Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B4B09AA0E3B11F196DF7694DAE4EC9C.roa
File: 5B4B09AA0E3B11F196DF7694DAE4EC9C.roa (raw, json)
Hash identifier: l6wZdP1bisWFQUIBJaPN4z+2h+rQDuO6G4BGsC4TCN4=
Subject key identifier: 65:4F:9D:8A:E0:23:D2:2A:05:3E:77:84:5D:DB:3B:C0:6F:67:0B:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA52
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B4B09AA0E3B11F196DF7694DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 09:05:52 +0000
ROA not before: Fri 20 Feb 2026 09:05:47 +0000
ROA not after: Fri 27 Mar 2026 09:05:47 +0000
asID: 63139
IP address blocks: 154.94.92.0/24 maxlen: 24
154.94.93.0/24 maxlen: 24
154.94.94.0/24 maxlen: 24
154.94.95.0/24 maxlen: 24
154.94.96.0/24 maxlen: 24
154.94.97.0/24 maxlen: 24
154.94.98.0/24 maxlen: 24
154.94.99.0/24 maxlen: 24
154.94.100.0/24 maxlen: 24
154.94.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113234 (0x1ba52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 09:05:47 2026 GMT
Not After : Mar 27 09:05:47 2026 GMT
Subject: CN=699823f0-4402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:81:98:36:39:a9:ec:57:c0:e3:27:ce:e7:66:
fd:23:f4:b4:bc:c0:9b:38:7b:25:ae:5c:ec:3f:a4:
90:8f:27:49:cb:04:55:20:43:f7:a1:1b:3a:0a:09:
cd:ff:f5:df:a0:ca:a2:f1:b0:7e:90:11:93:68:e7:
39:92:3b:60:2d:69:66:8f:a5:32:cd:19:01:36:4d:
c2:08:cf:b5:d2:d0:a0:28:57:6e:a1:52:b8:68:5b:
66:fc:9f:81:ab:c1:4a:86:47:13:6c:64:70:47:28:
94:0b:4f:a7:40:87:48:26:4f:f3:a1:9f:63:3d:98:
e4:92:7c:8c:e4:c9:b7:1a:1a:57:f2:b1:c4:cb:c1:
8d:37:27:72:78:d8:74:bc:4d:50:1e:8e:d5:19:6f:
d4:19:b7:f4:4e:6e:c8:a7:fe:7a:ce:c1:cd:fd:1a:
88:56:06:46:3d:31:67:00:11:ae:c5:a7:29:5c:6b:
12:2d:88:c6:b2:0b:e4:1d:a9:bb:71:e5:20:de:6c:
00:2d:09:bf:43:05:e9:e2:16:20:47:f6:b4:53:d3:
53:c7:ad:b7:5f:0b:4b:44:85:d7:18:6d:51:e1:eb:
9b:13:8a:be:bf:ed:8d:e5:7b:7a:26:00:9d:b1:c2:
6e:38:17:91:4d:79:e5:cd:93:a3:03:0f:31:6d:33:
cb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4F:9D:8A:E0:23:D2:2A:05:3E:77:84:5D:DB:3B:C0:6F:67:0B:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B4B09AA0E3B11F196DF7694DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.92.0-154.94.101.255
Signature Algorithm: sha256WithRSAEncryption
af:08:1f:3c:a3:5d:b1:b3:ae:9c:4a:84:11:2b:23:88:b5:65:
66:e7:0a:77:93:b7:bc:51:b8:6f:3e:0c:a1:b0:d9:c4:b2:c2:
f4:f6:bf:d9:5f:a1:c4:36:68:55:22:43:a6:0a:6c:57:d1:14:
91:7a:2c:d4:d4:0e:61:d9:bc:40:a6:90:11:6d:7a:73:19:ee:
15:8d:45:18:d0:57:ca:ad:97:3e:dc:44:b8:63:3e:bb:8d:95:
96:a6:5a:c6:d8:3e:b5:9a:2c:36:f4:67:04:0f:09:62:8d:20:
d4:d1:b8:16:81:00:b4:f7:d8:eb:35:99:8c:48:10:3e:8b:27:
94:53:3b:e3:62:80:53:b0:14:e3:67:a0:e5:ac:87:f2:89:46:
08:f2:8b:b1:7b:8f:1f:f1:4e:c7:ac:e6:a8:6e:9f:e1:6f:0c:
2a:04:78:2f:d2:14:c8:a2:b0:6a:4c:71:b5:aa:50:98:31:32:
42:c0:1d:e0:15:75:fa:f2:aa:1d:80:b7:42:24:18:c0:21:71:
83:51:cd:23:10:8c:3f:26:3b:95:06:fa:62:15:55:f9:52:bf:
73:ae:9b:c5:46:42:2a:c9:3f:f1:14:b0:09:f9:31:47:b2:fc:
fe:e4:01:11:61:06:6b:7d:5b:a1:d7:61:47:6e:5c:8a:ec:64:
74:b6:12:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:41 2026 by rpki-client