Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/276307DE0E7011F1A6E4BFCDDAE4EC9C.roa
File: 276307DE0E7011F1A6E4BFCDDAE4EC9C.roa (raw, json)
Hash identifier: HZN4TL5obfBEG3y4IZjtJLfuKOghd7q9ChX25QJGWAA=
Subject key identifier: F0:41:3C:A1:BC:0D:0B:11:88:2E:1F:A2:21:D8:8B:45:20:6A:97:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA9C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/276307DE0E7011F1A6E4BFCDDAE4EC9C.roa
Signing time: Fri 20 Feb 2026 15:23:48 +0000
ROA not before: Fri 20 Feb 2026 15:23:45 +0000
ROA not after: Thu 04 Jun 2026 15:23:45 +0000
asID: 18229
IP address blocks: 154.210.175.0/24 maxlen: 24
154.210.176.0/24 maxlen: 24
154.210.177.0/24 maxlen: 24
154.210.178.0/24 maxlen: 24
154.210.179.0/24 maxlen: 24
154.210.180.0/24 maxlen: 24
154.210.181.0/24 maxlen: 24
154.210.182.0/24 maxlen: 24
154.210.183.0/24 maxlen: 24
154.210.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113308 (0x1ba9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 15:23:45 2026 GMT
Not After : Jun 4 15:23:45 2026 GMT
Subject: CN=69987c84-6dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3e:80:de:fe:35:cd:2f:38:ea:3e:cb:5c:ec:
af:77:ba:cc:4f:8f:5b:21:10:09:9f:97:e4:be:8b:
8f:05:97:08:9a:43:ed:40:42:a6:40:d1:4b:ce:0f:
28:ba:6a:73:5d:3c:ef:71:1a:60:3f:db:51:bd:22:
26:57:ff:ec:c0:09:5a:9c:e9:b3:19:6b:78:fb:55:
ed:89:0c:fe:23:ca:0e:09:53:ba:c8:c6:52:12:05:
c9:96:96:58:d8:5e:0d:a5:98:a2:94:9d:66:b7:b6:
29:6f:b9:ca:32:a1:2f:61:e2:2a:6a:db:ef:28:65:
da:e3:b9:3f:e9:ef:b7:da:e3:1a:84:8d:34:28:17:
27:c4:a7:77:18:05:77:7d:76:85:53:e0:91:ce:03:
e7:ab:68:bb:2c:8a:4b:59:b8:35:39:9c:34:8d:1f:
b8:94:f3:fa:ce:f1:1b:44:1e:e0:73:fa:0e:f0:56:
16:67:ac:9a:48:f4:80:9b:b9:86:02:f2:c1:fd:6f:
3e:8b:c3:d0:9d:c6:2a:2e:f1:c2:61:f5:86:0a:9a:
8c:56:1f:10:27:33:6d:e7:f6:08:f9:bb:cb:e9:1a:
9e:0a:61:51:2b:bf:02:5a:e9:6d:81:f6:94:45:d6:
13:88:ca:bb:b3:05:8e:dd:1e:4f:22:96:63:50:ba:
e1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:41:3C:A1:BC:0D:0B:11:88:2E:1F:A2:21:D8:8B:45:20:6A:97:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/276307DE0E7011F1A6E4BFCDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.175.0-154.210.184.255
Signature Algorithm: sha256WithRSAEncryption
a9:09:b3:43:4d:a2:ae:08:44:e5:fe:17:bd:43:99:d3:ce:2d:
d4:9e:e4:d8:5d:62:a6:b9:31:89:40:8c:51:3f:dc:60:72:15:
37:60:47:bd:a3:ee:08:87:98:85:32:4f:99:cc:86:2a:e7:c3:
41:53:48:66:bb:6e:45:89:ba:9d:76:e2:25:00:bf:df:dc:c8:
8c:44:4e:87:b1:ce:44:0e:d2:e0:3a:95:2d:2d:82:25:1d:6f:
6a:07:ee:62:e6:72:97:92:b8:04:47:74:a7:01:fd:c5:b3:6e:
66:e6:2e:62:48:52:b2:70:c6:a4:07:dd:2f:24:53:fe:72:ba:
fe:4b:e1:fe:be:71:2e:05:40:66:e6:a6:e1:72:cf:62:48:76:
40:b7:6a:61:18:46:9d:d5:87:55:12:87:89:0c:68:56:7d:56:
7a:35:ac:0d:20:d2:f2:de:51:b1:91:5b:92:83:df:ad:20:d5:
58:98:ef:7d:20:75:a9:a9:4c:9e:01:03:58:98:fd:3c:6e:e1:
a7:00:58:5c:7b:f7:b3:9d:14:ca:d6:28:94:fd:52:6d:d5:2d:
2d:ab:90:9d:55:64:b4:d4:be:d9:85:56:25:79:e0:da:23:ca:
9a:ad:7b:3a:fb:d7:02:d3:a9:a5:fb:eb:4c:19:2d:5c:12:da:
aa:ed:c2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:42:57 2026 by rpki-client