Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/883C04F800E111F1A1B80C84DAE4EC9C.roa
File: 883C04F800E111F1A1B80C84DAE4EC9C.roa (raw, json)
Hash identifier: xcX9jp2fniRM4cKGQxzzf/umWb1Qq7uWptS73E7H7p0=
Subject key identifier: 52:77:BE:F9:B8:CE:D2:01:27:DD:D5:F7:47:D5:D0:D0:2D:E5:7E:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B86A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/883C04F800E111F1A1B80C84DAE4EC9C.roa
Signing time: Tue 03 Feb 2026 09:20:08 +0000
ROA not before: Tue 03 Feb 2026 09:20:03 +0000
ROA not after: Tue 10 Mar 2026 09:20:03 +0000
asID: 14315
IP address blocks: 154.81.11.0/24 maxlen: 24
154.81.48.0/23 maxlen: 24
154.81.62.0/23 maxlen: 24
154.84.128.0/22 maxlen: 24
154.84.134.0/24 maxlen: 24
154.84.152.0/24 maxlen: 24
154.84.154.0/24 maxlen: 24
154.88.68.0/22 maxlen: 24
154.89.128.0/22 maxlen: 24
154.89.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112746 (0x1b86a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 3 09:20:03 2026 GMT
Not After : Mar 10 09:20:03 2026 GMT
Subject: CN=6981bdc8-5474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:59:a4:fc:0d:a3:75:05:cb:72:00:7b:25:7d:
3e:0b:34:7d:6b:49:46:7b:e8:f9:7f:ee:9f:98:1f:
13:a7:83:98:95:f6:fa:64:d8:5a:eb:f8:62:85:fb:
0f:7e:83:11:e9:9c:81:4b:c3:a8:20:c4:a1:68:51:
3f:09:4d:b6:f3:8b:04:cc:28:46:12:32:eb:90:06:
c6:42:48:00:84:9b:65:6a:b7:f4:e8:34:46:31:2c:
89:63:02:76:7d:d0:23:6a:d3:40:e7:bd:df:d7:ec:
b3:ce:ec:3b:0e:9a:6d:87:11:33:0f:67:b1:88:37:
42:d8:70:c5:23:ff:50:41:31:2a:54:ae:e4:be:2c:
4f:16:38:5e:dc:55:6b:10:01:c9:39:21:3b:29:3d:
f7:88:3d:18:2c:d0:be:76:6b:f4:21:0b:c3:60:1f:
62:69:8d:f1:42:10:d0:f9:90:53:4c:22:1a:92:d4:
df:f5:aa:1f:e2:3d:17:04:65:1e:c2:f5:53:07:6f:
34:48:27:68:51:ee:a4:91:45:44:ff:4e:af:95:18:
76:11:d1:99:e2:ad:2d:36:45:48:d1:8b:82:6f:fa:
82:50:92:90:08:98:ac:48:69:ad:40:10:44:42:25:
47:40:d0:a0:cd:17:51:72:39:f2:03:b8:42:89:e2:
55:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:77:BE:F9:B8:CE:D2:01:27:DD:D5:F7:47:D5:D0:D0:2D:E5:7E:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/883C04F800E111F1A1B80C84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.11.0/24
154.81.48.0/23
154.81.62.0/23
154.84.128.0/22
154.84.134.0/24
154.84.152.0/24
154.84.154.0/24
154.88.68.0/22
154.89.128.0/22
154.89.136.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:19:dc:10:ac:ba:7e:72:4d:bf:8d:36:fd:6e:a8:4f:47:a0:
74:ee:ac:8a:c8:b6:df:77:1f:07:76:1f:1d:c2:c9:81:93:8a:
04:eb:bc:39:3a:be:a7:62:2d:4e:8b:69:44:ab:97:53:44:0c:
62:5b:fe:0b:9b:1d:ea:43:fa:14:45:56:2e:e8:a9:f8:de:65:
d0:48:5c:ac:c1:93:77:1f:52:87:0d:d0:ea:3a:2d:a9:1a:cb:
fe:65:e3:a8:e8:57:2e:8a:9d:3b:50:8d:81:78:32:63:f5:53:
19:87:3b:0b:2d:d8:9f:e7:d0:ca:ce:c7:0d:d8:18:9c:14:24:
17:b0:d0:59:ef:d8:da:d0:29:45:bd:21:37:1e:6f:f7:dc:0c:
84:7d:3f:2c:a1:fd:a0:47:dd:dd:b6:75:32:67:2f:ba:e7:78:
a6:f9:ed:ed:d5:19:7c:7b:ec:2a:be:fa:50:e2:02:fe:b4:01:
4f:72:00:f7:d2:5b:22:11:29:6b:82:f9:e7:d8:23:31:0e:a8:
04:d2:d3:ec:c7:f5:b3:e6:77:d2:f8:48:db:83:22:dd:ec:e5:
6d:fc:f4:6a:75:ab:72:db:97:d1:66:61:ef:f3:93:ea:b8:ff:
f8:c3:29:f6:de:f5:e4:a5:26:00:da:b4:18:a4:b9:86:35:8d:
9f:94:82:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:53 2026 by rpki-client