Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC66FB4E269011F18D6939ACDAE4EC9C.roa
File: DC66FB4E269011F18D6939ACDAE4EC9C.roa (raw, json)
Hash identifier: Kch3ZXdR79/JzNTYdBsl6fEPgSso40MvNbhj72CZRsU=
Subject key identifier: E2:68:C1:93:30:DC:67:7B:90:96:65:47:42:A6:AC:84:CC:95:62:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A6CB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC66FB4E269011F18D6939ACDAE4EC9C.roa
Signing time: Mon 23 Mar 2026 08:18:25 +0000
ROA not before: Mon 23 Mar 2026 08:18:19 +0000
ROA not after: Thu 30 Apr 2026 08:18:19 +0000
asID: 137547
IP address blocks: 156.245.242.0/24 maxlen: 24
156.245.243.0/24 maxlen: 24
156.245.248.0/24 maxlen: 24
156.245.249.0/24 maxlen: 24
156.245.250.0/24 maxlen: 24
156.245.251.0/24 maxlen: 24
156.245.252.0/24 maxlen: 24
156.245.253.0/24 maxlen: 24
156.245.254.0/24 maxlen: 24
156.245.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108235 (0x1a6cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 23 08:18:19 2026 GMT
Not After : Apr 30 08:18:19 2026 GMT
Subject: CN=69c0f750-8380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8a:37:9e:8c:b0:3c:3f:32:ac:f3:c1:25:d3:
a0:71:16:f5:40:1c:d9:91:11:60:3b:de:d1:2a:be:
73:4d:ee:f2:49:65:ff:bd:6e:3e:0e:84:eb:9c:e5:
2e:87:a8:85:cf:4f:01:09:81:0f:4e:93:c7:2f:af:
2d:07:ad:4f:87:1f:cd:af:ef:70:80:e6:a6:f2:4e:
eb:ef:ec:13:1c:87:90:5b:d3:0b:bd:d7:67:f9:b3:
92:1b:96:98:1f:d4:75:90:7e:f1:c4:7b:86:f4:7a:
95:30:7d:f5:65:9b:d9:9c:51:e1:10:3b:a0:d7:e5:
ac:16:8e:b9:f0:28:b5:2f:1b:60:a1:47:09:53:c3:
82:d0:e0:c4:2b:a3:01:5b:f9:9b:93:d3:bd:86:c8:
f2:d9:fe:86:60:b5:d4:4f:42:fb:c9:c1:5c:08:3d:
a2:84:b5:33:f1:81:a6:9e:a9:fd:a0:b4:3b:ac:1a:
cf:e7:6f:07:f8:1a:e1:07:e9:7a:91:b6:48:f0:4a:
61:9f:4e:3b:11:db:9e:ee:32:0e:6e:21:bb:f1:c5:
74:b8:a0:9f:40:38:80:3d:cc:59:42:75:35:a9:06:
8d:bf:c1:9f:08:99:a2:1e:79:52:71:aa:c1:6d:ed:
3d:1d:db:5d:61:4a:6b:67:11:aa:93:c2:d6:5a:50:
6b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:68:C1:93:30:DC:67:7B:90:96:65:47:42:A6:AC:84:CC:95:62:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC66FB4E269011F18D6939ACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.242.0/23
156.245.248.0/21
Signature Algorithm: sha256WithRSAEncryption
60:bc:80:f1:55:40:dc:86:3b:75:e3:36:2e:4b:e3:aa:ea:e7:
8c:ae:2d:20:a9:de:3e:26:f3:22:1b:51:bd:48:5d:55:4f:86:
ab:69:41:f1:fd:14:44:c0:3b:94:e2:c3:8b:6e:3e:a1:7d:b4:
ae:53:b3:87:54:fc:23:dc:9a:5b:48:1b:03:6c:47:02:b4:f8:
7d:01:41:33:50:6c:4a:9e:0a:bb:37:58:94:68:7c:6f:17:27:
7a:8d:d7:55:86:1e:3c:2d:49:8f:02:a8:d3:2d:1e:2f:5b:f5:
cb:13:9b:7b:5f:08:cb:45:0e:a9:e3:6c:4f:80:83:ed:8e:11:
27:48:bc:2a:72:86:46:c3:a4:e0:b0:c9:bd:c8:b6:3c:14:b7:
34:ae:36:83:25:ba:82:3e:d9:61:fd:d6:96:3e:92:5a:76:fd:
af:72:f1:b9:b0:6e:1e:83:c4:96:70:bf:12:31:9c:60:ca:45:
60:e8:72:3c:13:36:f5:d7:1a:4f:75:ba:76:53:39:40:22:c9:
24:19:4e:71:3c:0c:42:8f:91:91:d1:2a:ee:ff:98:9b:bf:cb:
1a:da:c3:97:2f:05:d5:10:73:6d:24:0a:7e:5b:0f:16:eb:3e:
f7:bc:e0:8c:1b:42:a8:e7:ed:5e:2b:5f:ba:8d:09:ad:d7:16:
01:59:02:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:21 2026 by rpki-client