Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/031B3F50124D11F1BEE5708BDAE4EC9C.roa
File: 031B3F50124D11F1BEE5708BDAE4EC9C.roa (raw, json)
Hash identifier: o6EfRzcTHrBTlkMv3hhpUiGRsD1gST6QWRi+gBLJSbQ=
Subject key identifier: 96:96:DE:09:7B:A8:C1:C2:E8:28:BF:00:67:AB:2C:A4:C5:A2:28:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BBC5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/031B3F50124D11F1BEE5708BDAE4EC9C.roa
Signing time: Wed 25 Feb 2026 13:22:20 +0000
ROA not before: Wed 25 Feb 2026 13:22:16 +0000
ROA not after: Fri 06 Mar 2026 13:22:16 +0000
asID: 40779
IP address blocks: 154.219.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113605 (0x1bbc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 13:22:16 2026 GMT
Not After : Mar 6 13:22:16 2026 GMT
Subject: CN=699ef78c-ce3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:75:08:27:77:53:06:de:69:77:21:7c:a2:
a9:e6:fd:c5:30:3f:e3:78:fb:d9:1e:71:bd:94:b2:
2e:f8:97:1b:0a:c1:e5:96:f1:c9:62:6e:db:8b:57:
e5:ff:4b:bc:a3:74:af:d6:0a:d9:a6:25:50:48:b6:
fb:c0:e1:53:42:39:f5:39:1f:ba:a6:6a:36:04:72:
42:19:d7:43:46:fe:36:e8:03:a6:10:70:33:e9:e9:
c2:2b:d0:79:ac:4a:91:2f:fc:12:a2:0d:11:0f:f6:
de:bd:16:b8:74:f5:f2:36:4f:3e:f1:29:ea:ec:6b:
91:39:4d:ae:48:4a:8b:d0:41:3c:fd:a9:b9:d4:c4:
0b:f5:bd:27:5d:81:bb:05:53:97:76:d7:90:70:3a:
2f:35:c7:65:6b:16:1d:6e:5b:d8:0d:ea:ec:66:8a:
aa:b0:0c:19:0a:ad:6c:66:e1:3d:23:67:05:51:c5:
c4:b4:f7:af:54:a5:ab:ce:96:f9:c7:d0:90:d1:fa:
a2:c9:3b:31:67:6c:fc:f9:ed:3b:e9:df:2e:64:39:
b0:92:3e:1a:7a:63:49:36:19:7c:87:a7:4f:7f:c6:
5d:51:a8:78:39:07:2e:bb:80:bf:12:6e:71:c8:8a:
e7:8a:9d:1d:68:57:12:c7:53:fd:a6:62:e5:c5:4a:
ed:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:96:DE:09:7B:A8:C1:C2:E8:28:BF:00:67:AB:2C:A4:C5:A2:28:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/031B3F50124D11F1BEE5708BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.96.0/19
Signature Algorithm: sha256WithRSAEncryption
4b:f6:db:a3:3e:bb:e5:ab:74:c5:20:31:c7:34:fc:c2:96:ee:
c3:6d:ab:37:09:ac:78:8e:b9:fa:95:14:d6:09:f7:1a:67:81:
64:9b:fd:e9:22:62:9f:95:1b:8c:32:8d:10:7f:05:a7:4e:bf:
9b:f6:81:09:0e:6e:fb:3b:6c:e6:e9:bb:6e:a4:a0:1b:ae:38:
d9:47:3c:78:59:15:5c:ee:63:a5:57:3d:4a:3c:b0:a2:db:fb:
56:9d:dd:12:15:34:78:b3:b3:7b:49:e6:d6:b1:dd:bf:ac:c7:
3f:a2:1d:9b:28:ea:9a:2c:ff:26:63:09:51:c5:47:e9:ad:a1:
6b:64:d3:f5:f0:c4:52:8b:86:c7:4c:cf:b4:ea:18:5c:9e:66:
c4:21:1a:a0:77:1b:09:a4:30:73:1e:4c:9e:6b:7c:ac:0a:b5:
16:5b:97:fe:d2:d8:00:4d:33:91:f7:0f:73:ef:0c:5b:29:97:
e4:4c:7e:53:4c:5e:47:8f:d9:b4:b1:9c:cd:f5:e8:c7:5f:81:
d6:e5:62:43:06:17:ac:84:b2:0f:c4:1a:c5:5f:0c:a0:42:a8:
3e:8d:97:9c:f2:8b:06:ee:92:77:20:f8:a3:20:90:c8:a1:a2:
c1:90:bb:99:83:09:f5:1c:71:5d:b5:b3:99:b4:81:61:da:91:
e0:69:55:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:48 2026 by rpki-client