Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/019EFCA4123711F1B3649086DAE4EC9C.roa
File: 019EFCA4123711F1B3649086DAE4EC9C.roa (raw, json)
Hash identifier: /mFYvRFC+4WCRWxj4aaiBb9LRQen6H0oL5MJuYohE4Y=
Subject key identifier: 6F:A9:FB:A6:DF:8C:5E:D4:28:92:2D:47:AC:E7:32:40:34:9E:69:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BBB1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/019EFCA4123711F1B3649086DAE4EC9C.roa
Signing time: Wed 25 Feb 2026 10:44:48 +0000
ROA not before: Wed 25 Feb 2026 10:44:44 +0000
ROA not after: Fri 17 Apr 2026 10:44:44 +0000
asID: 400175
IP address blocks: 154.82.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113585 (0x1bbb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 10:44:44 2026 GMT
Not After : Apr 17 10:44:44 2026 GMT
Subject: CN=699ed2a0-60b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:8d:8f:48:80:52:e5:84:c6:c5:66:4d:df:
6f:82:bc:09:b4:b2:4c:12:64:7e:a7:c6:9b:66:6d:
3e:e2:22:d7:ab:97:b6:24:73:9e:c3:e3:49:9f:e8:
41:9c:e8:3e:ba:33:13:ee:63:06:70:e2:22:b5:b4:
3b:37:9e:15:d4:79:22:f2:2e:02:7d:77:14:f7:fc:
98:49:85:7f:17:c6:97:c0:da:ed:c0:ef:69:62:56:
72:4d:db:66:7d:4a:66:b6:f7:a7:f9:24:af:70:90:
79:6c:c1:f8:4e:4a:37:e4:83:6b:3b:5d:d5:36:38:
44:ed:5b:6b:c0:ff:e3:2f:73:d4:79:55:24:ca:a0:
da:54:aa:f9:a8:16:e6:de:08:e6:bb:0b:cf:d4:f6:
64:03:b6:e7:db:20:24:79:5e:1b:d6:d9:e5:22:75:
fe:76:36:61:f2:44:1e:64:ab:17:3d:2b:eb:8a:e9:
0a:89:94:e3:f3:8c:de:7e:d5:89:75:b2:e6:cb:18:
dd:8b:5d:0e:b0:64:e3:09:e9:ff:07:79:d8:e1:5d:
74:90:7b:c9:30:75:20:4e:9c:72:ca:ba:df:95:4f:
93:17:74:3f:24:7b:62:06:5d:8a:8e:49:a0:fa:82:
99:bc:e0:41:bf:cf:a4:62:0d:09:5b:7d:f6:72:c7:
6f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A9:FB:A6:DF:8C:5E:D4:28:92:2D:47:AC:E7:32:40:34:9E:69:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/019EFCA4123711F1B3649086DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.25.0/24
Signature Algorithm: sha256WithRSAEncryption
44:5f:28:b4:85:c6:27:f7:e2:bf:fc:c5:a6:bd:a1:7a:65:d2:
15:07:a8:91:03:c3:eb:2e:d8:bb:69:ed:a1:27:1a:52:62:dc:
af:2b:e9:56:cd:54:d7:d8:da:c3:c3:76:25:fc:20:ee:43:4d:
89:e8:41:16:76:c2:25:24:b9:39:01:a0:e2:ee:88:cb:ac:6a:
f7:5f:e7:af:83:d8:e8:b3:a2:09:25:ea:e5:44:cb:99:de:5b:
4d:cd:ed:cb:d4:5d:86:74:61:f1:ce:0a:a4:b9:80:4a:e7:c2:
2e:8c:dc:d3:63:27:1c:cd:a4:bd:ce:5a:14:78:74:e2:87:7e:
e4:7b:bf:0b:1b:32:5d:f5:7d:38:9c:ba:91:0c:e5:a0:a8:43:
9a:cc:73:55:61:ea:29:29:5a:56:42:93:1f:3c:44:52:82:f3:
61:14:d8:86:88:ab:2f:a7:c2:de:ce:65:fe:9c:ae:5d:16:c0:
89:1b:1f:19:83:f6:a4:09:0c:5a:c3:0c:17:d8:90:c3:23:01:
b3:f7:ce:61:1f:d8:19:53:e1:6d:7a:a1:0c:94:d0:bf:14:55:
c2:5f:06:cf:16:eb:f0:7f:04:d8:d6:dd:17:ff:5f:32:27:2b:
0a:80:00:02:31:42:74:85:1f:c0:60:b3:b6:76:a5:a6:ac:ce:
bd:e7:03:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:56:20 2026 by rpki-client