Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/297733F01E1B11F1BD46D2CFDAE4EC9C.roa
File: 297733F01E1B11F1BD46D2CFDAE4EC9C.roa (raw, json)
Hash identifier: FInpZcYmawYX/zknELW6HfSyvb4bcXYA0G4cEGPGi4s=
Subject key identifier: 84:37:C7:93:70:41:95:AC:71:0B:13:90:13:9B:C3:A8:A6:16:13:5A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A4A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/297733F01E1B11F1BD46D2CFDAE4EC9C.roa
Signing time: Thu 12 Mar 2026 13:55:44 +0000
ROA not before: Thu 12 Mar 2026 13:55:39 +0000
ROA not after: Sat 04 Apr 2026 13:55:39 +0000
asID: 151407
IP address blocks: 156.248.8.0/21 maxlen: 24
156.248.8.0/22 maxlen: 24
156.248.8.0/23 maxlen: 24
156.248.8.0/24 maxlen: 24
156.248.9.0/24 maxlen: 24
156.248.10.0/23 maxlen: 24
156.248.10.0/24 maxlen: 24
156.248.12.0/22 maxlen: 24
156.248.12.0/23 maxlen: 24
156.248.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107686 (0x1a4a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 12 13:55:39 2026 GMT
Not After : Apr 4 13:55:39 2026 GMT
Subject: CN=69b2c5e0-9827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1e:5b:06:85:82:b5:00:18:c8:99:c0:82:65:
ca:fe:64:8a:d2:24:1c:3c:d6:08:f3:97:74:43:fc:
10:0a:90:42:7f:00:21:ff:5b:3a:88:b9:91:21:12:
2a:8c:50:7d:49:8e:c1:08:ac:8c:d0:80:e6:91:dd:
cb:c4:d0:a4:8f:9b:dd:c9:60:8e:58:db:97:c1:fc:
64:e7:e5:df:1b:05:11:d3:24:93:9e:1f:f2:cf:19:
3d:c5:eb:e1:05:ea:dc:7e:0d:49:e9:91:d6:6d:a4:
a5:86:bd:e9:1c:bc:06:fa:75:4d:10:b0:d4:94:15:
0b:69:0d:cd:56:38:7e:dd:15:bf:f2:48:61:09:8e:
dd:dd:da:c1:4b:72:bc:85:73:0d:93:2a:5a:a6:a9:
ab:f4:11:26:12:9b:2e:e9:dd:48:41:f6:eb:5b:49:
58:d9:17:42:cd:7a:9f:e5:06:da:d8:8b:54:47:9c:
52:e8:c0:c7:75:13:75:c8:88:6f:9c:7e:39:94:fa:
24:35:43:3b:d4:d2:e1:e3:2b:82:6c:66:66:70:68:
91:4b:55:af:f8:54:16:45:2f:e6:2f:dd:92:63:ab:
4e:0e:df:74:f1:8c:95:de:8b:5f:a9:cc:24:d3:97:
6b:6e:75:a8:23:98:24:49:3d:56:69:69:a3:78:3d:
8c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:37:C7:93:70:41:95:AC:71:0B:13:90:13:9B:C3:A8:A6:16:13:5A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/297733F01E1B11F1BD46D2CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.8.0/21
Signature Algorithm: sha256WithRSAEncryption
16:d0:dd:7b:8e:25:1e:42:37:99:6e:21:cb:60:e0:ba:17:65:
b3:85:85:34:dc:10:6a:5c:77:14:e4:2f:1e:ae:a3:a7:2c:8d:
3d:2e:43:cf:1f:fb:42:60:f3:fb:6d:85:25:5a:49:76:24:6e:
9e:99:c5:d9:eb:b2:f1:3d:3d:b7:fd:fc:83:f7:2d:8b:4e:2f:
84:e6:a0:ea:b7:d7:6e:b7:10:e6:1d:b3:44:1b:54:b2:b3:72:
b5:94:5b:4a:7d:08:47:00:c1:05:f5:11:53:7d:7d:45:56:a9:
81:39:a7:5c:f6:24:4f:1d:43:70:eb:4d:db:2e:b7:2c:7e:11:
c3:74:03:3b:96:8f:f3:31:fe:3c:58:fb:1a:8b:df:03:f4:84:
12:2c:81:b6:7f:cd:d9:7c:00:b3:09:72:b0:e5:79:88:c4:d4:
31:c7:d1:07:12:9a:c9:9f:c0:cc:fd:c8:ff:a4:7b:11:1a:29:
7b:81:f8:91:2d:11:c0:fb:de:00:b0:17:9f:82:40:b5:02:84:
1d:19:d2:f8:21:8f:36:0f:5d:8d:7d:32:36:6c:d7:3f:dc:18:
0c:da:a5:e4:e2:6c:0c:75:26:56:b9:83:d7:76:f3:ad:b1:81:
37:60:df:7e:91:83:13:80:84:90:61:7d:79:41:2e:aa:3a:95:
17:f5:cf:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 00:16:48 2026 by rpki-client