Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E08563A325611F190F2C97BDAE4EC9C.roa
File: 1E08563A325611F190F2C97BDAE4EC9C.roa (raw, json)
Hash identifier: LSNDg9A5PF2GAUSTzmdkWAHqMC68tV0tdk9RAjmLK4E=
Subject key identifier: 73:B6:32:C0:AA:4A:D5:5B:B7:8B:5E:20:FA:E7:D1:75:6D:04:F9:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AAB3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E08563A325611F190F2C97BDAE4EC9C.roa
Signing time: Tue 07 Apr 2026 07:48:08 +0000
ROA not before: Tue 07 Apr 2026 07:48:03 +0000
ROA not after: Sat 09 May 2026 07:48:03 +0000
asID: 213999
IP address blocks: 156.253.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109235 (0x1aab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 7 07:48:03 2026 GMT
Not After : May 9 07:48:03 2026 GMT
Subject: CN=69d4b6b8-ce5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:16:62:94:c9:65:42:d1:09:35:34:9a:dd:96:
c3:9f:84:f5:b6:78:78:69:20:fe:4e:16:d9:7b:76:
8a:9b:b8:87:95:b4:0c:44:d7:2d:3d:6e:2c:19:c1:
68:31:ad:88:c8:92:c0:c1:af:37:0c:9a:bf:b9:9c:
0c:dd:ba:7a:ac:bc:a4:77:23:1e:55:8b:02:78:6e:
fe:52:3d:c8:fd:a3:dc:3e:01:7d:91:31:64:50:1e:
d6:ed:9c:e4:d8:d6:84:83:b6:2a:68:0d:19:50:68:
bb:71:a6:7b:ee:4e:b6:f8:a8:b6:ac:5e:f3:58:1c:
7f:bf:94:6a:67:06:54:e2:97:99:57:60:28:43:7d:
9c:25:d8:13:de:4d:c7:8b:32:47:df:25:9d:85:b2:
9e:fc:5c:95:a2:ba:24:da:93:9d:c6:da:6f:14:1a:
37:3c:51:e5:ce:60:60:8e:a0:11:37:92:a6:c7:9f:
6e:8c:bd:6c:d8:f6:c3:d3:8e:cd:e3:ff:03:8d:37:
35:ca:4d:f2:7f:6a:b6:2f:c3:40:68:b1:7b:7c:33:
67:42:af:82:39:03:31:9e:be:13:91:fd:74:0d:26:
7e:5d:75:79:41:99:79:61:a4:be:ed:15:22:cc:49:
a1:47:3a:e3:96:68:e6:0a:bb:89:ee:30:40:e4:a6:
c8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B6:32:C0:AA:4A:D5:5B:B7:8B:5E:20:FA:E7:D1:75:6D:04:F9:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E08563A325611F190F2C97BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.1.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:b3:2f:4c:11:7d:9c:85:3e:d2:fc:45:64:2d:e3:be:15:7d:
71:1e:43:ce:0e:63:56:b3:63:a0:c9:7c:75:ec:3e:6b:b8:88:
98:08:14:03:62:be:6b:d0:fe:3b:60:69:1f:e7:fe:c1:83:37:
1b:d4:30:09:de:6e:57:da:6e:dc:79:39:8d:98:9c:f9:d7:68:
95:54:0f:aa:c1:18:3d:a4:fb:d7:29:9b:f9:3d:03:1c:87:52:
05:8e:f9:47:a7:a8:4b:f3:bf:ad:b8:eb:8e:2e:a9:c8:be:2b:
23:6b:cb:a0:29:80:91:96:93:98:57:40:0a:9d:50:55:ad:c3:
2b:33:66:e1:ec:ed:db:7d:e8:d2:97:41:71:e9:36:6c:43:fe:
14:c1:b0:72:ad:26:87:6c:47:5e:6c:da:67:fa:71:52:1e:7b:
f1:b6:24:ae:f4:68:a8:d1:61:d4:57:fe:11:86:6c:ea:c4:63:
72:f1:53:ad:87:5a:97:a0:13:f9:cf:1f:7f:b8:57:d4:f5:9e:
1b:4c:0f:05:2f:5c:49:f1:cc:e4:2a:77:02:1b:27:b8:d6:e9:
00:f3:cc:fc:e4:d7:31:05:2e:79:3d:d8:19:5e:d6:ec:9b:66:
fb:d0:3a:8a:32:75:4b:7a:2e:f4:3c:85:67:16:6b:e0:12:95:
19:05:fa:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:29:05 2026 by rpki-client