Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7CA9604370711F1B987000DCF1D38B0.roa
File: D7CA9604370711F1B987000DCF1D38B0.roa (raw, json)
Hash identifier: Ub++X/fkSXyLj/wu1j6Ni9yoACGWipjMsDSo+/GMpY8=
Subject key identifier: 77:42:7B:A4:65:11:62:03:65:EE:3C:49:29:ED:81:10:FA:E8:89:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC34
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7CA9604370711F1B987000DCF1D38B0.roa
Signing time: Mon 13 Apr 2026 07:10:25 +0000
ROA not before: Mon 13 Apr 2026 07:10:20 +0000
ROA not after: Sat 16 May 2026 07:10:20 +0000
asID: 22773
IP address blocks: 156.243.108.0/24 maxlen: 24
156.243.109.0/24 maxlen: 24
156.243.110.0/24 maxlen: 24
156.243.196.0/24 maxlen: 24
156.243.197.0/24 maxlen: 24
156.243.198.0/24 maxlen: 24
156.243.199.0/24 maxlen: 24
156.243.200.0/24 maxlen: 24
156.243.201.0/24 maxlen: 24
156.243.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109620 (0x1ac34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 07:10:20 2026 GMT
Not After : May 16 07:10:20 2026 GMT
Subject: CN=69dc96e1-d36e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3d:25:7e:c7:8c:9a:c6:64:33:2d:96:54:4f:
97:3a:3a:13:45:0f:2d:0e:38:f7:ac:3c:b7:c9:8b:
76:6f:60:dd:97:ca:c2:a0:d0:45:a3:af:3c:e5:72:
10:03:cb:d6:24:a6:82:49:50:35:48:b4:92:4e:6d:
75:36:c2:f2:6e:d7:05:8b:4b:85:85:da:f3:74:72:
c7:c3:3c:95:20:c1:c8:0f:2c:6b:86:6f:16:28:08:
c6:e2:b5:8e:c5:c6:f3:b9:34:92:40:6a:d5:5f:d8:
93:16:62:38:0d:82:bc:ca:1e:72:ae:80:dd:fd:6b:
94:99:a7:50:18:a5:25:2b:25:ac:be:8d:62:b6:ff:
3c:f6:e7:73:08:41:79:54:7e:96:10:9d:30:03:c2:
07:66:63:5e:07:1a:e1:83:59:4c:5a:be:68:2f:50:
31:94:b4:34:2a:53:7c:51:03:dc:6d:8d:e0:8a:05:
fb:a1:d1:c3:bb:ae:86:00:15:aa:e6:dd:df:21:ae:
16:b1:f7:1a:a4:ba:db:92:1e:5e:85:13:8f:08:28:
6e:14:ad:75:60:f4:f1:ac:a0:4c:23:64:f3:a6:25:
e2:87:78:5c:48:1e:60:0e:ea:29:45:a9:9b:18:c1:
b8:89:ab:aa:8a:cd:be:2d:20:53:94:27:ec:a9:3a:
4b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:42:7B:A4:65:11:62:03:65:EE:3C:49:29:ED:81:10:FA:E8:89:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7CA9604370711F1B987000DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.108.0-156.243.110.255
156.243.196.0-156.243.202.255
Signature Algorithm: sha256WithRSAEncryption
1a:bf:1d:5d:18:ff:58:74:4a:b8:13:db:59:ba:6f:96:79:a3:
53:3c:a9:cf:d2:c3:b5:39:fc:57:6b:b8:f2:a0:dc:0e:2c:31:
b3:d7:1a:31:b6:72:7e:72:63:dc:35:47:e8:16:2f:8c:8b:03:
0c:da:9d:e1:0a:84:53:b0:bd:60:0a:cc:b4:68:c9:e3:ba:73:
a7:33:ba:36:a4:2f:d3:f1:25:b8:cd:1e:ef:1b:dc:ec:09:e0:
19:80:22:55:b9:e2:87:a2:60:2a:7d:73:80:31:f1:31:fc:ed:
c2:15:20:27:43:27:69:b1:77:95:12:f4:2e:b0:57:25:6b:d9:
d1:41:e2:55:ab:28:bc:68:19:29:21:b6:c4:fc:d2:be:5b:15:
6f:85:df:9a:e6:d6:51:61:aa:5c:e3:34:44:bd:78:69:1d:d6:
21:83:b3:aa:0a:b9:16:3e:d9:c7:e4:15:ad:c1:ea:66:29:53:
e3:91:23:54:e4:4a:b4:19:e7:c9:16:80:d6:82:d1:71:e3:49:
48:d9:e4:7e:4e:10:cd:1a:5b:0b:a8:ea:2c:a5:d1:6a:b4:a2:
6c:10:9b:1f:64:f4:fd:af:2b:bb:d7:3b:ee:9f:4a:66:23:57:
8b:16:fd:c9:c5:6d:09:ba:5f:87:fc:24:b7:e1:f2:c4:43:43:
ad:d4:06:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:30:30 2026 by rpki-client