Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01A989AE0E9411F1A6A4E3A7DAE4EC9C.roa
File: 01A989AE0E9411F1A6A4E3A7DAE4EC9C.roa (raw, json)
Hash identifier: txmy3kECtPcTQfNyMa+QtDzQ9TdcqVkTQ5XWCzq4HCs=
Subject key identifier: E2:82:6B:D0:0A:F4:D5:5F:85:9F:86:44:6F:24:33:3B:71:C6:18:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BAAC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01A989AE0E9411F1A6A4E3A7DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 19:40:27 +0000
ROA not before: Fri 20 Feb 2026 19:40:22 +0000
ROA not after: Thu 04 Jun 2026 19:40:22 +0000
asID: 18229
IP address blocks: 154.210.185.0/24 maxlen: 24
154.210.186.0/24 maxlen: 24
154.210.187.0/24 maxlen: 24
154.210.188.0/24 maxlen: 24
154.210.189.0/24 maxlen: 24
154.210.190.0/24 maxlen: 24
154.210.191.0/24 maxlen: 24
154.210.192.0/24 maxlen: 24
154.210.193.0/24 maxlen: 24
154.210.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113324 (0x1baac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 19:40:22 2026 GMT
Not After : Jun 4 19:40:22 2026 GMT
Subject: CN=6998b8ab-691c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ed:f7:1d:cd:6a:ca:54:3a:35:a5:9b:ef:3a:
73:68:bf:09:64:1f:3c:9b:80:ad:a6:09:c4:7e:96:
c7:61:70:b7:f5:d1:0c:20:04:1f:bb:f9:94:e1:72:
c0:14:21:d4:46:46:e0:de:c8:df:43:a2:28:40:8a:
f3:9c:24:d8:fb:4a:9a:56:1f:bc:aa:64:40:35:ad:
9a:66:cc:1c:36:89:69:35:ed:fa:52:9b:90:d9:35:
5e:6a:c5:64:67:39:97:2c:96:1b:d5:59:d9:fe:00:
e5:00:09:a0:85:b5:b0:e5:4e:3b:f9:1e:e0:90:d5:
2e:35:6c:f3:26:75:b3:68:38:05:c9:ed:5a:e7:f7:
c9:80:3a:18:a1:a0:6d:21:3b:ef:b6:e3:7d:c8:3f:
04:00:93:49:e1:a9:ef:54:5e:88:a5:f0:4f:d6:5a:
d8:83:61:fe:29:72:73:49:f4:97:20:4a:d2:8b:b5:
ca:42:92:d7:85:16:d0:02:97:31:c8:2b:61:71:44:
64:cf:76:4d:96:a6:a0:fe:4a:6c:31:67:2a:7a:74:
de:0d:3e:bc:ed:0c:e3:a8:c5:2f:e8:5e:78:4a:a6:
63:ed:f3:6a:ee:2d:98:a9:2b:fa:40:78:af:26:98:
b6:ea:63:62:06:a4:d6:e1:9e:28:5a:19:94:2a:63:
96:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:82:6B:D0:0A:F4:D5:5F:85:9F:86:44:6F:24:33:3B:71:C6:18:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01A989AE0E9411F1A6A4E3A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.185.0-154.210.194.255
Signature Algorithm: sha256WithRSAEncryption
2a:10:fc:97:15:a0:a3:8a:61:a6:10:5a:00:ca:71:24:d6:d2:
71:82:28:44:92:32:6e:bd:63:b5:13:87:83:fb:5d:54:a9:3a:
d1:d4:42:d3:5f:22:0e:8c:c3:7d:07:b3:82:a2:80:ad:0d:e1:
70:64:d3:f4:35:1c:4e:90:35:cd:46:99:da:cd:06:d7:79:65:
07:cc:b1:59:e9:3d:09:a8:86:38:a6:d2:a9:85:69:63:49:0b:
61:de:5f:8e:e3:cc:9e:34:e4:9f:d9:e4:06:41:a6:9c:f7:93:
33:26:6a:65:b7:5e:8d:d4:44:52:34:a6:1d:65:d7:df:c3:26:
80:3b:69:80:f6:55:17:ab:5c:58:2e:a1:e9:60:2d:93:64:9f:
ec:26:51:30:5d:53:96:3f:df:05:09:2f:f6:b5:97:f7:79:a2:
83:98:60:f5:76:48:83:66:98:b1:c3:9d:cc:31:6a:de:96:37:
21:77:1d:bc:74:44:ca:65:be:bd:ad:df:a1:12:10:8b:32:93:
e8:fe:f4:16:9d:52:10:d0:06:bb:ef:b3:e2:69:5e:38:0c:c0:
a3:ea:4c:01:42:6e:7d:a8:5d:7e:00:c6:31:37:8a:8f:3f:32:
b6:c1:44:61:92:f0:c8:7d:50:fb:b6:83:2f:f6:be:d8:ae:e2:
5c:4b:b2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:37:54 2026 by rpki-client