROA not before: Mon 16 Mar 2026 07:56:25 +0000
ROA not after: Fri 16 Mar 2029 07:56:25 +0000
asID: 17561
IP address blocks: 156.247.133.0/24 maxlen: 24
156.247.134.0/24 maxlen: 24
156.247.135.0/24 maxlen: 24
156.247.136.0/24 maxlen: 24
156.247.137.0/24 maxlen: 24
156.247.138.0/24 maxlen: 24
156.247.139.0/24 maxlen: 24
156.247.140.0/24 maxlen: 24
156.247.141.0/24 maxlen: 24
156.247.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107896 (0x1a578)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 16 07:56:25 2026 GMT
Not After : Mar 16 07:56:25 2029 GMT
Subject: CN=69b7b7ae-204c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:89:63:7d:70:d4:b3:33:18:04:ab:9e:61:4e:
53:15:5f:c2:48:4d:a5:11:d8:f2:e5:9a:83:39:22:
12:71:fc:f9:aa:fc:38:d5:cd:a1:3c:a8:a7:e8:31:
b0:ef:e4:ac:b7:20:82:e7:13:82:d9:06:77:b8:32:
55:0d:77:79:f5:ac:a8:10:dc:0f:7d:a4:11:de:45:
96:81:17:26:09:01:43:6e:04:63:a5:76:9d:d4:73:
74:a9:4f:43:cb:b3:d1:78:9d:c1:aa:bf:43:c7:02:
36:b4:0c:94:63:5a:7c:f1:8b:94:da:4b:28:bb:93:
44:15:3f:61:82:38:00:e6:b4:e9:49:b4:b3:23:49:
fd:4d:14:f5:b5:89:12:c7:c1:0a:52:dc:95:8d:ad:
5b:0f:9e:ca:e0:37:5b:41:75:1e:2b:47:1b:9f:c8:
d7:34:40:57:c0:0d:35:28:83:69:7e:d8:54:dc:00:
aa:77:b4:28:3c:29:a4:2b:a2:d8:15:37:fa:d7:02:
be:1b:b6:f9:c4:f0:2a:4e:b0:71:5c:66:ac:b1:86:
07:67:6b:f3:bc:13:2c:6b:f8:37:7f:8a:88:96:a9:
69:9d:ac:2b:cf:a7:7e:bb:7e:b2:e2:7d:7d:4f:9e:
a5:86:a2:95:a1:19:f1:b7:62:a4:bf:28:a3:4f:dd:
6e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:17:C1:73:71:41:BB:B6:AD:61:DC:ED:D8:A8:40:7A:F2:E1:12:54
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3D8353C210D11F1A90F4989DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.133.0-156.247.142.255
Signature Algorithm: sha256WithRSAEncryption
91:db:92:fa:07:d6:15:e9:c1:31:e5:a4:33:e6:f0:d4:69:76:
d0:a1:44:b8:54:ed:49:99:22:04:83:5d:56:d8:c0:fa:12:2b:
81:f1:ce:dc:89:08:b5:d6:7a:88:3f:76:16:9e:01:c7:18:e2:
ba:af:c0:a4:0d:ed:5d:09:5d:41:bd:1c:5a:5c:eb:db:d1:02:
f3:b7:90:f0:da:af:f9:b4:63:75:bd:86:f0:d7:f4:0d:a3:c8:
f7:57:10:f6:db:92:65:f8:a5:33:dd:7a:71:b5:32:22:0a:eb:
34:b2:26:f8:24:6c:84:4f:5e:09:09:b1:a9:fa:57:0b:a8:37:
2e:cd:93:5f:d0:60:a3:f9:44:d3:8a:80:79:1f:6d:a3:c8:17:
60:a3:0c:e0:b3:f2:7e:38:9f:48:80:4d:43:6a:65:4c:74:d2:
88:c4:06:e8:ce:01:2b:f8:2d:b9:a0:a3:bb:35:2c:65:c7:81:
f7:39:cd:c8:3b:0b:d8:96:41:45:dc:ed:f4:0e:c8:90:9a:97:
b4:bf:2f:72:d4:a2:08:6e:c4:c3:73:74:f0:48:fa:eb:50:6d:
87:fa:6e:2a:22:7c:16:4a:31:3e:66:97:e3:37:fd:b0:ae:f2:
5f:cd:d4:7b:60:54:d6:f7:22:d7:cf:62:6f:48:88:3e:1e:20:
ef:1b:6c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:46 2026 by rpki-client