Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D4A69A00E4811F1AD5F50DFDAE4EC9C.roa
File: 5D4A69A00E4811F1AD5F50DFDAE4EC9C.roa (raw, json)
Hash identifier: 2fvZCXxKGmDm3/roPsWIKiCPNb0SzK+XLdpyfjNYAgM=
Subject key identifier: 65:6D:23:B9:75:E8:26:FC:83:A3:82:B9:AF:CD:70:A9:95:36:C5:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D4A69A00E4811F1AD5F50DFDAE4EC9C.roa
Signing time: Fri 20 Feb 2026 10:38:59 +0000
ROA not before: Fri 20 Feb 2026 10:38:55 +0000
ROA not after: Fri 27 Mar 2026 10:38:55 +0000
asID: 136907
IP address blocks: 154.93.100.0/23 maxlen: 24
154.93.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113242 (0x1ba5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 10:38:55 2026 GMT
Not After : Mar 27 10:38:55 2026 GMT
Subject: CN=699839c3-2cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9b:7e:01:e5:cb:4c:cb:a0:8c:5e:06:4c:1a:
8a:64:36:18:92:c2:38:75:be:d9:74:e7:eb:e9:9b:
a1:66:9b:32:72:54:a8:28:e4:4f:a0:99:ff:cf:de:
23:ad:89:0e:b8:7a:fc:38:d4:2a:f8:29:0c:ea:c0:
a0:aa:93:e4:22:09:fb:ce:9e:5f:2e:c1:ea:83:f7:
87:33:a1:5b:41:07:5e:22:64:db:6e:ac:76:b9:65:
af:e6:58:23:93:df:d4:36:4e:62:16:7c:ad:9a:7b:
59:19:44:99:42:df:03:2e:9c:c6:63:a5:9d:04:68:
1b:f2:4a:9c:a2:64:5e:83:47:44:3f:d8:98:49:0b:
70:93:b2:b8:f1:84:49:3d:2f:80:54:06:15:84:42:
05:65:99:cd:69:9a:91:e1:60:11:ea:6f:6b:29:cc:
1e:e0:c0:90:88:9f:b3:53:38:a2:c5:5b:05:b8:e0:
37:93:fa:30:8b:cf:b5:3e:97:d6:d9:63:4c:15:48:
8c:fb:b4:bc:6b:9f:51:95:5e:38:66:d3:de:d3:3c:
f8:ee:bd:0d:db:e9:21:f9:51:97:da:e4:97:e2:06:
b8:17:10:21:7b:a1:f6:be:e7:6f:fe:24:2f:08:78:
9a:2f:7e:7a:c6:8c:c7:d8:50:ab:44:79:76:a3:ec:
6b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:6D:23:B9:75:E8:26:FC:83:A3:82:B9:AF:CD:70:A9:95:36:C5:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D4A69A00E4811F1AD5F50DFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.100.0/23
154.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:9e:89:9d:08:1f:e4:80:12:5b:47:e4:f8:21:24:d6:20:11:
77:d3:1e:e7:6e:b1:bf:2d:14:1e:c5:eb:1d:70:2b:dc:64:3d:
c5:b7:57:0a:72:ee:fb:34:54:77:15:e4:e8:b5:5f:50:87:e4:
53:db:de:35:b9:76:9f:b3:32:43:05:6b:d2:28:9e:37:32:ca:
2c:0c:07:38:34:05:43:e7:24:27:47:bd:e4:97:f3:87:e4:aa:
d1:ba:7c:0f:99:e0:86:5d:f1:a2:68:59:b8:6c:2f:e7:d8:f2:
ee:00:17:e2:09:d1:a0:b1:b1:2b:90:62:4a:10:c2:e9:f7:42:
9d:cb:3d:46:f4:66:5d:ee:a6:e0:37:49:b3:86:2d:19:bb:2a:
37:e7:57:ac:43:1a:0c:7a:11:09:b0:64:21:65:ef:fa:ad:04:
13:65:d5:3d:ce:22:29:ac:ea:36:db:02:0d:1c:da:d2:4f:70:
e6:24:0c:60:1e:b0:ba:86:8f:f9:e0:2c:0e:3c:ea:17:dd:8a:
1c:f6:be:8d:f1:99:8f:6c:bd:33:38:08:1a:bd:70:04:5c:77:
35:b8:f8:df:f0:77:49:a1:38:e3:da:18:8c:cb:f5:a9:4a:89:
b0:57:ed:b1:77:c9:ff:54:c7:61:6d:f1:af:59:08:a1:0a:09:
00:70:a9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:16 2026 by rpki-client