Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B6421160E9011F1B0B27B93DAE4EC9C.roa
File: 9B6421160E9011F1B0B27B93DAE4EC9C.roa (raw, json)
Hash identifier: OqCMgHsCk2suPmOuA2BaDGyxly5XQIJioaBtrk4pTRU=
Subject key identifier: 37:26:82:88:DB:6A:B2:0E:DE:99:66:03:53:1C:6C:46:8C:5D:F1:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BAA4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B6421160E9011F1B0B27B93DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 19:16:07 +0000
ROA not before: Fri 20 Feb 2026 19:16:03 +0000
ROA not after: Thu 04 Jun 2026 19:16:03 +0000
asID: 18229
IP address blocks: 154.210.145.0/24 maxlen: 24
154.210.146.0/24 maxlen: 24
154.210.147.0/24 maxlen: 24
154.210.148.0/24 maxlen: 24
154.210.149.0/24 maxlen: 24
154.210.150.0/24 maxlen: 24
154.210.151.0/24 maxlen: 24
154.210.152.0/24 maxlen: 24
154.210.153.0/24 maxlen: 24
154.210.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113316 (0x1baa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 19:16:03 2026 GMT
Not After : Jun 4 19:16:03 2026 GMT
Subject: CN=6998b2f7-b429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:97:68:f6:15:41:f5:2c:b5:a5:c7:8c:8a:
a6:e6:ec:c8:0c:0b:a8:89:50:bc:c9:9a:1b:a9:24:
46:e0:ab:34:6e:f9:5e:87:dd:f7:cd:55:d5:53:5c:
06:ce:05:ec:a0:ec:c5:a2:a0:fc:12:5b:08:a4:36:
d3:61:ec:22:e5:12:fd:59:c8:0c:a5:79:20:00:d4:
ba:b6:14:a2:03:e9:37:8e:56:a5:01:7a:1f:79:40:
9a:2d:08:14:67:c5:9e:d1:7b:26:5f:bb:bf:3f:28:
39:b3:a9:92:b0:96:bb:47:6b:63:3b:e4:92:cc:7d:
01:39:d8:51:fb:d2:2e:37:d7:10:2b:cc:63:9e:69:
4f:c4:3f:af:0b:3c:a1:07:74:06:fb:f3:af:ef:e0:
86:78:7d:15:46:2a:81:54:b1:49:ac:82:1e:04:6e:
8d:bd:7e:6e:1a:d8:62:93:95:63:b5:28:bd:bf:71:
c1:c5:ef:3a:49:86:ae:03:51:b7:19:f3:cd:e3:e8:
8a:a3:6c:15:78:1c:cc:94:12:15:01:c6:3f:e6:98:
a2:da:5e:12:41:ed:3c:3b:42:14:ab:b2:bd:e2:11:
8e:26:b0:2f:c7:87:6a:3b:cb:6c:f7:95:86:3a:ec:
d1:22:e5:83:05:d4:9e:df:27:a8:67:fe:79:7f:a6:
2c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:26:82:88:DB:6A:B2:0E:DE:99:66:03:53:1C:6C:46:8C:5D:F1:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B6421160E9011F1B0B27B93DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.145.0-154.210.154.255
Signature Algorithm: sha256WithRSAEncryption
42:81:aa:3c:a3:a4:26:d2:6f:1d:b7:92:0a:6c:60:d9:82:d1:
3a:d6:66:0b:d2:59:f4:13:7a:e2:13:be:7a:0c:ae:68:ca:78:
c6:e1:6a:7a:31:0c:12:7c:9b:a0:5b:9a:4e:88:df:bd:7b:3b:
b9:a1:46:a2:30:fe:88:bd:83:d7:14:40:d3:d3:16:10:ec:67:
49:9e:fd:f3:bf:86:05:e1:55:d9:56:de:ee:56:e0:f8:67:67:
90:f8:67:01:0e:05:1e:87:5c:f5:7d:0f:80:e0:bd:3d:54:62:
eb:48:b5:e0:45:21:31:84:22:c3:40:03:08:3d:69:53:a5:08:
a2:0e:df:de:66:71:45:32:ea:3b:c7:a9:75:7c:b1:0e:da:05:
80:34:db:39:93:84:27:eb:04:cf:a2:44:c1:0a:28:fb:e0:e5:
b4:b8:8e:e7:f2:d9:1c:23:c2:f5:94:79:01:89:15:c5:bf:f6:
18:e0:95:9b:f3:cc:3b:06:19:ca:d4:db:1f:71:b5:99:6e:2d:
08:ca:01:0d:ea:9b:ae:dd:dd:23:37:a7:23:fe:96:f7:01:79:
16:ff:87:2c:fc:13:64:b0:9f:30:53:19:c0:f4:02:b3:8a:d8:
86:a1:43:07:1f:ec:db:54:a0:89:85:02:f6:61:04:69:f3:ed:
93:dd:5f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:29 2026 by rpki-client