Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F98E10A0B8811F1882C6AE3DAE4EC9C.roa
File: 4F98E10A0B8811F1882C6AE3DAE4EC9C.roa (raw, json)
Hash identifier: SsTWmEx1s6oTl3691HbNkplETIMo6xqfVnQG7gWyeo4=
Subject key identifier: 09:0C:F4:3A:1C:71:EF:BF:2A:8A:0F:79:C7:42:06:65:EC:57:3F:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B9E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F98E10A0B8811F1882C6AE3DAE4EC9C.roa
Signing time: Mon 16 Feb 2026 22:39:11 +0000
ROA not before: Tue 17 Feb 2026 22:39:06 +0000
ROA not after: Mon 09 Mar 2026 22:39:06 +0000
asID: 200373
IP address blocks: 154.82.150.0/24 maxlen: 24
154.82.168.0/22 maxlen: 24
154.86.112.0/24 maxlen: 24
154.86.113.0/24 maxlen: 24
154.86.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113120 (0x1b9e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 17 22:39:06 2026 GMT
Not After : Mar 9 22:39:06 2026 GMT
Subject: CN=69939c8f-ef1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d4:a4:9d:1f:60:c5:94:76:53:4a:c1:73:9b:
83:06:8c:b3:ed:29:fc:87:5a:2a:cd:08:2c:64:77:
a6:8b:2c:7f:39:7f:9e:fc:a4:63:cf:8f:03:d1:a2:
69:96:6e:06:92:6c:22:1a:66:3a:6a:3a:ef:77:e5:
65:34:93:25:c0:78:fe:22:98:b4:a3:1b:ce:2d:bd:
79:d7:64:05:97:56:b6:80:77:8b:a9:c4:58:0d:0b:
fa:e8:02:2e:af:fb:3d:ca:56:3e:ec:85:40:8d:e9:
42:85:04:cf:3a:ce:4a:c2:11:5c:c0:37:57:8b:cb:
30:07:97:af:0f:d4:d6:4a:2c:60:41:f5:21:ff:05:
67:30:df:17:f4:b9:5f:bb:98:f9:3b:fa:41:b0:53:
fd:4c:06:0d:52:42:e6:56:1a:ce:0c:de:03:17:bd:
09:52:1d:aa:b7:29:4b:71:8f:c6:33:ec:2d:16:92:
02:58:f2:2f:c9:37:03:66:1e:09:51:54:23:18:a5:
20:c6:9f:9f:7e:29:c6:58:e2:7d:fe:e6:2f:45:8f:
fc:56:48:60:61:95:3f:27:1e:8d:1d:53:39:eb:93:
a9:4a:d2:b4:39:74:5d:de:5c:e0:95:ff:49:0a:d0:
93:60:b2:66:7a:7c:b6:09:d6:30:71:84:81:07:b2:
9f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:0C:F4:3A:1C:71:EF:BF:2A:8A:0F:79:C7:42:06:65:EC:57:3F:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F98E10A0B8811F1882C6AE3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.150.0/24
154.82.168.0/22
154.86.112.0-154.86.114.255
Signature Algorithm: sha256WithRSAEncryption
17:c3:56:aa:b5:78:80:62:37:43:e3:40:39:bf:4a:14:bd:e2:
12:fd:8b:83:24:cf:87:5e:d1:b6:77:7d:e2:a7:c2:ef:61:d7:
fb:eb:59:b3:5a:0c:76:6c:d3:00:9b:91:49:ac:de:e2:6a:7c:
09:9c:41:9d:25:e2:30:3e:69:7a:5c:a3:f0:5a:8f:ea:a9:37:
b6:19:49:b3:59:1b:2c:a6:13:1e:2a:49:fc:2a:99:06:88:17:
16:b4:e0:c8:e9:f6:65:c1:d9:ea:ab:04:ac:7a:d4:c4:e8:27:
ac:17:4c:8f:d0:2e:69:32:3a:b2:66:e8:70:81:db:f9:9c:b0:
43:a2:2f:3e:cf:42:63:c3:97:a1:b0:5a:6e:f8:a5:a3:c1:72:
f1:84:72:46:09:6d:c4:71:43:63:78:f3:89:8c:d6:26:a7:b3:
d0:9a:40:7f:e6:b2:cf:35:27:28:54:80:a8:ec:53:06:9a:28:
ee:2c:1b:1c:d5:95:3d:7f:32:da:09:db:74:17:11:77:4b:29:
a8:2f:2c:ea:52:ca:32:8f:f5:ef:3a:3b:2a:82:68:a2:e0:f2:
57:ac:e1:df:5a:10:c6:5b:8e:b6:e7:23:47:8d:17:0b:06:8f:
c3:57:4c:38:45:3a:0a:4c:9b:0e:cf:00:d4:4a:bd:bb:07:55:
de:5c:60:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:08:29 2026 by rpki-client