Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/200F1836448211F1AE944EF1CE1D38B0.roa
File: 200F1836448211F1AE944EF1CE1D38B0.roa (raw, json)
Hash identifier: MNCHvdpUHeekKKWl355t1Oq0mitysM5X7tERWFZ8rz4=
Subject key identifier: 3F:BE:C0:8C:49:EF:84:49:F7:7A:8F:F8:B9:7F:1E:73:0C:32:66:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B028
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/200F1836448211F1AE944EF1CE1D38B0.roa
Signing time: Thu 30 Apr 2026 10:48:30 +0000
ROA not before: Thu 30 Apr 2026 10:48:25 +0000
ROA not after: Thu 04 Jun 2026 10:48:25 +0000
asID: 18013
IP address blocks: 156.234.0.0/24 maxlen: 24
156.234.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110632 (0x1b028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 10:48:25 2026 GMT
Not After : Jun 4 10:48:25 2026 GMT
Subject: CN=69f3337e-2d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:92:1f:77:4c:ba:60:89:20:67:4f:67:19:
8d:14:99:30:a3:81:8a:cf:15:a7:91:5d:4a:f4:f4:
09:e1:6d:b5:7f:80:f9:0b:44:11:e4:9f:92:79:33:
55:84:b5:5b:59:f8:10:36:09:a1:83:db:ce:7d:5e:
23:a8:6a:89:44:12:8e:7f:ec:58:c8:32:db:6f:56:
bc:35:5b:03:2e:99:a2:8d:5b:56:a4:f1:be:91:ec:
e5:8a:ba:dd:0c:75:f3:7b:f8:97:0b:21:34:b8:27:
cb:7b:5e:a3:9d:1d:c2:88:75:7a:57:0d:79:9c:dd:
49:ba:a2:19:bd:d1:79:17:83:94:1b:73:80:9d:62:
4c:56:ef:02:26:fa:ba:8c:a8:24:ad:31:52:b2:88:
b9:1e:8e:e2:d7:2b:45:5c:8b:3c:09:79:df:2c:fd:
37:dc:a0:ae:6d:cb:e4:15:48:e6:21:14:f8:3c:ee:
3e:3c:5f:cb:b3:ce:8d:64:1b:70:bb:4a:58:9a:16:
c4:b8:c9:c6:ab:96:82:87:db:e8:1b:0d:39:78:a6:
4a:46:b8:51:59:d8:79:82:7c:96:13:31:39:23:12:
fe:18:90:65:eb:45:af:2f:2a:a6:65:5d:b8:0b:41:
53:04:b3:6d:25:97:38:43:3c:e7:82:f4:5f:a5:02:
ff:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BE:C0:8C:49:EF:84:49:F7:7A:8F:F8:B9:7F:1E:73:0C:32:66:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/200F1836448211F1AE944EF1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/24
156.234.7.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:b4:84:8a:47:dd:08:ec:e4:a6:58:8d:60:df:a7:ff:70:ac:
8a:99:09:59:3a:22:77:ad:d6:38:44:16:ae:3f:59:bb:24:ca:
6b:d9:e4:cd:69:9b:f5:28:f8:cc:53:a9:d3:12:16:d9:12:fb:
37:f5:27:8c:42:65:99:39:54:0e:7c:c3:cf:ae:d1:56:15:8f:
4e:f9:45:c8:20:03:d4:74:f9:72:60:95:b0:9a:aa:07:90:6a:
b0:59:5e:42:22:66:9b:0c:70:fa:20:ce:56:15:6e:84:34:b2:
b6:c6:8f:0f:81:73:00:ab:b4:dd:9a:84:33:05:fd:d5:b1:82:
83:40:69:ec:4c:40:b6:f3:e1:01:3d:66:f4:7a:f7:2c:e3:0c:
03:1e:01:d8:98:11:cb:e0:40:fc:99:76:44:36:2f:5d:7f:bb:
87:64:f4:45:48:12:7d:50:36:7b:02:bf:a1:fe:2e:d5:19:66:
8f:fc:87:36:20:5f:8e:a7:c2:48:ec:60:13:bd:d6:b9:0f:21:
df:e8:d2:45:5e:f7:64:29:2b:69:39:0e:d6:f1:ca:81:29:fd:
0a:b5:68:ea:ba:08:0c:3c:c2:79:60:3d:19:6a:51:28:61:ef:
76:3e:98:7c:c8:af:ea:8c:a9:6c:3a:4f:f9:70:95:05:9a:5c:
05:c0:49:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 05:35:44 2026 by rpki-client