Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDE6C298281B11F1979B03ADDAE4EC9C.roa
File: CDE6C298281B11F1979B03ADDAE4EC9C.roa (raw, json)
Hash identifier: Q9q6GP75BMyuxmw5VGllGRGKHqho/mCYvO7f08+RQBg=
Subject key identifier: E5:E8:08:8A:F6:33:30:18:99:58:FF:4C:6F:F2:8F:E5:BE:2A:9F:77
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A747
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDE6C298281B11F1979B03ADDAE4EC9C.roa
Signing time: Wed 25 Mar 2026 07:25:31 +0000
ROA not before: Wed 25 Mar 2026 07:25:26 +0000
ROA not after: Wed 31 Mar 2027 07:25:26 +0000
asID: 141109
IP address blocks: 156.230.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108359 (0x1a747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 25 07:25:26 2026 GMT
Not After : Mar 31 07:25:26 2027 GMT
Subject: CN=69c38deb-3387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6d:da:1a:32:90:59:f8:6f:3a:9b:f0:01:1a:
8b:cc:a7:1d:e8:be:23:50:7f:0f:c5:6e:1f:56:76:
99:c7:b5:f9:da:d9:71:35:c7:41:17:68:d8:42:f2:
b8:33:07:d2:d6:d7:02:2e:b7:aa:e9:e4:ec:2c:fc:
a4:f2:b8:ae:33:83:bf:75:ae:ea:4d:11:69:41:46:
71:b1:76:b7:9b:b5:f8:fd:47:2f:fc:66:35:55:2b:
3e:54:96:a4:35:b5:cb:84:85:15:83:fe:87:4c:6b:
38:53:30:45:61:33:89:0f:de:94:b8:9e:ff:2a:7b:
11:85:ff:e3:c8:ce:ae:9d:c3:02:c9:88:45:11:a4:
0a:27:5f:07:aa:c8:38:89:f9:6c:52:bf:ff:4d:fa:
ed:be:0c:56:05:a2:72:bc:81:36:85:36:54:c0:32:
d0:52:e4:e0:1a:91:28:8f:70:cf:89:cb:fb:37:37:
5a:8a:06:d7:e9:d1:ad:35:e2:d7:57:13:b3:c3:48:
56:a2:36:dd:18:83:55:5f:38:4e:ca:d3:41:ed:e1:
13:34:19:93:c9:13:83:82:13:7d:4f:e8:0f:78:dd:
09:f5:c1:90:f3:66:bf:64:4d:94:f1:31:67:bb:c5:
23:41:e5:b3:a0:1b:a3:2d:4b:fe:23:7d:21:78:e5:
4b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E8:08:8A:F6:33:30:18:99:58:FF:4C:6F:F2:8F:E5:BE:2A:9F:77
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDE6C298281B11F1979B03ADDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.22.0/24
Signature Algorithm: sha256WithRSAEncryption
52:0e:ef:c6:06:8f:16:2f:39:51:4e:78:21:de:41:59:63:83:
da:7c:3d:60:43:5e:4a:34:b3:39:46:91:d7:1f:2c:65:94:85:
14:68:53:72:a1:ae:00:6b:27:40:58:d4:63:e2:19:10:56:cc:
6a:06:9d:87:fa:b9:8c:7b:6e:06:83:1a:58:32:59:76:b7:48:
a3:eb:6d:93:92:a3:2c:04:18:07:3d:45:ae:42:0d:25:ca:b8:
dc:65:fe:71:da:14:64:cc:eb:03:d3:7e:03:b5:12:3b:45:3f:
f9:45:69:5d:85:3b:e3:26:24:f1:14:11:72:a3:ff:82:a6:fd:
8d:f9:3a:b9:10:01:f8:00:7d:a4:11:28:41:96:d2:1e:21:fb:
5c:52:48:88:56:ec:4a:55:f1:1f:94:a9:59:07:6e:cc:73:e9:
12:14:0d:61:a1:78:cf:d7:60:f6:a1:8a:b0:ee:8a:d1:4d:ca:
d8:b5:c0:a4:b9:5c:51:f5:0a:33:50:4a:48:4a:fd:28:6a:48:
40:97:dc:87:e4:66:80:24:e2:8c:9a:87:ef:1b:b1:93:a7:fb:
e5:ac:03:a8:c0:11:c0:47:06:42:88:b0:9b:2e:67:25:58:78:
d4:c4:25:7e:1b:ca:23:e0:55:c6:57:93:bd:5e:7e:a8:d1:42:
c9:c6:e8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:24 2026 by rpki-client