Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA5FFD422AE811F191164DF0DAE4EC9C.roa
File: FA5FFD422AE811F191164DF0DAE4EC9C.roa (raw, json)
Hash identifier: zov/I3OFoLwtF0Y/dgCOZ75nI7hglwUi+pyuDE5SiEQ=
Subject key identifier: A9:5B:AE:63:F4:F5:ED:34:0E:43:AA:29:30:E3:3F:43:F5:7A:B2:51
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A892
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA5FFD422AE811F191164DF0DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 20:59:15 +0000
ROA not before: Sat 28 Mar 2026 20:59:10 +0000
ROA not after: Fri 22 May 2026 20:59:10 +0000
asID: 40779
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108690 (0x1a892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 20:59:10 2026 GMT
Not After : May 22 20:59:10 2026 GMT
Subject: CN=69c84123-0573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:69:0a:e3:ba:eb:c9:0e:d0:0d:3c:d0:27:14:
3e:63:17:00:32:ae:ea:cc:5f:71:8f:3a:ef:ac:6c:
bf:80:2a:b3:1a:bc:a7:6d:a2:88:54:a5:4e:60:6c:
f2:14:b8:82:1f:35:cd:a7:fe:ce:fa:44:70:ed:68:
d0:5c:9c:11:e3:63:43:3d:c9:15:3a:1f:eb:bb:8a:
96:85:2d:dc:14:92:21:c4:04:24:f4:2d:96:29:37:
65:cc:67:37:f6:91:49:91:7f:4d:13:62:43:78:be:
a3:71:a7:06:a2:40:1c:cf:24:1b:cf:0e:80:c5:2e:
24:50:06:d6:6b:bf:44:dd:1a:b7:98:eb:f2:ed:2a:
ba:ad:e4:a5:9f:44:2c:5a:d1:b1:0d:61:54:7e:6b:
a8:66:44:b3:36:84:f4:e3:60:ec:c2:4b:f8:d0:24:
ce:34:40:88:42:bc:aa:05:fb:39:c1:af:68:db:48:
09:87:4b:75:7a:75:e0:6b:ce:ab:79:3a:11:b4:88:
e2:a0:8b:2d:65:2a:89:c3:0c:97:13:33:73:1b:e7:
a9:4b:fc:1d:04:61:79:14:98:d6:96:fa:21:3f:ed:
90:b2:da:3d:63:1d:aa:89:5a:f2:15:c4:33:2c:5f:
c4:8e:c9:17:d7:4c:d5:96:7e:55:56:e4:98:c0:3b:
ed:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:5B:AE:63:F4:F5:ED:34:0E:43:AA:29:30:E3:3F:43:F5:7A:B2:51
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA5FFD422AE811F191164DF0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
94:62:29:f3:2f:40:3a:69:ed:2d:52:12:39:07:2c:f6:1b:5c:
3e:a6:19:11:c6:a5:85:fa:f9:3b:3e:1f:38:8e:24:1b:e9:68:
15:e6:38:28:37:8e:b7:fb:ec:e5:aa:61:1b:69:f3:d0:59:8d:
8e:21:8e:e0:a9:75:7e:7a:05:ca:18:fc:79:43:9c:9c:5e:67:
5f:bb:6e:24:06:2c:e2:5d:2d:ca:61:f4:8d:69:a6:9d:53:80:
f9:2c:9f:59:65:04:9c:9d:03:4f:ae:45:d3:58:af:b2:b3:85:
b0:9b:c6:72:ca:5f:c9:08:3f:a4:a9:bc:f2:10:5e:ab:f1:bb:
4b:91:74:ba:e9:e8:cb:46:a0:a1:71:3f:67:3f:4a:52:1e:dd:
2e:b0:38:70:a7:42:55:f1:7b:c6:15:2d:96:db:5a:fd:1c:4c:
fa:1a:cd:4d:cd:79:62:33:9a:5a:74:71:d8:6e:b5:07:4a:73:
b3:6b:39:fe:37:72:ae:0c:f5:be:07:fb:72:2f:20:a6:64:37:
11:1a:69:88:c8:7c:e3:34:33:5d:30:41:cd:4e:83:07:ed:7d:
17:41:1d:14:2d:92:14:2a:3c:87:da:61:6d:1c:2b:95:7c:0f:
7e:94:4a:4f:91:49:d0:1d:f4:14:cf:52:f1:f4:5d:79:df:fe:
65:b5:29:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:29:01 2026 by rpki-client