Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E1AB0480E3711F18BF6AB7BDAE4EC9C.roa
File: 1E1AB0480E3711F18BF6AB7BDAE4EC9C.roa (raw, json)
Hash identifier: vD6MPiZ6AKsHwe2p2WOLopcrgnnuRHds58Bv9lXSERM=
Subject key identifier: 13:DE:86:FC:C5:BD:21:55:CA:42:95:64:C3:6A:05:9A:03:E3:76:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA48
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E1AB0480E3711F18BF6AB7BDAE4EC9C.roa
Signing time: Fri 20 Feb 2026 08:35:32 +0000
ROA not before: Fri 20 Feb 2026 08:35:27 +0000
ROA not after: Fri 27 Mar 2026 08:35:27 +0000
asID: 55320
IP address blocks: 154.205.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113224 (0x1ba48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 08:35:27 2026 GMT
Not After : Mar 27 08:35:27 2026 GMT
Subject: CN=69981cd4-b79b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:7c:b4:67:95:f4:a3:95:f9:5f:19:f2:20:
96:f6:06:fb:3a:12:1f:dc:45:8b:a0:56:b4:c9:89:
e0:bd:de:6e:9a:ec:f1:3c:ba:23:f0:37:66:34:26:
75:fe:69:8f:bc:d6:b1:e4:98:d3:63:2e:d3:bd:d9:
cd:8e:8b:fb:db:b7:42:01:fa:fc:52:a0:9d:b7:bf:
30:80:eb:08:4a:b7:6b:a9:73:19:ed:6d:6b:c3:95:
e6:cb:06:e7:25:74:2b:4c:f8:af:e5:ce:4b:08:5b:
54:a3:a2:8d:1b:47:41:24:39:40:76:6a:6b:9c:2b:
ee:d4:d6:a7:e2:1d:65:78:99:c4:bf:28:9f:79:c1:
c2:8f:d5:7f:a6:3b:e8:6a:35:df:a4:f5:41:a1:8e:
81:65:a4:aa:6d:e2:43:ac:4a:23:fb:db:fc:82:54:
36:51:32:80:46:49:48:e1:77:a2:b0:8a:f3:b9:84:
a6:99:6d:87:6b:9f:42:66:8a:52:30:10:c3:57:08:
42:7c:83:d3:aa:4e:a2:ca:99:a7:53:98:f1:bc:95:
66:20:41:10:93:08:1c:5e:12:79:6c:f9:e1:ce:ec:
08:97:38:8c:88:21:ea:7f:dd:a9:a1:39:91:06:62:
00:dc:21:fe:8a:f0:a1:04:8b:43:b2:6a:3d:07:11:
a6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DE:86:FC:C5:BD:21:55:CA:42:95:64:C3:6A:05:9A:03:E3:76:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E1AB0480E3711F18BF6AB7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.140.0/24
Signature Algorithm: sha256WithRSAEncryption
37:35:a9:0a:d0:87:44:e4:8f:14:56:2c:28:c4:e2:bf:33:b9:
65:4f:59:86:50:5d:b6:ec:bc:1d:d7:cf:b6:d6:71:fc:44:5d:
25:cd:eb:8b:b2:49:32:87:4d:88:07:3f:5b:6f:0b:6a:9d:56:
db:fc:43:b9:3e:ad:b3:25:16:88:49:d7:ff:25:d2:5b:2f:a1:
58:87:1e:e8:1f:21:ea:ec:da:34:66:55:c1:b1:e6:e4:48:49:
ed:bf:7e:68:74:ce:74:73:75:f2:14:8b:f1:34:46:20:f5:ff:
68:fb:69:bd:b8:1c:b9:62:18:d9:c5:9f:cc:00:f9:4d:ba:75:
2a:b9:3c:24:75:f9:b0:c7:ca:5a:56:66:3e:f6:77:08:3f:4a:
88:b0:93:15:83:21:0d:d3:46:ef:98:9f:ca:c6:46:65:c7:cd:
a8:2b:69:86:02:7e:bc:d2:77:ee:cc:f9:5a:48:26:6d:80:2e:
b3:ff:07:17:b3:aa:ea:1c:ad:a2:9f:86:8f:f2:0f:e5:d9:f4:
b2:fc:b1:e7:8b:c0:6e:aa:ae:c3:16:31:d6:31:3a:d5:5a:ee:
74:16:26:e7:9c:bb:42:45:40:af:e7:7e:d8:a3:95:4f:d0:af:
6f:1f:26:e5:8a:7f:9a:f9:30:69:6b:aa:b1:04:ab:e4:8e:a6:
47:8f:28:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:14:08 2026 by rpki-client