Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EA3B59E29C411F1AE8218D4DAE4EC9C.roa
File: 0EA3B59E29C411F1AE8218D4DAE4EC9C.roa (raw, json)
Hash identifier: IyWgjUz60D6plCiFuSg5tYQ2LHgNKsJholMDFEqjcj8=
Subject key identifier: 97:DE:2C:EC:5E:F0:F2:7D:05:10:04:0D:FA:10:69:37:55:06:BE:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C11C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EA3B59E29C411F1AE8218D4DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 10:02:26 +0000
ROA not before: Fri 27 Mar 2026 10:02:21 +0000
ROA not after: Sun 10 May 2026 10:02:21 +0000
asID: 25160
IP address blocks: 154.81.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114972 (0x1c11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 27 10:02:21 2026 GMT
Not After : May 10 10:02:21 2026 GMT
Subject: CN=69c655b2-0a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1c:66:76:c1:11:ac:08:14:f0:4b:82:2e:56:
78:d6:dd:43:c8:a7:95:6e:d4:d2:fa:23:19:e8:8e:
ac:0c:ee:92:90:bf:08:83:7f:5a:8b:78:48:8d:9d:
1d:06:8f:a2:8f:bf:b6:69:43:28:86:c1:ca:5e:89:
e8:b7:0c:b1:f4:ee:22:98:25:cf:a3:15:05:6b:cd:
7f:c1:63:97:75:69:c0:b0:fe:8e:65:96:9a:55:fe:
b2:09:fe:52:39:95:89:0e:fa:ad:66:0c:e1:e7:06:
d9:c9:9d:9e:e9:b1:f5:04:9d:82:b5:04:36:b4:60:
06:cb:bf:6c:47:1d:a7:b1:a6:bc:11:48:b7:09:24:
08:f6:41:3b:21:47:aa:9f:86:ae:53:92:38:88:e3:
e8:ee:3b:be:aa:6d:e5:e3:14:b5:27:8b:ee:fe:fa:
6f:ca:75:2d:7a:af:06:9b:d6:30:3d:6b:7c:7f:c7:
61:8f:e0:72:65:fe:79:ea:5f:6d:5c:69:54:21:c1:
d6:95:44:29:e1:94:78:bc:8b:7a:68:db:4d:14:70:
87:fb:31:52:92:b8:6a:5c:4c:72:b3:56:30:ce:b0:
78:22:c5:1f:23:b7:b5:ea:96:35:5e:06:3d:d0:10:
2e:99:25:f4:63:12:16:06:59:d1:01:37:7b:b1:f4:
a2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DE:2C:EC:5E:F0:F2:7D:05:10:04:0D:FA:10:69:37:55:06:BE:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EA3B59E29C411F1AE8218D4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.50.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ba:07:8d:3c:65:7b:4b:f4:d8:bb:6f:2c:56:bc:16:a8:2b:
16:b2:f9:60:5d:65:af:e5:7d:9a:0a:8a:9f:c2:b6:f1:e3:7b:
1d:14:0d:8e:49:aa:83:2c:a9:10:e4:db:6b:ac:3b:d1:7b:44:
75:28:cd:12:17:e2:ac:15:88:d7:bc:40:60:59:cd:4b:46:28:
c9:b0:1e:0b:78:9c:dc:ea:8b:f9:b0:9e:c0:22:71:55:02:d5:
7b:fc:45:d2:db:81:88:36:d3:88:9c:51:60:63:cb:59:18:67:
60:33:8b:a2:91:6c:a0:cd:ee:fe:60:3e:9f:5d:eb:5e:59:40:
66:74:96:ef:29:47:1f:19:38:de:e5:76:3d:50:59:a5:0b:95:
b9:65:68:60:a0:69:f4:7e:b1:ab:5e:9c:a4:a7:2f:2f:16:b7:
de:12:9f:58:07:c8:06:e6:bb:91:2b:3f:2d:09:c3:01:5e:02:
b8:50:83:b7:a6:5c:fe:9e:06:84:ab:fa:87:ec:82:e5:e1:cb:
3d:55:7e:d0:35:aa:e5:c4:c4:c6:7c:26:30:47:10:fc:56:9f:
47:85:bf:6a:46:b1:fd:db:a4:e8:0b:df:80:77:58:3e:c2:64:
1c:f3:b0:76:8b:73:a0:b2:b3:b5:fd:1e:43:36:f3:d7:73:d9:
20:3e:bd:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:51:01 2026 by rpki-client