Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/910A5DA4001011F1958FF67DDAE4EC9C.roa
File: 910A5DA4001011F1958FF67DDAE4EC9C.roa (raw, json)
Hash identifier: BjDoBw3nOiQHbucFQ2u4QOZihd6mk3IoTaceF4JCJXw=
Subject key identifier: A7:62:BB:2D:08:C0:02:2F:11:AB:4D:E4:45:0C:40:BD:B8:68:91:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B84B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/910A5DA4001011F1958FF67DDAE4EC9C.roa
Signing time: Mon 02 Feb 2026 08:24:18 +0000
ROA not before: Mon 02 Feb 2026 08:24:13 +0000
ROA not after: Thu 12 Mar 2026 08:24:13 +0000
asID: 212042
IP address blocks: 154.83.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112715 (0x1b84b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 2 08:24:13 2026 GMT
Not After : Mar 12 08:24:13 2026 GMT
Subject: CN=69805f32-4f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:2a:56:0b:8c:2e:4b:c0:11:72:e2:dd:8c:
e1:41:07:40:7d:1c:be:61:dc:2e:f5:e5:85:e0:b9:
92:1e:d4:30:f4:e7:9f:07:de:c9:5e:32:8c:96:53:
b0:00:fb:93:16:34:21:1c:1d:1e:87:e0:08:fe:d2:
1e:b1:a0:24:27:f1:48:09:35:ce:32:ff:85:9b:de:
a5:f1:a2:3d:de:02:67:46:1e:81:97:88:c3:ec:85:
fc:32:fe:e8:c2:a3:d2:e4:57:ce:c9:20:ab:6f:ad:
6d:1c:3d:35:90:8b:97:ea:16:d6:e2:cb:d3:fc:ba:
63:94:d2:d8:5d:62:91:d9:0a:38:7f:76:6a:32:37:
84:be:fd:b6:28:99:7e:f4:79:e7:d2:8c:9e:f5:83:
a5:90:26:ff:38:64:d7:6d:2c:e1:1b:43:10:d3:bc:
58:1e:8b:c7:3c:d5:a9:f1:0c:f1:51:5a:25:ad:ee:
8b:93:f8:17:80:c9:aa:7d:2f:1d:8f:01:5b:c9:04:
9e:08:d9:b9:6c:90:53:4b:9e:5c:46:a2:b6:34:e7:
a5:8a:9e:ad:f5:f8:42:16:52:fc:11:5b:56:2e:c7:
09:7c:d3:5b:a3:1a:73:36:30:91:3c:1a:22:92:d7:
07:e6:50:b7:bc:21:29:b3:fa:d2:bd:52:3e:43:d8:
33:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:62:BB:2D:08:C0:02:2F:11:AB:4D:E4:45:0C:40:BD:B8:68:91:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/910A5DA4001011F1958FF67DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.136.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:1c:a9:a0:47:af:8c:f6:79:03:e8:dc:4c:e1:1c:d9:ed:91:
08:1d:99:68:b6:4f:9f:b2:c0:dc:f0:e3:d5:df:10:82:34:80:
4b:06:24:62:8d:35:ca:12:37:4e:fb:36:82:2a:1e:05:67:ff:
4c:d3:b4:08:11:ab:08:0f:cf:f2:b1:f3:a1:a5:75:2d:84:7b:
5b:73:aa:a7:55:50:3b:27:af:bf:a7:f4:50:17:76:f9:78:29:
48:77:dc:29:ab:4e:b6:17:99:5d:66:15:58:4d:c8:19:a1:b7:
e9:e5:97:cb:19:d8:e5:25:cd:27:8e:75:c0:65:f3:7f:1d:8a:
2d:bf:bf:84:36:53:18:f6:d6:04:c5:b6:e5:ab:d9:59:53:98:
8d:f9:1a:2a:35:68:20:a1:ff:38:9d:df:4e:1c:96:5a:6e:a2:
85:88:ae:06:4c:4b:4c:f4:16:65:be:ef:12:00:2b:eb:2a:57:
a5:a4:f8:a6:fc:53:6a:34:43:f3:f6:9b:ac:d6:d3:78:2e:7d:
39:42:0a:af:67:9f:bc:7b:b2:dd:4f:5e:fc:07:b1:50:38:1b:
f5:8c:ef:08:b2:dc:cc:9d:81:3d:c1:72:38:c5:72:23:3c:c9:
07:9c:79:12:f6:04:f9:a7:2b:85:9f:5c:23:28:df:48:bf:af:
0f:55:8d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:16:51 2026 by rpki-client