Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FED24B8C4A5F11F1A8BE8414CF1D38B0.roa
File: FED24B8C4A5F11F1A8BE8414CF1D38B0.roa (raw, json)
Hash identifier: 6CHPL2aHyP+v98ts2YRxNuU1IRJ39QsFlIA4E44qMRw=
Subject key identifier: DB:41:13:19:A5:2C:97:9F:70:7A:74:DA:76:AC:BF:E1:01:FE:7F:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B282
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FED24B8C4A5F11F1A8BE8414CF1D38B0.roa
Signing time: Thu 07 May 2026 21:59:18 +0000
ROA not before: Thu 07 May 2026 21:59:14 +0000
ROA not after: Fri 22 May 2026 21:59:14 +0000
asID: 8796
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111234 (0x1b282)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 21:59:14 2026 GMT
Not After : May 22 21:59:14 2026 GMT
Subject: CN=69fd0b36-1c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:4e:c1:f5:bf:2a:05:68:ca:8e:a4:48:38:
56:23:b9:26:8e:00:1e:a5:4a:76:a9:00:16:68:fe:
28:77:a4:ca:82:de:21:46:ee:ac:c3:11:ec:1a:bf:
f1:c0:5f:f0:de:20:0d:62:b1:ab:fd:cd:79:d3:db:
c0:bd:9c:8a:fe:03:73:fc:70:f6:24:e7:1b:04:0c:
f6:76:b3:24:ed:51:0d:e1:cd:9d:c0:7b:e8:91:dc:
69:4f:1a:9e:b9:ad:a3:83:77:2b:9f:87:d2:dc:86:
cd:9d:90:03:b9:2a:23:0a:0a:85:dd:93:e6:55:02:
e1:f9:25:c0:99:09:96:87:6b:00:5e:29:8c:77:2c:
d7:35:22:f0:05:be:29:a7:cd:3c:b3:b3:14:e1:f8:
1c:55:77:fd:be:32:07:56:8f:11:ee:9e:92:e5:4f:
aa:27:f2:2b:4e:74:22:70:ae:7d:f4:ad:90:b6:cf:
d5:46:b8:e6:46:ab:56:f2:aa:04:29:b6:3d:40:15:
a9:70:48:28:a6:c2:55:d6:22:f7:06:c9:82:3c:d9:
83:51:86:1b:56:b5:59:45:49:a3:e3:b1:9c:3f:a3:
86:9c:49:5e:20:06:bc:16:ce:aa:da:20:2f:7a:07:
ae:1c:f3:03:7d:b2:06:be:bc:ca:82:7e:dc:26:6d:
4f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:41:13:19:A5:2C:97:9F:70:7A:74:DA:76:AC:BF:E1:01:FE:7F:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FED24B8C4A5F11F1A8BE8414CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
20:6b:9e:45:95:a0:d0:9e:18:bb:3e:54:9c:45:08:a5:73:cc:
74:e1:39:e4:8f:2f:0b:a6:90:3f:47:58:bb:24:48:11:1d:fe:
74:20:c7:24:e6:52:25:78:c1:7b:16:48:45:08:61:d7:de:bc:
02:91:ef:58:ba:81:c5:66:2e:e1:66:65:54:e6:75:d2:bd:69:
b8:35:35:fc:24:39:fc:9e:61:f6:bc:64:02:6f:47:e3:14:a7:
33:b9:1f:1c:b7:05:eb:93:56:64:e8:7d:14:e8:23:0d:d5:41:
19:55:9f:71:c1:0c:6d:be:13:69:e7:34:4c:62:39:25:24:94:
f8:9f:85:f8:96:06:dd:1c:de:6c:f5:94:79:56:22:b2:68:a6:
29:7f:04:38:af:5c:1e:ae:6f:f3:31:49:b7:51:ab:cb:94:4f:
2f:94:20:e2:91:56:95:dd:fe:54:24:a3:90:3a:4a:a4:8f:3b:
12:f6:36:eb:01:89:57:a8:1e:91:ad:d4:36:63:20:37:d0:b8:
29:7f:d0:1c:d4:2f:0a:55:61:a4:64:9f:06:7e:ae:30:c8:cd:
c0:5e:66:aa:f1:5e:89:34:df:0e:20:6f:6d:45:cd:15:41:3d:
aa:54:30:08:25:55:f9:ee:52:ae:c0:76:40:a3:b7:c4:5a:92:
5b:cb:e9:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:00:58 2026 by rpki-client