Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3C69C10398011F18B696AA5CE1D38B0.roa
File: F3C69C10398011F18B696AA5CE1D38B0.roa (raw, json)
Hash identifier: fBqnns6e/AHDLKLyo/9TJ0WZpN80bfyRUOfrqlDVP2A=
Subject key identifier: 88:DC:1B:4B:E8:13:0E:58:98:ED:5D:68:D2:2D:2E:A6:C5:64:0A:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AD19
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3C69C10398011F18B696AA5CE1D38B0.roa
Signing time: Thu 16 Apr 2026 10:42:24 +0000
ROA not before: Thu 16 Apr 2026 10:42:19 +0000
ROA not after: Thu 30 Apr 2026 10:42:19 +0000
asID: 401783
IP address blocks: 156.249.166.0/24 maxlen: 24
156.249.167.0/24 maxlen: 24
156.249.170.0/24 maxlen: 24
156.249.183.0/24 maxlen: 24
156.249.185.0/24 maxlen: 24
156.249.187.0/24 maxlen: 24
156.249.190.0/24 maxlen: 24
156.249.191.0/24 maxlen: 24
156.253.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109849 (0x1ad19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 10:42:19 2026 GMT
Not After : Apr 30 10:42:19 2026 GMT
Subject: CN=69e0bd10-5076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:db:26:4d:5b:2a:a8:f4:1b:37:29:4b:79:2c:
29:49:d6:49:31:2d:f4:28:b3:92:b6:49:8d:f4:2c:
a4:24:53:ca:c4:ca:94:d0:35:65:a5:cc:75:0b:9f:
d5:f4:37:e3:55:16:dc:5c:ad:5e:c4:74:87:9f:33:
e2:de:36:4f:c8:95:d0:a2:ba:09:ad:cf:b6:0c:e1:
62:2c:c0:80:03:a2:dc:02:01:7d:2b:c1:20:0d:6a:
b8:6d:cd:0c:81:dd:22:97:9b:38:1e:b1:4e:a4:4b:
6a:b4:0d:88:45:63:fc:c2:b8:3e:95:6a:af:96:d8:
56:29:ea:bd:3b:98:6f:c6:38:6f:b6:5d:63:b0:42:
17:8c:72:11:0c:56:28:df:c4:9e:87:2a:9b:94:01:
b6:20:47:0d:01:46:1b:9a:8b:a3:c0:d6:85:4f:4a:
16:04:c5:c1:8d:3b:52:4d:4c:81:de:65:95:7c:2b:
3a:91:ff:a7:b0:75:d8:15:cd:97:66:42:3c:18:64:
64:e3:6f:08:cd:4d:80:0f:97:8a:70:ec:4d:af:9f:
76:4b:c7:ab:7c:79:b0:8f:3d:0b:e7:a6:e1:43:1f:
33:a1:cb:2e:da:18:33:35:08:5f:bd:60:40:4b:06:
e8:0e:e1:0a:c7:d2:be:d2:18:d5:06:3f:4f:85:4f:
6d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:DC:1B:4B:E8:13:0E:58:98:ED:5D:68:D2:2D:2E:A6:C5:64:0A:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3C69C10398011F18B696AA5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.166.0/23
156.249.170.0/24
156.249.183.0/24
156.249.185.0/24
156.249.187.0/24
156.249.190.0/23
156.253.187.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:93:55:10:4f:10:09:44:76:6c:42:79:49:1a:0e:08:ef:e5:
49:1b:65:e5:0f:79:11:0f:02:d1:33:c9:e5:39:b0:1e:d0:08:
3e:65:69:06:24:25:48:7f:7c:aa:80:ad:66:e3:06:eb:91:b2:
ab:7a:7e:41:6d:b3:a7:79:dd:af:92:84:08:0f:2b:2b:93:b6:
29:02:9e:22:25:7c:83:5a:84:76:31:67:f2:69:9d:6f:3f:d0:
ae:f2:84:b7:7b:36:0e:bf:c0:72:7b:df:7c:1f:cd:9a:94:e5:
de:3d:8a:52:34:3d:5a:b1:fb:12:84:f3:20:d2:ad:89:c9:ed:
ab:d6:64:a9:90:6a:6a:22:ff:c9:5a:b3:a8:3a:1e:6d:de:e7:
57:9a:c4:cc:85:7c:02:67:26:ef:da:25:68:dd:68:bb:21:2b:
8a:04:ff:88:61:e9:17:6b:09:ea:0d:be:20:f4:46:b7:0a:35:
b0:0d:c0:64:13:36:b7:0c:71:7a:57:5d:4d:9f:0c:85:4f:4a:
ec:08:3b:bc:65:a7:5d:3a:4a:2d:f8:e5:b5:9d:52:ef:85:c2:
12:56:8a:f8:fc:72:ea:3d:2d:b1:3a:b4:4f:94:b9:18:a7:50:
95:19:e3:b5:d5:0a:d8:29:4a:b4:4c:84:7c:f6:9b:c1:f4:32:
e2:b1:5d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:30:01 2026 by rpki-client