Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96CB7580FDA811F0A10C76B3DAE4EC9C.roa
File: 96CB7580FDA811F0A10C76B3DAE4EC9C.roa (raw, json)
Hash identifier: 7VEBD1YYjmEojsEvxbBFNbtll+cMbtgMh+9vOyCELyY=
Subject key identifier: 17:B3:90:B3:BD:47:56:6B:B0:77:44:E3:93:E7:EF:89:2F:FC:27:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B75B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96CB7580FDA811F0A10C76B3DAE4EC9C.roa
Signing time: Fri 30 Jan 2026 06:54:58 +0000
ROA not before: Fri 30 Jan 2026 06:54:52 +0000
ROA not after: Sat 06 Feb 2027 06:54:52 +0000
asID: 132839
IP address blocks: 154.209.32.0/19 maxlen: 24
154.209.96.0/19 maxlen: 24
154.213.32.0/19 maxlen: 24
154.213.96.0/19 maxlen: 24
154.213.128.0/19 maxlen: 24
154.213.224.0/19 maxlen: 24
154.216.32.0/19 maxlen: 24
154.216.64.0/18 maxlen: 24
154.220.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112475 (0x1b75b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 30 06:54:52 2026 GMT
Not After : Feb 6 06:54:52 2027 GMT
Subject: CN=697c55c2-5035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:45:3a:30:b2:58:43:13:c4:9f:c0:74:e4:7b:
05:ec:9a:1c:3b:42:65:34:55:be:bd:6a:4d:05:42:
25:51:a4:ee:a6:5b:5b:3c:e1:50:46:12:b5:4a:08:
2c:43:33:ba:27:4e:7b:cc:0f:b5:3b:f9:aa:ea:e6:
53:91:da:42:cf:f0:40:6e:5f:96:71:33:73:8f:69:
19:ca:97:33:b8:75:26:5c:50:52:b3:c9:42:e1:01:
6f:89:ac:b6:44:cc:d7:db:95:0a:42:75:04:38:92:
1a:2e:70:cc:81:72:8e:59:25:db:ba:ef:fa:84:22:
69:b5:6e:80:a4:18:71:a2:a5:12:c6:a1:b7:9e:31:
33:2b:dc:fb:27:97:68:24:f9:e2:26:27:f4:9e:d5:
f3:a6:6b:eb:50:3b:c6:4e:ea:1e:ea:e6:28:27:4a:
d0:44:4b:8f:5d:a1:a1:11:c6:d1:06:09:f3:bc:d8:
20:cc:85:42:62:ac:21:87:59:e7:52:d5:27:81:84:
2e:e1:0a:c1:f9:d3:2e:98:82:d4:0e:32:e9:ef:ec:
98:3b:08:22:0a:cb:9d:39:b6:1e:c1:bf:10:4a:ce:
df:5d:9e:4c:c2:71:67:68:2f:c0:b6:ab:54:d9:86:
30:f3:fa:dd:6b:57:43:4c:ca:66:38:2c:34:06:a6:
60:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B3:90:B3:BD:47:56:6B:B0:77:44:E3:93:E7:EF:89:2F:FC:27:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96CB7580FDA811F0A10C76B3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.32.0/19
154.209.96.0/19
154.213.32.0/19
154.213.96.0-154.213.159.255
154.213.224.0/19
154.216.32.0-154.216.127.255
154.220.32.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:67:b6:96:c3:56:60:cf:1f:ec:4a:46:af:8e:da:e7:ee:4e:
66:cc:7e:9a:5e:ac:81:d1:9f:64:f8:12:0f:0f:68:89:46:4d:
be:4b:03:2e:34:e8:97:cb:9d:b9:f3:b1:c6:f2:26:10:b2:69:
77:d0:a6:fd:7d:e8:a6:df:ee:bf:99:c8:3a:4c:a5:18:91:52:
4e:ad:64:d7:f4:11:0f:70:45:88:d1:60:5d:45:96:91:c6:06:
b6:f4:0a:58:e0:9a:03:c7:15:d4:a0:0a:a1:20:3b:d2:f7:c4:
66:67:14:2f:0f:5f:b7:2d:97:16:49:f4:0e:ef:f1:34:d4:e8:
58:93:b1:1b:6e:f3:47:6a:fc:7e:7e:d0:c3:46:bf:91:60:f0:
ce:fe:56:69:b5:a0:49:65:28:7c:35:d4:d1:5a:c9:fd:1f:f6:
a1:32:e1:7f:0b:93:e1:bb:91:20:f4:f2:79:9f:db:28:5f:f0:
51:d9:17:92:55:c7:ed:64:d0:bb:9e:c8:50:97:16:d5:c6:57:
42:fb:4d:96:67:45:cf:d2:46:68:26:d6:d0:86:be:a6:48:7b:
25:6f:b0:a7:16:b1:cd:a2:d3:ec:d8:ee:1c:6f:0b:e8:bd:cb:
ab:4a:8c:d8:fa:9f:84:7f:4d:d6:6b:14:76:ac:8e:8c:2c:1c:
00:47:ef:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:11:13 2026 by rpki-client