Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51FD2590117E11F1B2BC7C92DAE4EC9C.roa
File: 51FD2590117E11F1B2BC7C92DAE4EC9C.roa (raw, json)
Hash identifier: wqRGu+oDg1KCkPqIuuKpzINi06ui/jRyCmy90BHgH2U=
Subject key identifier: 7E:5F:E1:A1:DD:46:2D:D3:00:F4:9B:0D:08:79:BB:F4:CD:EF:49:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB68
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51FD2590117E11F1B2BC7C92DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 12:42:46 +0000
ROA not before: Tue 24 Feb 2026 12:42:42 +0000
ROA not after: Tue 31 Mar 2026 12:42:42 +0000
asID: 62240
IP address blocks: 154.196.31.0/24 maxlen: 24
154.196.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113512 (0x1bb68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 12:42:42 2026 GMT
Not After : Mar 31 12:42:42 2026 GMT
Subject: CN=699d9cc6-4e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:43:de:f8:a7:8b:7b:0f:dc:18:45:70:23:cb:
6a:db:87:6b:91:6d:7d:62:61:0c:04:53:89:2a:44:
de:be:84:07:9b:53:6e:aa:e7:e0:5e:fd:89:62:ee:
3c:1e:73:0d:70:20:76:e5:c0:fa:13:59:f4:4f:ae:
ac:d7:c7:fb:0e:1d:fa:0c:04:33:0f:fd:1c:0e:4d:
bc:d5:36:af:2e:0a:98:bf:98:47:6f:e9:07:0b:da:
2f:7b:ed:2d:dd:2f:6a:13:5d:91:a8:33:c2:ed:b3:
bc:fe:cf:a5:ac:5b:a8:7a:e0:b3:14:49:d8:c8:98:
2e:a1:c4:a4:3b:47:9a:e1:3b:30:35:5b:eb:65:14:
c3:17:94:64:1e:04:94:f0:84:3f:5d:4a:04:56:03:
c7:f6:b5:2c:f0:4a:4e:36:3b:1e:7a:4a:1a:eb:ee:
39:91:3d:66:14:54:c9:ce:f1:9d:fd:f3:5d:46:94:
fb:b5:ab:1d:1d:ce:0c:74:83:d3:1e:be:68:d1:15:
7b:0b:37:66:dc:af:1c:a5:bd:1f:04:46:53:6c:1b:
87:7c:3d:38:0c:cf:b3:46:ca:c1:82:7b:41:4b:b8:
8c:ab:c6:f8:58:e7:79:62:fc:60:96:b4:d5:94:bc:
c9:60:d2:75:a6:ad:97:36:c0:cf:cf:90:93:3a:f3:
9b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5F:E1:A1:DD:46:2D:D3:00:F4:9B:0D:08:79:BB:F4:CD:EF:49:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51FD2590117E11F1B2BC7C92DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.31.0/24
154.196.81.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ab:05:d0:ed:00:eb:7f:0e:78:75:31:27:da:93:68:dc:5f:
3a:b6:19:8e:ae:79:8e:f6:68:87:58:cf:b3:4c:25:c9:d9:6a:
56:2f:a0:75:3e:7c:0b:47:f0:51:7f:f0:e1:f3:88:5c:35:ce:
ad:06:48:fa:c5:a9:47:68:6a:45:cc:33:0a:35:fd:71:e6:c4:
02:00:c5:94:db:05:50:67:ad:ab:f8:2f:a5:fb:fb:7d:d3:f8:
1d:3d:cf:a4:6b:fd:79:8d:49:f2:cd:15:4b:83:da:fd:b3:ab:
c3:62:db:5b:56:f0:27:32:14:80:83:36:53:bc:85:ab:ff:d8:
af:a0:51:3a:ce:d4:e0:da:19:d9:d9:72:6b:b2:80:25:b1:f4:
2c:46:8b:7b:17:90:52:af:be:a5:9d:f6:dc:64:eb:12:03:20:
c7:94:d2:8f:27:1e:95:ad:3e:02:c7:b7:a2:08:b0:48:82:0a:
3c:a7:41:79:29:d0:e3:be:50:4c:31:5e:77:9b:5d:57:ff:e6:
10:2c:5c:da:51:d2:ef:50:68:c0:18:7d:35:bc:fd:ec:1c:9d:
62:5f:d9:dc:e9:04:bc:3f:4e:51:65:1c:5f:87:07:f4:dd:f3:
84:86:2e:53:ee:02:cd:d2:ff:6a:b1:f8:4f:33:d4:4b:8e:c6:
aa:d3:2d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:02 2026 by rpki-client