Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33F6F224132211F195031CA0DAE4EC9C.roa
File: 33F6F224132211F195031CA0DAE4EC9C.roa (raw, json)
Hash identifier: U8MPuZ/FdBLdh5n9S+b8dyb/tYKEmPTIs2FDepPDc0Q=
Subject key identifier: 36:6B:79:16:DD:C9:0B:FA:0E:C5:6A:A4:E6:56:70:5C:DB:0C:85:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BC17
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33F6F224132211F195031CA0DAE4EC9C.roa
Signing time: Thu 26 Feb 2026 14:48:25 +0000
ROA not before: Thu 26 Feb 2026 14:48:21 +0000
ROA not after: Thu 09 Apr 2026 14:48:21 +0000
asID: 3257
IP address blocks: 154.81.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113687 (0x1bc17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 26 14:48:21 2026 GMT
Not After : Apr 9 14:48:21 2026 GMT
Subject: CN=69a05d39-42d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ca:c6:82:ac:54:e0:79:97:68:e5:fd:a8:51:
68:ef:5b:4a:e1:22:4b:ee:bd:ab:dc:ba:bf:71:b8:
cc:36:3b:c8:4e:cb:de:3e:75:e7:1f:53:d4:6e:95:
6d:0a:cd:17:6d:4d:25:08:10:5b:e2:04:be:0c:09:
cf:73:b1:a7:73:ad:f1:a7:ba:81:1e:eb:c9:f2:12:
59:cd:98:86:da:b7:5b:d6:33:ef:e7:4f:28:54:c0:
1f:ac:bb:e7:b1:9f:a8:7d:b1:ec:d9:5d:ff:c0:06:
7c:39:41:f2:c7:38:cb:88:45:20:81:94:af:bf:2e:
93:dd:63:b6:fb:7e:c7:3c:2f:7f:73:b1:ee:10:48:
9d:26:ce:bf:53:21:92:7b:b9:b6:67:6c:a4:a2:de:
ca:66:f1:d6:2b:a7:e3:c9:21:3f:33:f0:eb:51:60:
5c:dc:b4:62:53:f6:1c:3e:91:68:68:e5:02:cc:f5:
72:c3:56:09:86:dd:f6:c0:62:a9:70:08:56:93:ca:
25:9a:8d:40:a4:7a:47:ed:2d:e2:fe:7e:8d:7b:4f:
18:13:9b:3f:23:43:90:9a:31:62:42:61:05:16:fe:
7b:23:7d:b9:7e:bf:36:66:f9:75:8a:44:ac:ad:4b:
64:ce:bc:a4:22:c5:5b:45:e2:8a:61:a2:63:ec:ad:
b3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6B:79:16:DD:C9:0B:FA:0E:C5:6A:A4:E6:56:70:5C:DB:0C:85:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33F6F224132211F195031CA0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.50.0/24
Signature Algorithm: sha256WithRSAEncryption
38:68:a6:77:81:7c:68:15:95:53:60:02:e9:1c:61:39:ed:0f:
dd:01:5e:a3:56:29:67:fc:51:fe:b1:9b:f2:46:d8:6d:cf:94:
1e:39:1d:74:df:57:f1:a3:06:8f:57:6d:18:f4:85:11:66:76:
fa:0f:75:cf:86:70:24:34:88:99:6e:38:fa:fe:9d:0b:e8:a5:
24:bc:01:14:0c:5c:d3:40:22:dc:09:c0:e8:fc:ce:f7:7c:3e:
6a:ff:dc:76:0e:75:20:b3:58:b7:3f:02:1f:97:d6:af:ae:4c:
e1:37:27:a3:4b:1c:07:c8:8f:dd:df:4d:e9:55:23:de:7d:7f:
c8:48:f5:52:dc:ad:ce:df:b7:21:0c:7f:e8:f9:21:c8:91:cb:
1a:a2:15:33:e4:a2:09:31:6a:01:f8:01:e0:e2:16:45:38:ba:
82:bc:28:91:3b:44:b7:70:2f:4a:54:cd:54:dc:39:5c:76:12:
8a:44:7c:ba:d7:61:44:14:24:ae:44:8f:d8:a5:0c:56:49:44:
cf:18:af:da:fb:56:b3:9d:2b:7b:cb:08:52:b9:00:3d:60:35:
01:7a:af:99:fa:ae:68:f9:d2:52:6a:fa:6d:04:7a:7f:e9:7e:
f6:9b:06:c5:03:4e:84:db:5a:15:34:04:03:d0:4a:4c:66:aa:
f2:88:f4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:38 2026 by rpki-client