Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FE98AFE0E6311F1B830AB83DAE4EC9C.roa
File: 0FE98AFE0E6311F1B830AB83DAE4EC9C.roa (raw, json)
Hash identifier: EBqgiFH9kWXwrew6hP6FKh60OlEM5aAdQbC3qhmfNc8=
Subject key identifier: EE:B7:73:AF:A0:1C:F5:C3:6D:84:FF:9A:86:4C:1A:4D:66:3B:5B:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA82
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FE98AFE0E6311F1B830AB83DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 13:50:06 +0000
ROA not before: Fri 20 Feb 2026 13:50:02 +0000
ROA not after: Fri 27 Mar 2026 13:50:02 +0000
asID: 138915
IP address blocks: 154.93.73.0/24 maxlen: 24
154.93.99.0/24 maxlen: 24
154.93.102.0/24 maxlen: 24
154.93.103.0/24 maxlen: 24
154.93.106.0/24 maxlen: 24
154.93.107.0/24 maxlen: 24
154.93.108.0/24 maxlen: 24
154.93.112.0/23 maxlen: 24
154.93.112.0/24 maxlen: 24
154.93.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113282 (0x1ba82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 13:50:02 2026 GMT
Not After : Mar 27 13:50:02 2026 GMT
Subject: CN=6998668e-443a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fa:ff:de:44:2a:b8:3e:a4:3d:de:e5:ab:a8:
cb:fc:21:d7:94:bd:4c:20:a4:67:66:d4:73:5a:3a:
a2:a7:46:af:94:dc:6d:78:8f:6b:a6:c7:91:b0:76:
33:d3:94:1b:54:19:49:c4:65:5f:d5:41:36:82:da:
74:d6:53:48:72:66:e1:cc:47:0f:58:d2:0e:01:cc:
ae:8a:79:03:84:46:91:04:9f:7d:9a:e1:e8:72:ce:
c8:56:8b:5a:2d:f4:ef:f0:a2:e6:9d:d5:43:ef:1f:
81:3a:a3:18:da:73:bd:ab:d6:70:21:a7:23:53:c4:
ee:47:65:9d:ff:9c:b7:e3:0d:a0:40:6e:ae:30:1b:
3f:1c:27:01:11:ab:ab:5b:97:11:08:d8:7b:71:83:
6d:0e:aa:99:9a:b6:a7:fd:67:68:b4:a5:1d:7f:a5:
1c:62:ff:46:bf:db:87:d8:b9:d1:4a:bd:50:5f:3d:
29:7e:ad:f8:e7:58:94:ab:9a:e6:71:7b:33:38:db:
d6:3a:9c:f9:33:64:ae:6e:79:17:e5:82:d9:ed:1a:
36:de:26:76:0b:c5:cf:4d:56:13:32:1b:e8:6a:02:
7a:6e:b8:ab:c9:79:26:ce:2f:3d:e0:7d:87:ce:9a:
d4:10:f4:a9:dc:0b:47:89:1d:de:25:2e:fb:93:85:
05:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B7:73:AF:A0:1C:F5:C3:6D:84:FF:9A:86:4C:1A:4D:66:3B:5B:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FE98AFE0E6311F1B830AB83DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.73.0/24
154.93.99.0/24
154.93.102.0/23
154.93.106.0-154.93.108.255
154.93.112.0/23
Signature Algorithm: sha256WithRSAEncryption
86:1b:9b:b8:c1:a8:9c:c0:1e:de:7f:52:15:22:60:50:be:6e:
23:56:ef:61:31:29:58:4c:84:49:b3:5c:5e:ed:f3:38:2b:65:
d1:0d:67:db:6e:d8:5b:26:e8:ec:bf:df:6e:72:7d:c0:24:3d:
f7:ba:f7:3b:9c:9f:54:ad:31:18:fa:4b:46:91:0d:83:5d:ff:
d0:ee:d9:3d:1e:44:09:a5:7f:71:e4:a7:a0:aa:23:55:36:fb:
10:73:59:45:f9:a6:4b:93:b0:5a:cb:bc:4f:14:35:e7:0a:18:
76:19:76:19:ac:d4:f2:f2:71:25:3a:e8:c6:80:9e:e9:b3:ed:
96:7d:2b:93:c5:a0:8d:70:f1:29:53:3a:1d:ed:45:c2:83:17:
cb:2c:3c:48:7b:b0:b6:81:f3:bd:d9:d0:3c:38:b6:0d:4d:b9:
be:02:d9:a4:8b:cf:6a:99:d2:2f:92:f1:c6:99:be:b2:ba:42:
72:36:d6:5c:16:ea:51:f7:0f:2a:1a:31:b1:a3:56:1f:c5:57:
95:6f:a4:db:1e:94:64:d4:b6:7d:7a:d6:ec:50:7d:62:dc:d4:
d3:30:09:93:e0:bc:ae:93:8f:92:b0:c8:02:02:4d:13:d1:65:
55:43:2c:4f:a6:d5:ee:40:4a:01:e0:97:12:a8:c2:8f:cb:0e:
d2:82:a6:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:59:51 2026 by rpki-client