Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4610D26AFC2311F0936A83D7DAE4EC9C.roa
File: 4610D26AFC2311F0936A83D7DAE4EC9C.roa (raw, json)
Hash identifier: 5ToYp087PCy1GSmqoidCkSEj2CG1qL2XOJpW9xciebU=
Subject key identifier: E1:D1:08:A4:66:D1:50:FF:11:CB:06:A9:76:3F:21:61:36:66:69:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B701
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4610D26AFC2311F0936A83D7DAE4EC9C.roa
Signing time: Wed 28 Jan 2026 08:28:09 +0000
ROA not before: Wed 28 Jan 2026 08:28:03 +0000
ROA not after: Mon 02 Mar 2026 08:28:03 +0000
asID: 9304
IP address blocks: 154.82.134.0/24 maxlen: 24
154.82.148.0/24 maxlen: 24
154.82.153.0/24 maxlen: 24
154.82.158.0/24 maxlen: 24
154.82.196.0/24 maxlen: 24
154.83.67.0/24 maxlen: 24
154.90.134.0/24 maxlen: 24
154.90.136.0/24 maxlen: 24
154.90.137.0/24 maxlen: 24
154.90.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 02 Mar 2026 08:28:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112385 (0x1b701)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 08:28:03 2026 GMT
Not After : Mar 2 08:28:03 2026 GMT
Subject: CN=6979c899-e655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:35:69:69:ff:9f:ee:30:e3:c6:91:10:df:a9:
cf:38:67:ad:d6:84:70:d9:ce:85:ef:9e:a3:7e:18:
d0:35:61:85:10:5f:3c:91:e0:d3:44:c1:51:ab:be:
33:51:bd:2f:bd:8b:99:c7:79:1d:6b:90:90:50:98:
83:84:19:5f:ea:f8:15:17:c6:a0:b0:a5:3e:a7:db:
e4:e9:97:46:f7:ad:0f:16:dc:b3:45:9a:57:d1:81:
73:ad:30:64:58:91:e5:44:a3:3c:b1:48:8f:e6:ec:
ca:c3:f7:ff:54:f6:86:64:99:0e:e7:e7:20:46:89:
ad:8a:c7:ed:16:b7:b7:9c:17:9e:07:31:7a:5c:5a:
88:68:73:8a:ba:f5:b6:dd:d4:07:fd:69:3e:5c:28:
80:66:f8:81:24:e9:45:2c:a7:16:b9:d5:54:85:70:
c4:12:3c:c0:d5:02:d1:b7:b5:6c:1d:f7:a3:3b:31:
2c:f0:48:8a:83:0d:9c:71:d0:0b:b8:84:87:11:19:
a6:37:58:e6:b6:d2:1f:1d:c5:4d:a0:5b:45:52:b6:
14:3b:0c:ae:d8:2c:12:89:c5:a8:ff:b9:01:97:51:
c9:86:75:7b:c4:10:2f:10:71:63:7a:20:96:37:0a:
ea:c2:ee:73:c0:c9:70:b4:95:7a:93:0c:89:b6:36:
e4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D1:08:A4:66:D1:50:FF:11:CB:06:A9:76:3F:21:61:36:66:69:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4610D26AFC2311F0936A83D7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.134.0/24
154.82.148.0/24
154.82.153.0/24
154.82.158.0/24
154.82.196.0/24
154.83.67.0/24
154.90.134.0/24
154.90.136.0/23
154.90.140.0/24
Signature Algorithm: sha256WithRSAEncryption
14:39:40:f5:ff:99:82:e4:22:da:c9:bd:9f:06:1f:58:9e:eb:
b2:b8:4f:9a:cb:d4:6d:c5:02:e0:74:1f:2c:b1:01:a3:95:05:
a2:e3:00:30:1f:45:e8:c0:b4:bf:78:01:b8:11:af:c1:c1:63:
80:cc:c8:f5:3b:58:91:15:ca:11:c1:93:73:21:1e:51:67:10:
73:f7:77:92:c2:94:db:bf:e9:e8:3e:68:b1:9b:c9:ad:c6:f1:
05:1a:b8:25:83:16:70:15:2f:22:d7:6c:ba:e7:86:19:60:bd:
9e:81:5e:6b:2d:ec:24:35:9b:d9:ee:ad:c1:d6:2e:22:7f:6b:
51:39:52:a4:b9:08:f2:ad:5d:d4:ea:1e:4a:7f:77:6e:3d:08:
b3:76:09:18:81:c4:79:f6:c9:db:1e:0d:8a:5f:a9:0b:80:84:
a7:2f:7b:1c:3d:56:4e:18:10:83:bd:03:1c:de:d0:d2:d0:1f:
aa:ea:aa:54:78:ec:bc:2f:72:3e:0d:c8:69:07:6a:25:c8:f4:
11:09:19:90:e7:fc:63:4c:e6:40:00:2e:2c:4a:f4:ce:e0:43:
eb:66:89:6a:70:d9:3f:25:6b:0c:cf:54:4e:e6:14:5e:c1:13:
60:96:00:84:66:5c:fa:64:fd:72:11:e8:0c:be:15:ae:0e:f8:
14:4a:7c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:16:57 2026 by rpki-client