Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/414CDA5A124C11F18A392F87DAE4EC9C.roa
File: 414CDA5A124C11F18A392F87DAE4EC9C.roa (raw, json)
Hash identifier: /py/i1rEjKwRyzEuxvDbLGDcBnoF+PFuwPr910Fpl30=
Subject key identifier: 49:AD:D2:6F:0C:87:6E:B2:A8:08:95:6D:B3:C6:9C:36:F6:88:58:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BBBD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/414CDA5A124C11F18A392F87DAE4EC9C.roa
Signing time: Wed 25 Feb 2026 13:16:55 +0000
ROA not before: Wed 25 Feb 2026 13:16:49 +0000
ROA not after: Fri 06 Mar 2026 13:16:49 +0000
asID: 142032
IP address blocks: 154.219.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113597 (0x1bbbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 13:16:49 2026 GMT
Not After : Mar 6 13:16:49 2026 GMT
Subject: CN=699ef647-5f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:36:5c:d4:30:38:c7:9b:c0:7d:95:56:ed:3d:
4d:71:23:1d:32:3b:0f:a8:5e:93:f5:d5:71:5a:68:
6b:b6:13:32:1e:30:32:a6:1e:2f:79:c1:e5:65:82:
12:5b:10:b5:ba:80:00:c1:d2:2a:44:a4:95:5d:f0:
62:29:e7:47:74:27:03:f7:2d:bd:18:5c:ea:39:1f:
98:03:c4:f1:d6:1b:9d:55:f8:b1:1d:97:ef:5a:6f:
b6:d2:12:4c:8c:80:74:f1:77:10:35:69:16:97:7f:
27:e8:bd:a4:72:2a:95:0d:7d:c5:74:19:58:eb:44:
cb:01:3e:64:8f:9e:99:d9:a3:96:74:bc:bd:14:c7:
d0:85:27:b2:e8:c7:ff:14:a3:0a:f9:56:d6:bf:71:
39:25:62:6e:b5:29:26:31:6c:bb:c9:92:ff:1b:ce:
e9:2a:ba:af:08:91:56:a6:07:7b:44:2b:4e:68:a4:
d1:3c:2e:c8:ed:78:ca:3f:ae:f6:60:f3:ed:fa:c7:
03:f1:27:3e:4c:10:05:96:c9:9f:97:55:17:0d:68:
0a:66:8c:6a:34:d7:d2:f7:cb:cb:94:33:b3:fa:7d:
2f:3b:8c:65:cd:b5:98:3d:00:3e:68:66:04:37:41:
b4:8c:1a:93:4f:5d:38:7a:37:f5:db:c4:b7:7c:1a:
7a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:AD:D2:6F:0C:87:6E:B2:A8:08:95:6D:B3:C6:9C:36:F6:88:58:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/414CDA5A124C11F18A392F87DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.96.0/19
Signature Algorithm: sha256WithRSAEncryption
95:2d:ba:e8:2b:5a:92:3a:42:94:f6:f3:db:7b:0e:1a:d9:5a:
f7:bb:45:b2:b5:c0:9c:e8:ca:a7:da:03:dd:d6:0f:91:65:aa:
00:a4:4e:69:a4:76:a8:44:34:d9:cc:c8:cb:f6:b7:a2:aa:b1:
6d:56:06:2c:74:4b:f3:07:b5:75:8c:4d:a2:09:81:0c:48:9b:
a1:9f:19:0c:42:3c:8c:02:7a:bc:2c:96:1e:6a:dc:83:dc:c7:
b0:4e:0d:92:6c:33:1d:03:fd:16:0e:97:30:2b:44:67:b3:3b:
bd:0f:e1:9b:2d:f6:80:8d:6e:7f:31:f2:13:7a:46:8b:bc:f6:
c3:94:14:1d:03:f7:6a:3e:b5:6d:c0:7d:e7:24:5c:63:00:d7:
50:00:54:72:67:74:c0:b0:03:84:55:02:bc:ca:ec:2c:0a:2c:
81:c7:bd:df:2b:76:33:07:58:28:ff:fd:ed:21:a7:20:7a:80:
1a:c0:14:89:6a:a7:1d:1b:65:6a:e7:55:a3:af:f8:95:ad:22:
cd:df:7e:2c:d4:bc:ad:0e:58:89:57:10:af:c4:e1:d4:1a:fd:
4f:57:3c:8c:57:54:f9:76:13:51:fa:ee:bd:e9:ee:e5:c2:1c:
79:63:1f:8b:78:0b:f4:4b:fb:a1:ff:b0:53:80:eb:11:c1:38:
9d:71:db:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:06 2026 by rpki-client