Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C8814D2058D11F195E346B6DAE4EC9C.roa
File: 9C8814D2058D11F195E346B6DAE4EC9C.roa (raw, json)
Hash identifier: +Ulra1VkSEJL6jwYKrlZwVdrYsQ1fGWCefGNMYyJsXE=
Subject key identifier: 3D:AB:82:96:63:C1:6C:CE:98:E4:C4:C4:39:F8:9D:A3:E8:68:BC:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B8F0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C8814D2058D11F195E346B6DAE4EC9C.roa
Signing time: Mon 09 Feb 2026 08:02:00 +0000
ROA not before: Mon 09 Feb 2026 08:01:54 +0000
ROA not after: Tue 10 Mar 2026 08:01:54 +0000
asID: 141159
IP address blocks: 154.94.224.0/24 maxlen: 24
154.94.225.0/24 maxlen: 24
154.94.228.0/22 maxlen: 24
154.94.228.0/24 maxlen: 24
154.94.229.0/24 maxlen: 24
154.94.230.0/24 maxlen: 24
154.94.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112880 (0x1b8f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 9 08:01:54 2026 GMT
Not After : Mar 10 08:01:54 2026 GMT
Subject: CN=69899478-c090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:03:fb:7a:01:53:e7:50:e3:57:68:d4:8f:
60:b9:df:a4:c4:84:6a:27:d8:03:7d:c9:fb:89:cc:
e0:9b:21:d3:e1:89:2d:b2:f6:75:35:67:c7:8b:6e:
dd:9a:3f:a0:f5:a6:6f:a0:f9:e0:ea:d8:05:ef:05:
fa:3a:fc:f9:54:81:47:0c:90:1f:02:a4:c6:d9:8f:
b0:c5:39:d4:a2:05:81:f9:70:53:fe:ed:4b:fb:a3:
88:43:7e:47:52:53:84:b2:b9:88:f9:85:76:fe:ac:
2e:c6:86:b0:8b:ba:01:6d:cc:2b:d6:cd:be:0d:0d:
93:77:27:e2:fb:01:96:b3:00:51:08:70:2a:92:3d:
e1:63:da:55:d8:e9:22:b0:ff:32:98:da:b8:b9:f6:
be:53:3e:df:cc:8e:11:bc:81:1f:a8:97:04:ae:7c:
de:5d:63:cd:db:f0:c7:ea:e0:0a:a5:38:d2:be:2b:
15:3b:32:fa:34:25:d7:a7:81:ee:fa:5e:a8:b8:f2:
56:7a:f0:91:51:31:89:7c:2b:c1:54:50:fc:9a:0c:
ce:c2:76:78:d8:e1:80:0c:e5:f9:e0:eb:89:79:35:
9c:27:b1:91:0b:fa:16:07:d2:f2:f7:48:5a:23:5b:
f8:cd:86:ad:10:e1:df:c8:b9:42:0c:e7:1c:dd:fb:
fc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:AB:82:96:63:C1:6C:CE:98:E4:C4:C4:39:F8:9D:A3:E8:68:BC:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C8814D2058D11F195E346B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/23
154.94.228.0/22
Signature Algorithm: sha256WithRSAEncryption
53:a0:f7:f7:84:8e:fa:06:6e:40:4b:7f:ff:82:0c:e8:ee:bc:
9a:13:b8:d4:0c:1b:bc:0b:67:b0:06:43:40:dd:7a:f1:c2:71:
b7:1c:c5:cb:a8:17:5c:12:c1:8e:e9:c0:8f:63:61:c5:5b:b0:
b8:70:7e:31:60:8f:5c:37:de:80:6e:12:8c:9f:dd:df:d9:19:
8e:3a:41:97:29:21:45:4a:fb:4c:3c:60:d8:0d:a8:2a:95:55:
4b:8a:a6:51:0f:5e:7d:d8:ca:8d:7c:05:f7:d1:e8:cc:42:2f:
96:34:85:5c:43:e6:48:22:c6:3b:05:e6:44:29:29:1b:e6:51:
46:a4:41:87:99:db:0b:df:ca:22:7d:48:12:38:40:9c:1a:4f:
70:60:d1:84:e8:85:f4:de:a6:d7:6d:1a:1c:46:e8:d4:46:8a:
40:d5:07:1f:a9:62:b4:de:ef:25:41:0e:23:d7:16:e8:a0:c8:
01:e1:19:55:e8:b5:cd:00:12:92:63:0d:e0:7a:8f:23:60:e4:
a5:00:ab:ed:29:f4:2b:cf:92:e2:ff:16:c7:c9:53:c8:d4:6d:
a5:4e:01:28:ea:f8:ff:2a:37:c8:da:ee:e1:25:6d:13:24:d6:
cc:1b:08:e4:b6:01:8e:b9:8e:70:f8:66:a3:4c:09:c5:c2:e8:
61:ee:85:68
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAbjwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjA5MDgwMTU0WhcNMjYwMzEwMDgwMTU0WjAYMRYw
FAYDVQQDEw02OTg5OTQ3OC1jMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApxcD+3oBU+dQ41do1I9gud+kxIRqJ9gDfcn7iczgmyHT4YktsvZ1NWfH
i27dmj+g9aZvoPng6tgF7wX6Ovz5VIFHDJAfAqTG2Y+wxTnUogWB+XBT/u1L+6OI
Q35HUlOEsrmI+YV2/qwuxoawi7oBbcwr1s2+DQ2Tdyfi+wGWswBRCHAqkj3hY9pV
2OkisP8ymNq4ufa+Uz7fzI4RvIEfqJcErnzeXWPN2/DH6uAKpTjSvisVOzL6NCXX
p4Hu+l6ouPJWevCRUTGJfCvBVFD8mgzOwnZ42OGADOX54OuJeTWcJ7GRC/oWB9Ly
90haI1v4zYatEOHfyLlCDOcc3fv8TwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFD2r
gpZjwWzOmOTExDn4naPoaLxkMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85Qzg4MTREMjA1OEQxMUYxOTVFMzQ2QjZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBml7gAwQCml7kMA0GCSqG
SIb3DQEBCwUAA4IBAQBToPf3hI76Bm5AS3//ggzo7ryaE7jUDBu8C2ewBkNA3Xrx
wnG3HMXLqBdcEsGO6cCPY2HFW7C4cH4xYI9cN96AbhKMn93f2RmOOkGXKSFFSvtM
PGDYDagqlVVLiqZRD1592MqNfAX30ejMQi+WNIVcQ+ZIIsY7BeZEKSkb5lFGpEGH
mdsL38oifUgSOECcGk9wYNGE6IX03qbXbRocRujURopA1QcfqWK03u8lQQ4j1xbo
oMgB4RlV6LXNABKSYw3geo8jYOSlAKvtKfQrz5Li/xbHyVPI1G2lTgEo6vj/KjfI
2u7hJW0TJNbMGwjktgGOuY5w+GajTAnFwuhh7oVo
-----END CERTIFICATE-----
Generated at Mon Mar 2 17:03:23 2026 by rpki-client