Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE4EA08A27AE11F1830F5EA3DAE4EC9C.roa
File: FE4EA08A27AE11F1830F5EA3DAE4EC9C.roa (raw, json)
Hash identifier: b0LHTJL/vtHm+11z2MUucPiU8oRD4rembMmodv2mWSg=
Subject key identifier: 0D:8C:D4:E8:24:C6:89:DD:DE:E7:17:1C:83:2F:24:7B:AA:1A:8E:4A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A718
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE4EA08A27AE11F1830F5EA3DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 18:26:37 +0000
ROA not before: Tue 24 Mar 2026 18:26:32 +0000
ROA not after: Wed 08 Apr 2026 18:26:32 +0000
asID: 131471
IP address blocks: 156.238.64.0/24 maxlen: 24
156.238.65.0/24 maxlen: 24
156.238.66.0/24 maxlen: 24
156.238.67.0/24 maxlen: 24
156.238.68.0/24 maxlen: 24
156.238.69.0/24 maxlen: 24
156.238.70.0/24 maxlen: 24
156.238.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108312 (0x1a718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 24 18:26:32 2026 GMT
Not After : Apr 8 18:26:32 2026 GMT
Subject: CN=69c2d75d-b232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b9:1a:da:80:66:2b:bd:30:c6:c0:9a:e9:3b:
ce:91:f5:09:d9:98:a5:a6:33:a6:f0:2c:fb:fa:5d:
a4:08:7c:4e:e0:2b:2f:e3:24:41:a9:d6:e3:74:6a:
36:97:ab:21:f0:6e:12:7d:d6:97:be:f5:62:60:5d:
23:58:86:12:b3:4d:9c:fe:fc:50:07:bd:ce:73:ca:
71:94:9e:92:db:a7:1c:11:bc:b0:29:3a:11:32:83:
f0:09:e1:cf:1e:92:88:d7:84:31:02:a3:b4:02:3e:
8b:90:b6:50:a6:72:ac:0e:d4:79:bd:31:05:f1:5d:
b9:32:6d:8a:2f:bd:84:34:84:53:22:1b:61:43:f2:
a8:f5:fc:32:9b:72:06:7a:66:97:16:58:14:01:08:
2b:c3:fa:11:e0:c4:be:24:6c:b0:3a:6f:b8:c9:73:
4f:a4:db:c1:a4:ef:c2:65:7d:f0:b1:3a:40:61:ab:
a4:9c:68:72:93:27:85:aa:9a:97:db:12:a4:52:4b:
c4:96:4e:54:95:7c:01:4a:8c:43:aa:b5:90:61:5a:
b2:c8:e6:b8:de:7b:e8:7f:83:76:2a:4f:71:41:18:
1d:86:42:51:2b:f9:87:50:18:d8:ac:d2:17:33:16:
8d:0c:28:42:bc:ec:77:8a:d1:02:0c:b3:cc:a2:dd:
40:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8C:D4:E8:24:C6:89:DD:DE:E7:17:1C:83:2F:24:7B:AA:1A:8E:4A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE4EA08A27AE11F1830F5EA3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.64.0/21
Signature Algorithm: sha256WithRSAEncryption
a0:7a:d2:f8:2f:e1:2f:97:b0:2f:b7:e0:fa:4a:32:a2:50:bf:
b3:3c:b6:20:a2:d5:e7:95:f6:45:02:ab:a7:48:91:8a:a9:06:
5d:2f:bb:8e:d8:9c:f2:46:df:6b:76:b5:9f:15:ea:0b:45:37:
07:40:dc:d3:e1:4b:81:d8:aa:6d:00:1e:fc:20:a7:1e:cc:98:
c2:03:55:19:29:05:de:15:6e:e8:be:8a:6d:68:5b:ec:67:0e:
89:c6:e5:b9:89:d7:83:65:27:d0:72:a2:b7:a4:7a:8d:f7:f3:
ff:1f:67:11:10:6a:08:af:bd:53:9a:b4:27:b9:f1:59:89:e9:
93:c1:38:ea:d5:e3:e2:e5:ce:18:05:36:19:33:a3:37:a6:71:
a8:d3:8f:15:8d:dc:66:7e:6f:d6:8f:14:ec:ec:71:0c:5a:dd:
f0:96:0b:2a:82:e0:af:0a:9e:a9:51:3e:26:69:e4:8b:08:5c:
98:67:07:15:da:ff:ef:b6:6a:ed:cc:91:0e:bc:a6:06:ce:46:
82:cd:dd:46:09:66:85:40:e9:d2:62:cf:ce:48:f2:1a:bf:c3:
66:04:0c:f7:15:ab:eb:3d:89:43:9b:8b:8a:ce:88:45:67:f6:
99:cd:33:e6:3b:2f:38:37:55:2f:6b:03:6a:41:00:1a:e9:80:
34:f6:5d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:12 2026 by rpki-client