Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97C5022C116B11F180ACE9A0DAE4EC9C.roa
File: 97C5022C116B11F180ACE9A0DAE4EC9C.roa (raw, json)
Hash identifier: tz8rXLIBmU9/GDUK45kaDdlYnUg8NEGLFRGocHT9Sk4=
Subject key identifier: 6B:18:6A:BF:5B:EC:6D:56:0A:AA:C2:91:6A:AA:AE:05:F5:22:B6:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB40
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97C5022C116B11F180ACE9A0DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 10:28:43 +0000
ROA not before: Tue 24 Feb 2026 10:28:39 +0000
ROA not after: Tue 31 Mar 2026 10:28:39 +0000
asID: 62240
IP address blocks: 154.195.158.0/24 maxlen: 24
154.195.159.0/24 maxlen: 24
154.195.160.0/24 maxlen: 24
154.195.161.0/24 maxlen: 24
154.195.162.0/24 maxlen: 24
154.195.163.0/24 maxlen: 24
154.195.164.0/24 maxlen: 24
154.195.165.0/24 maxlen: 24
154.195.166.0/24 maxlen: 24
154.195.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113472 (0x1bb40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 10:28:39 2026 GMT
Not After : Mar 31 10:28:39 2026 GMT
Subject: CN=699d7d5b-4d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:17:a5:4f:ed:03:b8:20:1b:29:13:4b:7e:2e:
72:7d:88:be:8e:3b:cf:3d:53:48:51:16:f7:89:f4:
4d:76:b4:18:14:ab:b0:62:d3:b7:84:18:7b:7c:d5:
eb:d5:46:5d:f5:ab:63:51:e6:7e:33:0b:11:95:62:
79:3d:fd:a7:f0:51:f9:1f:4a:5d:83:7f:ae:e1:35:
ba:eb:89:be:d3:6a:a6:3a:22:49:5c:89:55:26:f4:
5c:95:7c:61:f4:86:81:34:84:57:f9:a3:3b:ae:36:
5e:98:da:ab:f0:4c:b5:f9:0a:ee:33:1d:7f:3d:c0:
17:5d:6b:e0:71:79:85:fb:4d:02:d0:49:04:dc:59:
87:6b:8a:a9:1a:cb:b1:75:93:ae:9f:59:84:b5:a5:
71:94:84:50:0f:70:e1:79:5a:5c:72:e2:bd:37:77:
2e:1d:08:3b:56:c1:76:e6:ad:8a:5e:2e:18:90:57:
97:11:f4:e8:36:9a:64:50:0b:56:18:35:3e:3d:1a:
81:e5:cc:88:eb:76:e4:4f:c0:17:b3:3e:bb:b4:30:
71:a4:31:01:61:d2:b3:2f:ce:b7:ce:b6:c7:ef:64:
4b:cc:d2:3b:70:3c:7c:dc:f7:d9:30:dc:13:5c:b3:
f2:d4:44:95:84:d5:81:38:cd:c5:42:50:18:70:7a:
be:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:18:6A:BF:5B:EC:6D:56:0A:AA:C2:91:6A:AA:AE:05:F5:22:B6:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97C5022C116B11F180ACE9A0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.158.0-154.195.167.255
Signature Algorithm: sha256WithRSAEncryption
1a:0f:d3:3c:ee:2f:3e:e2:cc:16:2b:94:c7:88:38:0d:f1:42:
9f:d3:d8:c5:51:87:7f:91:aa:84:42:4b:97:40:62:e4:f1:29:
7c:47:00:0d:a1:c5:90:03:5b:3e:c9:3b:4d:60:7a:f4:f1:92:
41:a3:6a:36:1d:6e:97:e2:a9:38:59:2c:65:ce:d3:36:4c:96:
7e:b9:62:89:7f:d0:a4:ad:f7:39:8a:8d:4a:52:fa:66:a3:34:
5a:1a:e9:32:c5:00:4d:05:da:0b:c4:26:c2:ae:36:6a:85:b1:
a8:44:a3:ac:79:51:5b:f3:5c:6a:e4:0d:0b:20:e2:3c:d5:72:
44:02:b6:19:90:31:04:38:0e:f2:1b:f8:dc:e8:21:ea:ea:c6:
a5:b2:67:14:d1:56:5c:93:2b:da:52:e3:72:fd:02:a5:fe:66:
ac:73:5c:e3:7b:d4:7a:e5:71:7b:a4:40:3f:5d:24:e5:08:72:
ae:94:49:c4:a1:2a:bb:b3:d1:c1:5d:bc:1c:6e:62:c8:b6:28:
85:d6:9d:a3:f1:72:a4:3b:cf:c4:84:2a:98:5c:29:ed:64:da:
e7:a3:9d:9c:db:d7:9f:cb:8b:1a:97:4a:cd:40:0b:27:2a:52:
3b:f7:b5:08:84:78:42:70:11:10:46:af:0f:6e:2e:31:b0:e0:
e0:a2:72:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:38:35 2026 by rpki-client