Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2FB1D2A0240811F1888378DCDAE4EC9C.roa
File: 2FB1D2A0240811F1888378DCDAE4EC9C.roa (raw, json)
Hash identifier: YzO/fknZ4bO81cOyV9n5pwfLJ14MKJ5TnynnXIbIwb8=
Subject key identifier: 00:2F:FF:76:A8:79:10:9F:77:90:3D:C1:16:88:19:4B:8C:BF:52:E5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A60B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2FB1D2A0240811F1888378DCDAE4EC9C.roa
Signing time: Fri 20 Mar 2026 02:55:01 +0000
ROA not before: Fri 20 Mar 2026 02:54:56 +0000
ROA not after: Mon 20 Apr 2026 02:54:56 +0000
asID: 154376
IP address blocks: 156.254.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108043 (0x1a60b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 20 02:54:56 2026 GMT
Not After : Apr 20 02:54:56 2026 GMT
Subject: CN=69bcb705-4845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:67:03:0a:69:f0:b1:f5:9b:bd:cb:fe:f4:
1b:e7:45:cd:e6:55:02:13:66:d3:93:1c:cb:04:46:
91:4e:99:83:10:29:e6:6f:bd:0a:4f:d9:f2:16:44:
6d:38:49:1a:b5:67:40:27:06:97:e0:30:8b:dd:07:
c5:01:fa:5b:a7:fb:40:7d:13:41:aa:2a:06:bc:c0:
6f:46:a8:c0:e9:57:6f:98:0d:4f:ba:a9:e6:2b:f9:
c5:fc:0b:b7:ca:fd:21:81:ca:e4:a2:b0:c4:89:8c:
48:76:15:07:8b:9e:f1:51:9f:de:10:23:64:b5:c9:
9c:f9:88:bb:e8:3c:5b:68:4f:f2:26:dc:f9:4f:a9:
9c:98:4e:72:1a:92:88:94:37:f2:c6:cd:84:91:cb:
f5:ed:62:9e:98:46:cf:9c:70:a7:f0:96:1d:dc:c7:
2a:87:41:3d:3c:53:5c:f6:86:e1:28:dd:48:c9:3b:
89:0d:57:65:88:91:b7:70:a0:39:b9:40:58:de:93:
86:f5:6b:ca:7a:c3:34:5d:59:44:90:7c:8a:73:cc:
06:97:d4:70:0e:06:a3:49:34:23:6d:7a:58:95:71:
4b:f8:d1:41:f4:a2:62:7d:15:3c:09:02:55:6d:cd:
29:f5:08:a1:28:e5:8d:7f:96:23:c0:40:f4:f7:44:
30:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:2F:FF:76:A8:79:10:9F:77:90:3D:C1:16:88:19:4B:8C:BF:52:E5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2FB1D2A0240811F1888378DCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:20:3e:e3:1b:7a:56:b1:78:0d:d1:35:9e:ee:28:95:30:a8:
32:10:4c:ac:b1:82:a5:1d:b2:e3:06:1e:77:fe:ac:e7:79:ee:
12:12:d2:8a:4a:56:2b:37:c4:24:22:03:8d:1c:48:10:05:e3:
f5:7a:b4:f7:17:96:8d:b8:64:8a:66:0d:aa:25:31:c9:02:91:
ba:ae:56:79:08:47:44:a3:e1:52:51:46:c8:6e:5e:49:8b:f8:
4f:55:c2:6d:fb:38:ae:22:96:a6:d9:59:d7:1c:51:93:14:09:
d4:dd:07:40:7f:38:7c:cd:b5:af:5b:99:f9:26:6d:04:a0:27:
f8:77:30:d2:b7:4d:05:f6:9f:79:04:6c:f3:77:5f:78:8c:bd:
e7:3c:88:0f:b5:a5:c9:50:d9:f6:93:81:2c:73:68:f9:70:9a:
e2:0f:fb:4d:f8:f8:62:66:a8:dc:a2:78:30:6a:7b:05:d7:09:
08:92:6c:84:e4:35:8f:9f:2e:47:db:c7:a4:6f:c5:93:ff:ed:
6e:6f:03:31:18:b9:62:ce:10:33:a3:a5:40:0b:ab:3e:46:07:
40:a1:19:a3:33:f1:ff:44:42:12:05:8d:d7:71:0f:7a:27:0a:
5e:d2:45:5e:1f:db:d0:9f:e6:f1:fe:83:97:9c:83:33:95:15:
f3:9e:3f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 18:54:20 2026 by rpki-client