Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8822C2C4108411F1848A9A9DDAE4EC9C.roa
File: 8822C2C4108411F1848A9A9DDAE4EC9C.roa (raw, json)
Hash identifier: HMnmwN6HLg+GS+cSdmcf9XNsG8oPJZLBuMjKnn9kQbE=
Subject key identifier: 68:B3:26:6E:1B:7A:61:45:D3:83:AF:49:FA:83:22:53:EE:C7:88:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB0B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8822C2C4108411F1848A9A9DDAE4EC9C.roa
Signing time: Mon 23 Feb 2026 06:54:43 +0000
ROA not before: Mon 23 Feb 2026 06:54:39 +0000
ROA not after: Sun 29 Mar 2026 06:54:39 +0000
asID: 134365
IP address blocks: 154.194.248.0/21 maxlen: 24
154.194.248.0/24 maxlen: 24
154.194.249.0/24 maxlen: 24
154.194.250.0/24 maxlen: 24
154.194.251.0/24 maxlen: 24
154.194.252.0/24 maxlen: 24
154.194.253.0/24 maxlen: 24
154.194.254.0/24 maxlen: 24
154.194.255.0/24 maxlen: 24
154.198.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113419 (0x1bb0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 23 06:54:39 2026 GMT
Not After : Mar 29 06:54:39 2026 GMT
Subject: CN=699bf9b3-71c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:a9:a8:35:5b:53:bc:7a:32:56:26:dc:e5:
8b:c8:8d:10:c9:58:68:0b:9c:94:7d:c1:15:f1:10:
4b:f5:f0:c9:e9:86:1f:f0:b3:6a:55:1c:b0:e0:29:
93:04:1c:d0:84:0b:1b:3a:d3:da:ca:05:b3:21:e9:
c2:dd:5b:62:31:d0:ac:2d:fb:c3:b8:9a:d9:0b:a5:
3c:1b:3a:c4:64:83:e1:97:b8:98:6f:b6:e2:d7:5f:
2a:b1:32:a9:29:65:a1:05:6e:1c:b7:4d:a9:f4:de:
d3:5f:2a:7b:6a:75:86:5c:57:1b:de:52:3c:bc:98:
08:81:ef:c5:6c:08:00:29:1a:52:13:cc:4f:64:88:
eb:bf:f9:5a:ed:e4:4b:52:05:82:57:27:5f:34:6f:
b0:6b:82:2a:01:55:37:6f:8c:7e:ce:a6:d6:3f:bc:
65:c7:37:4e:72:18:f2:85:b3:a1:24:1f:06:be:80:
24:0b:46:99:10:66:4d:c3:5f:e3:e6:e6:a5:14:89:
ce:0c:99:a4:a9:34:5a:fd:41:e6:89:f0:62:bc:c5:
da:18:93:68:01:67:b0:e6:20:05:25:83:11:98:9a:
c5:3a:7b:de:49:44:ed:c9:6b:5e:7b:77:8c:6b:84:
a0:2d:cb:55:09:49:1d:19:a4:27:a1:7a:8c:b4:8d:
9d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B3:26:6E:1B:7A:61:45:D3:83:AF:49:FA:83:22:53:EE:C7:88:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8822C2C4108411F1848A9A9DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.248.0/21
154.198.40.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:ff:67:0f:dc:5a:84:c9:c1:01:f6:e5:03:52:23:46:cd:b1:
06:69:c1:a0:b9:1d:1e:9e:9e:05:b4:95:50:42:85:b4:fa:fc:
f8:45:46:ed:af:40:7a:36:9a:7c:35:4e:32:d1:9f:a0:18:a5:
7b:32:63:ee:eb:da:a5:94:03:4f:b3:b2:95:16:4d:96:91:14:
a9:21:8f:06:93:8d:98:cb:6b:ec:da:3a:c7:f5:8a:c5:11:bd:
bf:83:6a:5c:a0:cc:84:0a:7d:2b:80:a7:d9:44:9a:eb:52:a2:
32:da:97:19:af:f6:ba:4c:87:e0:17:5f:77:a5:be:99:d6:7d:
2b:80:13:1a:1a:3b:20:b4:d3:0f:8e:75:a8:b0:bb:21:8d:d4:
52:1f:56:d5:a2:2a:9f:07:04:4c:7a:73:b8:38:10:ef:7e:66:
a2:5d:b0:eb:a6:3a:df:68:8d:65:a9:24:73:8c:68:79:77:1c:
f5:e6:2c:a2:30:96:12:b2:cc:5d:96:5d:a6:b1:4c:78:b6:15:
64:e6:7b:87:de:ed:65:a1:38:6b:e0:3d:59:eb:26:bf:1b:50:
cb:89:bf:fe:d7:47:48:d8:b9:61:83:71:69:de:af:9e:c3:08:
66:09:66:cb:70:a0:fe:b0:0e:91:49:63:80:d4:68:17:c2:4a:
bf:67:27:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:57 2026 by rpki-client