Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AAB18980E9611F1ABDB76B4DAE4EC9C.roa
File: 7AAB18980E9611F1ABDB76B4DAE4EC9C.roa (raw, json)
Hash identifier: jRIIB0QhcHOMlO7TxeKK7hCe3fUU1tMHI9JJgT5/XRk=
Subject key identifier: E4:DF:DC:15:FC:1D:8E:F4:DC:39:84:42:33:69:15:81:E7:63:96:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BAB2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AAB18980E9611F1ABDB76B4DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 19:58:09 +0000
ROA not before: Fri 20 Feb 2026 19:58:04 +0000
ROA not after: Thu 04 Jun 2026 19:58:04 +0000
asID: 18229
IP address blocks: 154.210.217.0/24 maxlen: 24
154.210.218.0/24 maxlen: 24
154.210.219.0/24 maxlen: 24
154.210.221.0/24 maxlen: 24
154.210.223.0/24 maxlen: 24
154.210.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113330 (0x1bab2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 19:58:04 2026 GMT
Not After : Jun 4 19:58:04 2026 GMT
Subject: CN=6998bcd1-6f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e6:14:f7:36:18:3c:42:6c:83:f1:5f:43:cb:
32:b1:6b:a0:d5:7d:a9:24:3d:30:96:1e:9d:d7:f3:
bf:ef:9a:25:54:34:73:e4:cf:78:03:fe:25:25:10:
45:05:ea:5a:8c:68:bb:26:fa:c7:80:fc:b4:60:4f:
35:cb:19:da:e0:00:22:34:24:54:ad:7e:57:a2:5e:
30:0f:66:68:30:f7:84:ae:1e:b9:a6:f5:e8:be:96:
84:0f:13:30:f2:be:24:79:5e:4c:2f:d1:d8:91:8c:
68:f4:b7:27:9c:0c:81:88:0d:9b:92:18:4a:33:a9:
32:f6:3d:7b:31:ea:86:d7:c9:3c:b2:8f:e1:92:89:
67:73:eb:14:30:67:d0:6e:bf:3d:80:f6:99:82:13:
a9:28:bc:00:bb:74:f2:b3:2a:34:cb:b6:c7:30:f7:
28:74:fa:b2:06:da:fe:d8:c0:8a:37:0b:46:37:21:
57:cc:86:33:a8:33:c5:8a:b0:1a:8f:dc:22:6e:6b:
df:4a:88:25:1b:f9:64:83:0c:c8:c2:88:4a:43:9c:
35:6a:41:0a:78:21:49:11:65:19:6b:d9:6f:41:99:
d7:b5:f0:82:7e:07:3e:31:14:51:e9:7d:28:d4:08:
de:6b:fb:43:23:15:c7:b6:f4:f9:9f:c2:b1:a4:09:
86:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DF:DC:15:FC:1D:8E:F4:DC:39:84:42:33:69:15:81:E7:63:96:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AAB18980E9611F1ABDB76B4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.217.0-154.210.219.255
154.210.221.0/24
154.210.223.0/24
154.210.234.0/24
Signature Algorithm: sha256WithRSAEncryption
20:74:23:b3:ee:cc:ba:ef:ac:55:f0:28:6f:9c:13:16:33:51:
de:bd:2a:3c:a9:40:85:88:ab:2e:22:ed:cd:05:19:4c:d4:8c:
fc:a7:69:19:58:5e:f4:6b:64:c1:c2:0b:34:d4:bc:2d:ed:46:
3d:63:7f:b9:c2:c8:23:9b:68:8e:c2:41:4a:97:61:89:ab:bf:
c6:7d:07:29:4a:95:0d:44:8c:5c:02:0b:94:82:1f:fc:74:78:
64:5e:d1:31:60:da:97:85:02:b3:49:65:78:99:85:86:72:16:
de:71:a0:cb:ea:16:2d:4b:33:80:87:c2:53:3e:0d:7f:ff:32:
e7:b3:3e:5d:0b:37:f5:27:9a:8b:8d:73:b2:6d:58:46:e6:4c:
42:fa:5f:47:07:7c:b0:84:44:19:12:c5:2f:d6:36:9d:a5:66:
95:a6:e7:7c:15:53:0b:1e:20:ab:4d:26:6c:d1:c9:d3:cf:3b:
e8:c9:12:e8:0b:4c:93:cf:f8:d8:6d:d1:d1:7b:bd:57:09:7b:
52:3b:98:d2:15:d5:b9:36:ae:81:87:f8:30:68:73:67:91:e1:
44:ee:5d:e1:a8:af:c9:1e:6f:6d:e3:49:0c:11:f8:70:3f:9e:
e7:39:2b:90:16:2f:a2:12:d0:f5:3b:72:cd:09:3a:5d:fc:e6:
55:24:92:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:08 2026 by rpki-client