Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/752EF36E033111F1A5864AB7DAE4EC9C.roa
File: 752EF36E033111F1A5864AB7DAE4EC9C.roa (raw, json)
Hash identifier: NoXdiIvGfBOYs6z/3nzZRZk+30S1vfJZVn6ALESEFrs=
Subject key identifier: D2:A5:19:80:24:B1:01:07:5A:65:3D:48:40:47:B2:FC:1E:B1:DF:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B8B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/752EF36E033111F1A5864AB7DAE4EC9C.roa
Signing time: Fri 06 Feb 2026 07:57:18 +0000
ROA not before: Fri 06 Feb 2026 07:57:13 +0000
ROA not after: Wed 25 Mar 2026 07:57:13 +0000
asID: 272854
IP address blocks: 154.194.13.0/24 maxlen: 24
154.194.14.0/24 maxlen: 24
154.194.44.0/24 maxlen: 24
154.194.54.0/24 maxlen: 24
154.197.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112818 (0x1b8b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 07:57:13 2026 GMT
Not After : Mar 25 07:57:13 2026 GMT
Subject: CN=69859ede-a569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ed:81:97:00:c4:16:d1:d5:64:f1:b0:b7:e2:
01:53:ae:67:56:26:5d:d6:a4:ad:9a:2e:96:53:bd:
78:7a:7d:ec:c3:6b:1e:0f:09:b6:d0:67:1b:c2:09:
33:24:10:e9:db:e4:ff:4d:d2:e9:ef:3f:11:30:d5:
5a:a6:b5:06:8d:f2:ce:55:50:57:55:53:7e:53:38:
11:13:de:34:9e:a7:af:57:3c:e7:18:40:60:4d:7d:
e5:d3:ab:f2:16:7a:90:e5:dc:ed:7f:35:9c:d9:c5:
93:84:d2:d7:fb:2e:66:2e:06:09:9f:28:5e:c5:23:
91:3f:25:8a:6f:fa:9a:fc:84:a6:c5:30:17:9d:bb:
e0:58:e4:7e:65:ec:21:67:2f:24:96:bc:33:71:1a:
f9:0d:3f:94:e3:e2:40:7a:fa:61:bc:8b:69:cf:55:
ed:66:c9:cb:3f:6a:3c:68:6a:f2:a2:25:a5:65:30:
ec:12:d0:f4:25:b8:7e:f1:c1:6b:47:75:9c:1d:76:
77:20:97:4c:3f:32:8b:57:2c:63:1d:02:7b:21:92:
04:87:d6:66:82:56:eb:24:39:45:0b:d9:ef:60:3d:
e4:b5:44:31:ea:67:33:79:55:56:82:bd:ec:60:67:
08:90:4f:ec:9a:5e:39:af:45:46:ff:06:b0:6b:7e:
c5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A5:19:80:24:B1:01:07:5A:65:3D:48:40:47:B2:FC:1E:B1:DF:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/752EF36E033111F1A5864AB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.13.0-154.194.14.255
154.194.44.0/24
154.194.54.0/24
154.197.1.0/24
Signature Algorithm: sha256WithRSAEncryption
92:f5:15:39:b4:cd:f0:47:e7:d4:a4:3c:41:93:4e:cf:84:7d:
82:42:ce:47:a0:33:c3:cf:dc:eb:db:00:ff:da:59:d1:fe:a8:
bb:98:a4:5f:8c:8a:50:40:d2:8f:b0:1c:6f:57:f7:1a:74:b3:
33:d3:25:d5:5e:eb:2a:ed:b4:b2:a9:e2:d3:61:89:4c:0b:32:
6f:ea:51:4c:1f:fa:f9:fe:99:5b:3a:37:06:69:64:2d:03:e8:
79:b6:eb:7c:c7:d8:c4:2b:e7:db:55:67:d9:b0:49:3c:08:09:
80:f0:15:b0:04:7a:d4:19:81:3f:b3:97:0e:16:66:98:c9:da:
49:bd:23:eb:8b:5b:10:30:0f:e5:99:6b:fc:d5:52:0d:23:b3:
05:b5:ba:ca:09:81:40:1a:86:88:88:c5:e4:ec:52:9c:0e:9a:
25:f2:84:ba:29:b5:b5:d0:40:38:a8:76:7c:f2:9b:a6:7f:42:
ac:0f:9c:33:08:67:bb:de:9f:a8:20:17:0a:06:f4:8f:a2:19:
24:de:68:32:34:49:9b:fd:e7:eb:b5:a4:86:c1:7d:21:0e:97:
cf:6f:21:b5:ea:49:22:17:72:25:b4:b0:67:a6:69:be:3f:a9:
6f:e4:a3:91:44:b0:03:df:1c:16:c3:32:7c:c3:d7:6c:ec:3f:
50:64:ae:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:08:31 2026 by rpki-client