Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29BDC4C80E5D11F1B00F15DDDAE4EC9C.roa
File: 29BDC4C80E5D11F1B00F15DDDAE4EC9C.roa (raw, json)
Hash identifier: +3i4ePXebZrBcJY3AxQH+OhDmNcXAJkIqnhkuaw+B6o=
Subject key identifier: AE:6B:09:D2:68:86:A6:21:85:F2:66:FC:B3:F9:E6:14:DD:3C:B7:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29BDC4C80E5D11F1B00F15DDDAE4EC9C.roa
Signing time: Fri 20 Feb 2026 13:07:52 +0000
ROA not before: Fri 20 Feb 2026 13:07:47 +0000
ROA not after: Fri 27 Mar 2026 13:07:47 +0000
asID: 138915
IP address blocks: 154.206.60.0/23 maxlen: 24
154.206.62.0/23 maxlen: 24
154.206.72.0/24 maxlen: 24
154.206.73.0/24 maxlen: 24
154.206.80.0/23 maxlen: 24
154.206.82.0/23 maxlen: 24
154.206.84.0/23 maxlen: 24
154.206.86.0/23 maxlen: 24
154.206.88.0/23 maxlen: 24
154.206.90.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113268 (0x1ba74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 13:07:47 2026 GMT
Not After : Mar 27 13:07:47 2026 GMT
Subject: CN=69985ca8-8bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:55:53:36:37:4e:a8:da:61:d5:2c:8f:2f:6f:
76:9d:1d:92:64:60:07:96:e2:23:07:c5:34:85:39:
e2:1e:84:a4:83:9d:2f:ac:71:e7:25:48:e6:cb:c1:
2c:40:e7:0f:c9:31:00:e4:04:86:45:5e:7e:28:64:
f1:2c:d3:2b:60:0c:42:71:21:40:6c:6c:86:6c:34:
8d:74:1e:38:ed:73:1d:8c:19:77:39:bf:21:4c:71:
62:62:6f:cb:8b:c3:af:0a:a1:72:19:82:21:b4:91:
38:f7:73:60:1e:ad:13:fc:03:55:46:b5:4a:28:7f:
cc:7b:c6:f4:52:fe:66:ad:f7:82:a3:bf:f1:2e:5a:
06:52:4d:09:04:64:6b:dd:b0:6d:c3:17:a6:00:96:
47:39:ae:0e:32:cb:73:d7:8f:f0:25:13:0c:ad:2d:
3b:97:6a:f0:b5:87:f0:97:d7:cc:e0:84:db:d8:d7:
f8:58:a8:23:22:d3:6f:1f:92:dc:47:4d:b9:45:89:
26:4b:fd:2e:7f:ab:b3:14:cc:9b:76:78:1e:af:ab:
23:35:f2:03:b9:54:fb:57:f5:08:ac:1c:e1:42:39:
ac:63:11:ec:21:14:68:21:a0:c4:40:a2:f0:64:7e:
73:67:83:9d:24:bf:49:ea:2b:db:21:5a:44:38:2a:
c0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6B:09:D2:68:86:A6:21:85:F2:66:FC:B3:F9:E6:14:DD:3C:B7:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29BDC4C80E5D11F1B00F15DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.60.0/22
154.206.72.0/23
154.206.80.0-154.206.91.255
Signature Algorithm: sha256WithRSAEncryption
8b:d9:b5:23:01:ea:4c:bb:88:11:17:dc:68:ac:d5:f4:6e:7e:
1e:03:12:0a:44:dc:29:bb:8a:5d:93:6a:63:e0:77:a5:31:9f:
66:60:8c:ff:8d:97:3a:6c:67:11:29:5c:f9:bc:b8:a5:0b:1c:
f4:26:b6:3d:d1:11:08:ae:78:77:5c:48:06:fa:61:86:8e:ed:
20:b7:d3:f9:34:9e:85:f9:28:18:99:00:1d:c8:32:09:eb:08:
ac:0d:70:a0:32:8d:ed:72:74:b1:41:7f:5c:09:5c:3b:2d:2e:
76:d5:3b:2b:9d:99:63:ee:75:61:44:0e:6e:e0:90:2b:53:3d:
f7:56:3e:2a:a8:13:84:90:b3:0b:34:14:84:66:6f:0d:46:c5:
48:41:f6:31:5d:cd:59:3d:6b:ad:b3:d3:70:32:73:8e:5b:c6:
24:3e:fd:70:f5:9a:94:3c:42:e4:9e:3d:df:9c:f1:e2:5d:82:
19:23:c5:0d:07:84:7f:4c:b4:ce:c9:57:11:cd:3d:fa:9f:66:
78:4e:9c:c8:7c:2e:cd:a5:7b:d1:42:03:97:39:0e:70:d6:89:
ef:0f:41:ea:1a:39:32:23:03:b9:f0:e0:94:90:c8:68:af:98:
9b:f2:5d:7d:96:90:27:38:fe:e9:83:04:cf:16:39:1d:20:fc:
d4:f5:9e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:35 2026 by rpki-client