Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/080A766E0E6711F1BC9F8798DAE4EC9C.roa
File: 080A766E0E6711F1BC9F8798DAE4EC9C.roa (raw, json)
Hash identifier: tDAh6cmTQNzRBwgYwCP2dCKpsarxcy0qC46H6fiYK+Y=
Subject key identifier: B7:F2:C7:BC:51:10:8C:66:53:D1:36:6B:5D:42:CB:EF:48:04:DC:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA86
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/080A766E0E6711F1BC9F8798DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 14:18:30 +0000
ROA not before: Fri 20 Feb 2026 14:18:25 +0000
ROA not after: Thu 28 May 2026 14:18:25 +0000
asID: 135377
IP address blocks: 154.197.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113286 (0x1ba86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 14:18:25 2026 GMT
Not After : May 28 14:18:25 2026 GMT
Subject: CN=69986d36-da6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4c:64:8d:42:b2:14:ac:ab:70:7d:ff:35:23:
62:5c:2a:56:c5:24:ed:c1:10:17:f7:65:81:4c:17:
95:99:da:db:50:29:02:cf:24:52:a1:6b:e9:7b:87:
f4:0e:01:a3:d8:46:d2:ca:16:9f:2a:a8:0a:50:18:
2c:c7:67:6d:6b:fc:26:52:58:e9:1b:96:dc:6f:6f:
32:a2:49:71:45:ea:47:85:fe:e3:93:24:74:7d:fc:
1f:3f:3e:94:83:eb:a5:ee:7f:06:dc:e7:6a:26:50:
ed:83:89:12:0f:19:77:be:90:8a:ce:ea:e6:a0:e3:
9f:ae:f1:00:cc:f4:6f:72:0b:46:8a:bf:2e:54:c0:
8d:17:f5:66:eb:a8:d8:84:82:54:f7:51:99:b3:da:
19:6b:87:f4:0d:0b:c7:8a:9d:ec:2e:e5:a0:26:45:
f5:6b:40:5e:e9:49:17:bc:fd:75:90:2e:dc:ab:c9:
53:6c:79:ef:83:3b:63:e4:21:ac:8c:ba:ba:8b:5b:
6e:9b:55:65:6d:22:c7:ea:c9:8c:2a:0e:05:16:09:
bb:d8:a1:f6:72:12:85:16:9a:2a:a6:84:94:8d:d7:
6f:4e:83:f1:88:77:51:c2:47:cf:99:48:63:26:0f:
9b:f3:a3:12:dc:ef:66:ca:de:fc:fc:fd:30:88:8d:
f0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F2:C7:BC:51:10:8C:66:53:D1:36:6B:5D:42:CB:EF:48:04:DC:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/080A766E0E6711F1BC9F8798DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.56.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:b6:1d:e4:63:3c:27:d9:b8:f1:80:c7:9f:1e:1e:ab:3a:3c:
b8:28:fd:b5:80:ec:94:3c:41:1a:01:bd:2b:1a:88:88:45:0b:
6c:97:54:98:2b:75:35:7f:5d:67:0e:89:b7:e5:f0:93:ab:c3:
63:2b:01:87:e8:fc:2e:97:5a:45:10:32:43:00:d7:e5:d6:33:
03:c7:aa:41:50:65:ca:84:f4:6a:b4:64:61:f6:2d:5a:1c:c4:
71:c0:10:21:99:cc:9a:1f:75:d2:fc:3a:49:c9:dd:01:5e:1f:
c1:90:4d:5e:8f:a7:53:ee:3a:0e:ed:7b:b6:3d:b8:a2:75:d3:
11:a7:b5:9b:fe:51:3d:dd:7f:4e:9b:73:9e:b6:34:4e:d3:e0:
a8:79:ba:ba:99:ae:9c:7c:38:08:80:c4:db:2e:c0:c0:de:c3:
61:6d:d7:48:58:1d:ec:6c:40:5a:e2:eb:cd:ef:11:d7:68:16:
57:bf:48:14:01:a3:2b:2e:d7:27:8a:54:90:fe:e8:11:48:4c:
35:3a:31:d1:37:2f:ae:61:59:af:78:76:25:de:82:dd:7d:31:
a7:1a:d6:36:7a:e7:ea:44:fc:ce:2c:12:fb:31:94:ec:7a:1b:
1b:4f:4c:69:40:e1:0a:dc:8b:d5:4e:f5:59:d4:b2:08:fc:59:
e7:cc:0e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:02:46 2026 by rpki-client