Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92EE0FE8040811F1B24E24DFDAE4EC9C.roa
File: 92EE0FE8040811F1B24E24DFDAE4EC9C.roa (raw, json)
Hash identifier: PjAOI8Z12jWB5LclwZdqjyanqCUKWxSAp+PAsk0HU54=
Subject key identifier: 1D:35:F3:EC:36:5D:4E:D0:A6:75:A9:E3:FE:20:E6:3B:F8:3A:34:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B8D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92EE0FE8040811F1B24E24DFDAE4EC9C.roa
Signing time: Sat 07 Feb 2026 09:37:10 +0000
ROA not before: Sat 07 Feb 2026 09:37:05 +0000
ROA not after: Mon 16 Mar 2026 09:37:05 +0000
asID: 40779
IP address blocks: 154.222.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112856 (0x1b8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 7 09:37:05 2026 GMT
Not After : Mar 16 09:37:05 2026 GMT
Subject: CN=698707c6-ccb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9c:47:e2:d9:ff:67:f3:ad:5f:96:58:6b:13:
40:5a:a3:08:1f:83:c8:76:dc:12:ed:46:aa:14:7f:
79:8f:1f:ba:ca:74:c4:ba:a8:7f:e8:36:55:01:e3:
ae:2a:c3:be:4f:2c:b0:0c:ab:02:ea:d1:0a:49:17:
06:f0:56:5c:fd:43:0f:36:5e:74:b3:43:14:44:ae:
b1:0e:20:8e:eb:f5:37:53:77:a8:9c:29:54:93:32:
f6:ca:a2:91:f4:c2:7f:5d:a7:c6:e1:67:ac:76:c1:
45:20:1e:06:54:78:dc:c0:58:96:1b:3d:f5:10:6b:
17:f6:67:62:9b:5b:73:f7:b8:20:99:db:ca:df:cf:
7c:30:32:d9:43:86:8f:64:bb:5e:d3:b1:89:d6:49:
51:d6:e9:6d:22:83:6d:90:00:a0:ce:f9:35:91:b6:
e6:12:7a:19:67:d9:0d:ae:22:17:4c:36:ae:07:4c:
51:40:bd:3a:ed:92:5e:ee:b9:d4:a3:90:e8:52:48:
ef:cf:9f:d9:6f:a9:cb:0d:b0:da:6f:87:5a:55:94:
c7:14:82:bd:89:fb:29:96:33:ba:0c:81:35:1b:91:
da:40:6a:99:59:f4:c8:7c:1f:5d:23:28:94:af:c9:
e0:7e:47:f1:55:8e:c6:02:ac:66:92:1e:77:fe:af:
58:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:35:F3:EC:36:5D:4E:D0:A6:75:A9:E3:FE:20:E6:3B:F8:3A:34:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92EE0FE8040811F1B24E24DFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.16.0/20
Signature Algorithm: sha256WithRSAEncryption
b2:ee:f7:58:58:c1:8a:e4:7c:9e:f2:c4:37:dd:a5:87:e8:d5:
28:f5:2d:03:ad:71:fa:5c:6d:9f:8d:f9:42:19:ca:00:f4:03:
73:d5:bd:41:71:ea:2d:1f:3a:1b:00:ea:c1:20:ce:78:64:9e:
ba:20:ef:8e:c7:74:ea:0c:9b:0e:ac:4e:16:39:6f:34:64:1d:
ce:64:ee:a7:32:7b:fe:ff:b3:b4:07:d8:70:8b:b5:fc:7d:4d:
e2:04:75:49:70:c8:6f:54:28:ef:b2:2c:ff:f4:ea:8c:41:42:
0c:cd:e6:99:9c:95:19:c2:0c:70:c0:7e:b2:83:a8:06:72:56:
d5:d8:cb:d7:e7:d8:1a:ba:3d:ce:99:57:48:94:25:06:15:c2:
27:58:e6:36:e8:9d:f0:80:8a:81:bb:d6:46:a0:96:4a:ee:fb:
7b:e1:a2:6f:e2:cb:2b:45:f7:a5:82:ab:8a:e0:2b:71:b4:ef:
b6:7c:6b:00:09:31:c6:58:a3:26:7c:8c:3d:67:dc:40:f6:46:
39:83:c6:d7:89:f8:85:1d:67:61:60:69:ba:a5:96:03:f0:6e:
9f:2a:89:9d:2c:8a:23:4b:20:c6:8d:00:0d:71:da:9a:0e:72:
d4:1c:4a:dd:2c:33:19:d6:70:64:3b:67:0b:c1:8b:95:c5:0a:
24:4f:6a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:18:33 2026 by rpki-client