Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3692DFFA122A11F18FCFFDB8DAE4EC9C.roa
File: 3692DFFA122A11F18FCFFDB8DAE4EC9C.roa (raw, json)
Hash identifier: O2Rk0OVWnKxf66tyEeDpe62R1P0/wpN4I+PvW5GyuyA=
Subject key identifier: 50:B4:B2:8C:67:43:F0:72:1F:28:B6:E5:E3:03:64:27:7E:94:30:45
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB9F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3692DFFA122A11F18FCFFDB8DAE4EC9C.roa
Signing time: Wed 25 Feb 2026 09:13:14 +0000
ROA not before: Wed 25 Feb 2026 09:13:08 +0000
ROA not after: Wed 01 Apr 2026 09:13:08 +0000
asID: 44559
IP address blocks: 154.81.40.0/24 maxlen: 24
154.81.53.0/24 maxlen: 24
154.81.54.0/24 maxlen: 24
154.81.55.0/24 maxlen: 24
154.81.192.0/24 maxlen: 24
154.81.195.0/24 maxlen: 24
154.81.196.0/24 maxlen: 24
154.81.197.0/24 maxlen: 24
154.81.198.0/24 maxlen: 24
154.81.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113567 (0x1bb9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 09:13:08 2026 GMT
Not After : Apr 1 09:13:08 2026 GMT
Subject: CN=699ebd2a-9ae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:78:9b:ef:ca:89:a2:97:f0:88:f2:12:34:c9:
f9:1b:6f:03:1c:7b:76:bc:20:9f:d0:74:1e:74:ae:
4d:ba:6e:4d:1a:33:43:70:d4:a0:fd:6e:fc:86:b5:
7a:f4:b8:a2:a8:c9:6b:60:19:c8:07:82:4f:0c:f3:
ed:7b:23:b1:72:70:58:28:9b:e3:5c:72:ea:89:11:
4b:e5:61:43:0f:74:1e:24:85:df:c7:e0:b8:43:79:
f5:0b:65:3e:eb:1a:aa:b9:e1:39:fc:9c:4c:be:99:
66:7a:8a:63:86:1c:c4:e0:a0:d4:19:d0:5d:53:47:
87:2b:e3:69:4d:1a:52:94:5c:b1:0c:5d:ed:38:2c:
4f:1d:e8:2f:31:a7:9b:6b:37:f3:c9:ce:7f:14:59:
94:b4:46:9e:58:b5:4d:a5:f5:8d:53:32:87:bb:09:
40:a0:0b:7d:d5:27:0e:eb:aa:26:d8:68:ed:14:92:
13:39:d0:eb:97:72:bf:15:47:16:ca:3c:c7:05:77:
a7:22:c3:46:9e:8b:b1:7e:2f:eb:3b:6f:f7:62:ed:
e7:db:c9:eb:83:da:8d:a5:41:0f:3c:dd:c2:50:74:
b5:1c:65:7e:09:0b:b2:5e:d0:e3:73:ee:d0:4e:36:
77:3a:d3:50:55:41:94:7c:d1:69:3e:3a:33:b8:8c:
b1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B4:B2:8C:67:43:F0:72:1F:28:B6:E5:E3:03:64:27:7E:94:30:45
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3692DFFA122A11F18FCFFDB8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.40.0/24
154.81.53.0-154.81.55.255
154.81.192.0/24
154.81.195.0-154.81.199.255
Signature Algorithm: sha256WithRSAEncryption
5c:f4:17:5f:40:da:6a:a9:26:63:4b:c6:d8:1e:7c:12:29:92:
a6:04:a9:8c:d5:eb:9e:4c:f4:1c:ed:dc:ce:71:f0:a9:2b:d3:
bb:35:a8:06:a8:27:3a:4f:3b:9a:eb:fb:93:9b:d1:82:67:cc:
35:b0:b9:bf:31:4b:a9:45:9b:8b:5c:a6:3c:7d:69:e0:2a:35:
db:36:33:c4:39:e9:83:fb:a5:0e:0c:2c:83:a9:3f:2b:1b:0d:
08:5e:68:76:91:a0:a0:f5:3b:42:a6:1a:bb:bc:96:5a:c4:fe:
77:03:f1:d9:1a:ac:ce:39:43:c8:9d:d7:82:28:47:de:4c:41:
83:b2:4b:ff:55:35:a5:50:89:4b:79:97:46:8c:30:01:02:c5:
9a:ca:ee:a3:dd:b8:24:75:1f:5e:a0:da:dd:ae:9b:00:ff:42:
e6:b4:60:5c:4d:56:3b:22:84:88:d6:c8:c8:5b:75:da:92:83:
0a:30:27:79:b2:a6:f0:4d:d5:a1:fa:6b:83:de:7b:63:9e:fb:
51:49:34:75:3c:e5:aa:41:47:f2:6f:5f:f0:26:7d:8e:fb:ac:
98:1f:46:29:16:c7:4e:e4:9f:4a:a5:b5:cf:04:12:e9:aa:36:
f1:9d:63:94:db:15:a0:7d:42:0d:90:43:a8:e7:7b:59:07:ba:
bc:62:03:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:11:41 2026 by rpki-client