Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38448284019C11F18BDA197FDAE4EC9C.roa
File: 38448284019C11F18BDA197FDAE4EC9C.roa (raw, json)
Hash identifier: DQ12D6YX2D2XXm6bAOdtZUceh2jdpXfxtyQ6Lo19pRY=
Subject key identifier: 76:35:EA:C4:8E:82:DF:24:46:6F:51:51:39:D0:E4:A9:17:A6:4E:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B875
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38448284019C11F18BDA197FDAE4EC9C.roa
Signing time: Wed 04 Feb 2026 07:36:30 +0000
ROA not before: Wed 04 Feb 2026 07:36:26 +0000
ROA not after: Thu 12 Mar 2026 07:36:26 +0000
asID: 138915
IP address blocks: 154.95.64.0/24 maxlen: 24
154.95.65.0/24 maxlen: 24
154.95.66.0/23 maxlen: 24
154.95.66.0/24 maxlen: 24
154.95.67.0/24 maxlen: 24
154.95.68.0/24 maxlen: 24
154.95.69.0/24 maxlen: 24
154.95.70.0/23 maxlen: 24
154.95.76.0/24 maxlen: 24
154.95.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112757 (0x1b875)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 4 07:36:26 2026 GMT
Not After : Mar 12 07:36:26 2026 GMT
Subject: CN=6982f6fd-d044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cf:8c:42:cb:ce:89:f4:22:7f:0e:e5:39:b2:
2b:8a:7f:e2:71:1b:ea:19:e8:07:6f:e6:24:b7:82:
77:cd:9c:af:e8:2c:15:5e:f3:bd:54:69:3f:cb:c1:
51:61:30:7b:ff:aa:82:96:14:ee:c9:57:69:4d:23:
28:bb:7b:d2:43:9a:b7:18:ec:58:c8:35:22:42:44:
2d:c3:19:fb:68:b1:86:1c:eb:86:80:d3:b2:7e:02:
03:31:78:b2:c9:1e:c3:e7:5b:32:c0:68:74:41:37:
66:b1:47:fa:87:f1:cb:f8:41:82:3b:bd:b8:09:66:
6d:2e:3c:bd:d7:46:66:c9:4d:76:04:50:22:b0:36:
ea:a6:d7:0a:69:66:9e:66:05:e5:e8:da:b6:e4:cb:
ac:d1:d9:88:96:d0:3b:8a:59:bc:74:87:32:58:9f:
1d:8f:7b:26:ba:0a:7c:dd:68:e5:5c:89:90:a5:41:
31:bc:17:1f:93:1d:98:5a:a5:5f:04:7e:0f:4f:44:
b5:69:dd:ea:b9:c6:95:c8:8a:cd:94:f4:40:03:2a:
6b:2e:6f:c4:9a:eb:f5:8a:1c:d1:93:4a:e1:d4:f3:
21:6f:98:c8:a2:ec:d1:41:c1:3a:88:94:6c:60:9a:
df:3e:1a:ff:8b:93:44:d9:a0:9c:8a:a7:55:eb:40:
5d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:35:EA:C4:8E:82:DF:24:46:6F:51:51:39:D0:E4:A9:17:A6:4E:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38448284019C11F18BDA197FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.64.0/21
154.95.76.0/23
Signature Algorithm: sha256WithRSAEncryption
78:fd:ec:b1:5c:52:37:74:d5:5f:d0:3f:25:a8:e8:13:40:32:
60:45:55:07:1a:47:39:c1:1f:e4:4e:f0:8a:5e:29:dd:4c:ae:
67:fc:02:28:e6:94:69:e3:db:6b:75:f2:91:fb:b0:a9:11:08:
50:14:4a:cd:60:c8:c8:86:53:79:b7:bc:e6:27:04:55:6c:15:
20:03:48:31:16:cb:60:19:5a:c9:4a:5d:36:ed:72:b6:52:25:
e9:3d:11:ae:23:92:54:53:30:ca:bc:62:01:c3:6b:cb:5a:da:
ef:7c:14:8c:2d:9f:00:8f:5e:9b:4c:ac:f6:c9:0f:1c:3d:f1:
16:81:a7:9b:32:25:91:95:54:9d:cd:e5:3e:b4:fb:52:a2:15:
9d:ad:c4:f3:ea:c8:0e:ea:e6:c8:d7:4a:9f:90:6c:1e:f8:c4:
a2:58:8d:4f:ad:32:fa:73:33:79:11:23:53:38:6d:15:30:0e:
32:5f:44:84:ef:f6:4b:2f:3a:19:a3:48:13:ea:58:9a:89:bc:
ec:35:ba:a7:92:bb:07:32:cb:07:35:bb:99:c9:94:7b:76:a9:
6a:9b:eb:97:e5:44:18:89:98:35:dd:86:3f:44:32:10:9a:71:
ba:d3:c6:45:fb:5d:c8:67:d0:45:32:2d:b7:cc:de:b2:4d:1e:
96:f5:d1:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:30:50 2026 by rpki-client