Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/404FDE52414711F19F8C9BD0CE1D38B0.roa
File: 404FDE52414711F19F8C9BD0CE1D38B0.roa (raw, json)
Hash identifier: 9P7BZxoJlZxwHsKAfL9jl7xEcZqxohai7Y720jl3rik=
Subject key identifier: A5:80:A2:C4:35:C6:A9:24:4E:9B:58:DA:31:04:F5:00:66:71:C8:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AF59
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/404FDE52414711F19F8C9BD0CE1D38B0.roa
Signing time: Sun 26 Apr 2026 08:09:31 +0000
ROA not before: Sun 26 Apr 2026 08:09:25 +0000
ROA not after: Thu 04 Jun 2026 08:09:25 +0000
asID: 151407
IP address blocks: 156.248.8.0/21 maxlen: 24
156.248.8.0/22 maxlen: 24
156.248.8.0/23 maxlen: 24
156.248.8.0/24 maxlen: 24
156.248.9.0/24 maxlen: 24
156.248.10.0/23 maxlen: 24
156.248.10.0/24 maxlen: 24
156.248.12.0/22 maxlen: 24
156.248.12.0/23 maxlen: 24
156.248.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 Apr 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110425 (0x1af59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 08:09:25 2026 GMT
Not After : Jun 4 08:09:25 2026 GMT
Subject: CN=69edc83a-66b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:47:25:14:d4:93:a9:13:d6:ee:e7:e1:91:35:
a3:bd:d9:53:29:a7:33:04:2b:26:4a:87:a4:c9:92:
d4:db:ea:0f:f0:ef:db:88:ba:6e:07:66:ac:28:f9:
bd:30:55:0d:a7:c3:35:f7:e4:e6:a4:63:da:5b:26:
1a:07:9d:b4:f4:0e:27:f3:a6:2f:e4:b0:a3:93:ef:
d7:d0:a4:04:ab:14:9f:0c:64:c6:55:41:bf:42:95:
b3:05:27:73:08:89:5d:8b:5e:97:21:d6:04:df:2e:
d6:42:4e:0d:5f:77:9f:0d:4f:4b:8d:1f:29:66:9e:
bc:96:a0:dd:71:8b:ef:42:3b:88:89:15:1a:43:33:
47:30:e7:a9:8a:a4:5e:03:f8:81:a3:6e:e4:3a:4b:
52:de:e7:e5:44:80:96:0c:e3:ba:8d:06:48:2f:0e:
8a:a9:18:40:0c:ea:d5:e2:98:ce:d4:c4:c4:d3:a8:
76:0e:df:d2:62:39:1e:53:3e:8c:48:4c:06:3b:5c:
69:16:58:20:fd:1b:fb:64:b4:69:7b:e1:46:a2:f2:
cf:99:5e:20:6c:9c:d5:c7:9e:37:d4:e9:7c:7f:9b:
cc:8d:6c:88:a7:8a:bc:7c:6d:4b:3f:4a:98:2b:4f:
01:62:77:f6:db:a9:ca:3f:bd:cd:52:50:10:0e:6e:
ec:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:80:A2:C4:35:C6:A9:24:4E:9B:58:DA:31:04:F5:00:66:71:C8:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/404FDE52414711F19F8C9BD0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.8.0/21
Signature Algorithm: sha256WithRSAEncryption
61:b0:b2:43:8e:ad:bf:19:df:b7:75:9c:b7:06:d5:b3:9c:b0:
00:e1:fa:51:5e:79:ba:91:f6:9e:c1:f0:6a:e9:20:a3:64:50:
12:45:ab:c4:de:f7:4f:d1:58:0b:72:37:87:f1:b9:52:2a:2d:
01:54:38:e5:88:28:6f:45:29:53:6f:e9:1e:ed:df:f8:6c:46:
c5:ef:87:07:72:a1:7f:ce:fc:28:68:f0:3e:13:11:8f:f7:d0:
e8:49:e0:42:fc:16:ae:c8:84:99:9a:ce:6b:b5:17:93:32:16:
6c:1a:4e:eb:39:8c:e4:21:00:cb:b2:a3:25:a4:21:6b:0f:de:
01:c1:0c:2b:7b:73:6f:25:a9:d3:d4:4e:f7:fd:c8:64:b6:44:
ae:45:16:e9:43:52:d4:07:3a:2d:10:6f:ff:13:01:e2:c6:18:
2d:12:93:57:bf:6c:51:d7:cf:98:ad:ae:f7:f1:49:1d:c0:35:
55:1f:73:06:a0:94:f3:7b:b7:8e:4b:a9:aa:91:fd:d4:05:87:
d2:1d:80:e3:47:ba:a5:fd:19:aa:f9:9a:79:b4:30:da:95:1f:
fb:21:95:b0:43:87:0b:b9:96:ec:6e:49:f1:72:ae:4a:b9:7e:
bc:06:83:d6:d1:2d:5f:47:56:37:02:17:5e:43:c3:0c:88:36:
a6:ce:fc:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:00:21 2026 by rpki-client