Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CBFFF14454911F1A16157ADCE1D38B0.roa
File: 3CBFFF14454911F1A16157ADCE1D38B0.roa (raw, json)
Hash identifier: kisBxAUEdYp76MrWP18HOqMRhBId+Pgxu5knBAzFif4=
Subject key identifier: 56:1F:9C:4D:B6:C3:29:20:3D:C7:E0:A8:37:7D:8B:FD:30:C6:31:16
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B05F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CBFFF14454911F1A16157ADCE1D38B0.roa
Signing time: Fri 01 May 2026 10:33:48 +0000
ROA not before: Fri 01 May 2026 10:33:44 +0000
ROA not after: Fri 05 Jun 2026 10:33:44 +0000
asID: 395886
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110687 (0x1b05f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 10:33:44 2026 GMT
Not After : Jun 5 10:33:44 2026 GMT
Subject: CN=69f4818c-7324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5d:60:23:a2:5e:97:e0:aa:3e:59:22:32:0b:
b6:05:83:ef:76:f2:a7:6c:0e:bd:5d:22:86:fa:17:
32:26:b7:64:35:9f:97:42:7a:2f:0f:b4:56:08:78:
7c:39:49:f2:71:95:ae:61:3d:0e:db:6d:65:3f:9a:
61:62:83:00:42:54:7c:71:81:b4:5d:0f:24:6f:52:
d3:47:36:68:1e:fc:dd:be:23:0f:39:3f:e2:a2:b5:
20:67:ee:3e:9b:08:8f:54:3a:bc:d3:27:aa:70:d1:
37:f1:2a:6f:a9:ad:7c:60:04:90:a0:a7:df:9d:d1:
66:ea:de:02:9c:8f:7a:a3:75:bd:e1:7f:47:3a:e2:
ef:44:ae:a0:0e:ba:9c:f4:09:92:48:35:7b:0c:0f:
a7:d0:9c:19:5e:de:10:28:3e:21:9a:51:2c:42:cf:
ff:d9:55:24:2f:62:4e:0f:69:ad:c4:11:02:b6:69:
21:f1:4c:f5:16:a1:03:3e:d7:a1:a4:09:9b:aa:ce:
0c:74:63:76:33:05:dd:a4:1e:de:b1:02:9b:b5:45:
45:43:06:98:cd:8d:bb:40:8b:98:2f:5a:64:cb:60:
70:51:4c:ff:e7:0e:9a:ec:b7:d9:bb:b5:8e:4f:31:
df:ef:b7:e8:f4:94:a3:4a:f7:c4:5b:22:63:d9:1e:
d9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1F:9C:4D:B6:C3:29:20:3D:C7:E0:A8:37:7D:8B:FD:30:C6:31:16
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CBFFF14454911F1A16157ADCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
a6:ba:24:07:cb:20:a2:57:f8:e8:22:66:0b:af:72:f2:bc:cd:
99:20:ec:f7:99:2a:7c:da:f9:32:f6:7d:1e:4a:ad:f5:03:7a:
9e:53:bc:61:3c:64:03:3b:ad:df:fe:23:81:c8:10:68:3e:fc:
82:38:fe:24:ca:6e:5f:28:1c:dc:64:3f:63:95:5d:62:a4:d4:
6e:05:e1:8a:58:c7:e6:98:cc:e8:15:2b:f3:44:5c:3a:cf:19:
25:9c:33:27:f1:37:56:c5:e9:d5:a6:06:d4:cf:89:eb:78:0c:
86:9e:17:e1:a5:09:d0:a7:c8:06:6c:99:76:e6:66:73:53:a3:
d0:cf:b6:65:ef:84:be:be:ce:e3:4f:6e:78:d7:61:a9:ed:27:
92:dc:92:25:d9:84:26:10:dc:12:11:6c:b4:a4:5e:96:37:80:
e7:27:75:44:5e:5f:7e:48:6a:91:a5:d4:bd:36:77:43:5a:3f:
e4:93:f1:c1:40:9a:8e:2b:47:1d:d4:55:3d:7b:a8:e1:9a:2f:
4e:b3:d8:82:55:71:7b:10:a4:ea:f5:b6:cd:64:d4:2a:49:29:
3f:90:1d:ef:e4:ba:08:ef:13:56:51:09:eb:0f:ff:5b:d1:98:
66:b0:85:2d:45:91:51:85:6c:b8:17:4d:fb:dc:0d:2b:b8:67:
b8:4b:1a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 12:31:48 2026 by rpki-client