Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47FBA7E2032D11F18511AD9EDAE4EC9C.roa
File: 47FBA7E2032D11F18511AD9EDAE4EC9C.roa (raw, json)
Hash identifier: zONQlgxJNAWQJ/tVkmrRkRSt0KVKQmvja5jSTI214nk=
Subject key identifier: ED:4F:94:95:A8:FC:20:B7:D0:06:CF:7D:E2:9F:F3:A2:E9:7C:1E:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B8B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47FBA7E2032D11F18511AD9EDAE4EC9C.roa
Signing time: Fri 06 Feb 2026 07:27:25 +0000
ROA not before: Fri 06 Feb 2026 07:27:16 +0000
ROA not after: Thu 12 Mar 2026 07:27:16 +0000
asID: 328608
IP address blocks: 154.88.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112816 (0x1b8b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 07:27:16 2026 GMT
Not After : Mar 12 07:27:16 2026 GMT
Subject: CN=698597dd-be1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:14:95:bd:28:18:1f:cb:ec:12:a9:74:4c:5f:
d8:22:0d:89:76:bc:5c:2f:4c:0f:50:00:5a:7f:95:
63:43:b6:39:d4:f3:37:80:61:9d:dc:21:b4:c1:55:
9d:02:62:23:7b:f0:26:ed:91:ea:db:ca:4c:1c:fe:
06:17:e5:b6:ac:51:d5:ea:c3:32:01:ef:2e:7c:97:
90:bb:45:99:30:b7:23:b3:14:97:18:ef:c3:ef:65:
b7:9f:09:9f:79:01:d4:ec:35:d3:a5:d5:89:d8:b8:
0b:06:a4:e2:6b:cc:04:1a:58:bc:62:54:72:97:7f:
94:f0:49:69:d4:02:95:20:45:4e:3a:30:1b:39:59:
f9:a6:c8:9e:00:ed:c3:f7:cc:6c:8f:f2:3f:da:07:
e4:54:dc:aa:23:aa:fd:f7:91:66:6e:98:1e:e4:8f:
e4:3f:14:e3:39:cf:45:ad:96:01:a8:b2:63:a8:d9:
b1:8b:1b:41:73:a7:84:2b:cf:70:86:e3:43:f7:7d:
b0:e5:5b:9b:95:6b:49:75:43:73:e4:39:45:e0:20:
8c:16:73:f7:7f:17:ac:fa:44:b1:5a:b0:53:86:ed:
f5:c2:0b:95:8b:8b:a3:51:ee:5c:59:fc:49:00:97:
74:93:a7:56:7a:b6:1f:86:0d:ca:5b:0d:8a:22:56:
b5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:4F:94:95:A8:FC:20:B7:D0:06:CF:7D:E2:9F:F3:A2:E9:7C:1E:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47FBA7E2032D11F18511AD9EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.0.0/23
Signature Algorithm: sha256WithRSAEncryption
63:1e:ec:be:c5:81:d0:16:ab:4a:4d:45:6e:14:83:e9:0e:1b:
75:2e:d6:3a:12:7e:64:d4:f5:30:49:2e:7b:4b:8c:a7:4e:3a:
61:7d:84:ab:f7:cb:07:64:c3:ab:5b:c1:4d:82:48:fa:7c:1a:
b2:bc:ea:1d:13:03:49:e3:bc:e6:af:8a:5a:9c:6f:49:aa:fc:
ed:a1:53:91:f5:bc:5b:66:f5:77:b8:01:79:fc:59:89:87:ac:
a8:67:97:b2:65:76:3f:9f:e0:bf:9b:3b:11:50:46:4a:90:3c:
da:02:3b:5f:6d:3d:e0:ca:ed:e3:65:90:48:54:1c:a3:8d:41:
fb:56:31:e3:8f:68:1d:ea:b7:c7:f5:c3:01:f0:3e:55:b2:b6:
c7:c6:a9:3f:3b:53:d3:33:a5:96:03:b9:af:25:9d:92:87:52:
42:df:8a:8d:05:ba:06:24:5d:3d:b2:82:c7:cf:c4:64:cd:88:
ac:dc:28:e3:6f:7d:9c:30:34:c5:4c:ac:ad:71:ff:9e:44:41:
21:4f:9d:c2:1c:fa:66:b9:94:c2:8a:42:6e:1c:0c:f9:fb:a9:
c3:a7:da:ae:2b:ca:6f:90:95:4e:59:f7:56:f6:bf:1f:75:54:
b6:00:c0:b5:bd:63:f0:8c:89:d3:96:02:3c:26:84:b9:d7:51:
c8:87:0c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:18:19 2026 by rpki-client