Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/144C5B42130B11F194F48795DAE4EC9C.roa
File: 144C5B42130B11F194F48795DAE4EC9C.roa (raw, json)
Hash identifier: QtbBejqP/TLZTTnS2vksEOmdinzzdFVsM9P2YDwgflY=
Subject key identifier: BD:16:5D:16:FC:17:6D:DD:B0:62:A9:F7:C3:A7:54:28:05:95:0F:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BC09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/144C5B42130B11F194F48795DAE4EC9C.roa
Signing time: Thu 26 Feb 2026 12:02:53 +0000
ROA not before: Thu 26 Feb 2026 12:02:47 +0000
ROA not after: Sun 29 Mar 2026 12:02:47 +0000
asID: 9304
IP address blocks: 154.196.134.0/24 maxlen: 24
154.200.1.0/24 maxlen: 24
154.200.37.0/24 maxlen: 24
154.200.53.0/24 maxlen: 24
154.203.241.0/24 maxlen: 24
154.203.242.0/24 maxlen: 24
154.208.76.0/22 maxlen: 24
154.208.84.0/22 maxlen: 24
154.212.144.0/23 maxlen: 24
154.212.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113673 (0x1bc09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 26 12:02:47 2026 GMT
Not After : Mar 29 12:02:47 2026 GMT
Subject: CN=69a0366d-8adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1a:20:c5:3f:81:d5:b3:24:e1:32:f9:a3:d6:
c9:7a:04:f6:41:84:18:ab:12:4e:f1:71:c1:34:a5:
e7:e1:31:53:17:96:fc:02:e4:ff:99:cb:01:76:6f:
0f:c7:66:77:1e:8b:a0:15:2d:04:90:10:1c:da:83:
f8:22:27:e3:2a:b3:4f:66:6d:f0:e0:5f:6a:ac:70:
00:70:55:6b:dd:b0:6d:45:67:a7:cf:b8:92:6d:85:
ba:79:3c:e8:1b:5e:85:34:8e:33:5f:1c:09:2c:9b:
93:10:1d:04:24:62:3b:0a:64:fb:dd:e9:e4:08:fb:
7c:6e:bc:62:44:b5:ec:9a:e3:f8:8a:0c:b3:8b:25:
24:f3:63:b7:d7:5a:6a:4a:54:60:16:2a:1f:bc:96:
7c:ec:13:21:81:11:c8:f0:91:f0:c0:5a:a0:3d:2d:
03:7f:f4:37:f7:cd:8f:2c:79:33:3d:3a:9e:ba:b1:
0e:01:e3:ae:31:42:e5:63:70:c4:85:0b:5d:09:d6:
e2:eb:6c:13:20:6f:a8:56:af:b1:db:60:ce:a8:62:
b1:12:a5:e3:1d:f6:3e:73:8b:44:cb:84:6e:ed:b1:
04:bc:48:f4:de:8b:c2:2c:12:1f:13:15:cf:05:79:
08:ab:d6:af:06:95:9b:ac:ee:6d:34:cb:41:07:8a:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:16:5D:16:FC:17:6D:DD:B0:62:A9:F7:C3:A7:54:28:05:95:0F:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/144C5B42130B11F194F48795DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.134.0/24
154.200.1.0/24
154.200.37.0/24
154.200.53.0/24
154.203.241.0-154.203.242.255
154.208.76.0/22
154.208.84.0/22
154.212.144.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:17:2b:59:9f:99:cd:d7:1c:f5:de:19:30:0a:1c:35:24:18:
3e:1b:da:65:a1:db:ee:55:1f:94:a4:32:2b:c2:25:9d:3b:3d:
78:ed:43:a1:9e:37:67:47:46:35:ff:e6:d0:3a:b8:1a:d2:0b:
96:1d:92:b3:02:62:db:4d:87:e2:62:1c:ec:a8:8d:05:f0:e3:
51:1e:04:a1:42:cf:b4:c2:88:31:47:76:26:1b:7f:e0:6b:7a:
31:51:b9:53:37:bc:04:ad:b9:75:07:a9:5c:9b:00:2c:5e:83:
4d:9b:66:08:d0:ec:44:64:ce:d4:78:ca:24:35:3f:f0:d6:ab:
61:40:9e:4d:5c:15:9c:31:ad:66:61:80:38:67:69:72:df:b0:
fd:c6:a1:65:4e:5a:f5:b9:56:c8:16:0a:5a:24:4b:df:33:df:
6a:b7:32:74:53:1a:59:53:19:b6:7a:94:52:22:45:d7:be:b5:
eb:58:1e:0b:50:5f:3a:e4:02:03:cd:2d:01:33:ff:2a:86:b7:
4d:27:f5:1e:2e:7c:1f:ea:7c:02:e2:67:b1:4b:7b:98:7f:9f:
ee:85:d6:96:a9:1e:ed:1c:a5:cf:c6:0b:16:28:cb:89:ab:be:
83:ec:5f:4d:29:38:4d:83:b0:3c:96:a9:32:03:cc:9d:86:41:
0e:19:f5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:43 2026 by rpki-client