Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1CD3FA4116C11F199D5E2A8DAE4EC9C.roa
File: A1CD3FA4116C11F199D5E2A8DAE4EC9C.roa (raw, json)
Hash identifier: fm7oAJk0T2VvDhlGORjUTutCsmoSJ9XyVN+HLyRIYJE=
Subject key identifier: AD:E7:D5:3B:C0:1C:33:6B:B2:02:E8:09:4D:38:68:A1:2A:B2:AD:2C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB42
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1CD3FA4116C11F199D5E2A8DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 10:36:09 +0000
ROA not before: Tue 24 Feb 2026 10:36:05 +0000
ROA not after: Tue 31 Mar 2026 10:36:05 +0000
asID: 62240
IP address blocks: 154.195.139.0/24 maxlen: 24
154.195.143.0/24 maxlen: 24
154.195.144.0/24 maxlen: 24
154.195.145.0/24 maxlen: 24
154.195.146.0/24 maxlen: 24
154.195.147.0/24 maxlen: 24
154.195.148.0/24 maxlen: 24
154.195.149.0/24 maxlen: 24
154.195.150.0/24 maxlen: 24
154.195.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113474 (0x1bb42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 10:36:05 2026 GMT
Not After : Mar 31 10:36:05 2026 GMT
Subject: CN=699d7f19-2408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:6d:55:18:9d:82:67:2f:8e:56:f2:a8:90:
4e:17:70:81:2a:a1:14:cf:0f:1d:29:1c:61:2e:23:
fd:60:ae:84:eb:c4:93:8e:a0:fe:df:f1:e8:af:f0:
23:b3:b2:46:0d:55:98:cf:ae:22:cd:55:a3:05:50:
ae:ae:94:15:d8:f7:e4:28:5d:c9:e8:4a:65:7a:45:
74:e6:64:76:c0:2e:5f:6b:98:98:03:9c:a3:88:b8:
58:b8:e0:2d:62:82:51:26:36:6e:3f:2f:cd:f5:5a:
76:8b:27:d3:0a:9a:9a:1f:ef:88:d8:13:47:be:ff:
5c:be:d8:a9:0d:00:53:63:24:ae:d1:4c:ea:61:59:
df:7e:b6:36:37:7e:57:cf:b2:bf:ac:76:1c:2e:13:
97:1d:2d:52:99:27:06:74:a6:70:68:87:9d:6e:c8:
d9:da:b9:5e:84:ad:fc:93:42:d5:e6:41:36:ab:22:
35:ce:c7:14:e4:38:ee:5b:74:a3:74:a2:b7:b1:90:
c7:ec:21:3f:ac:c7:a9:5a:1a:f6:e1:45:47:28:28:
b9:93:7d:df:98:81:97:98:5f:3e:52:b3:ec:91:ff:
34:44:4b:9e:91:48:0e:53:b4:73:c2:06:69:54:15:
9e:b2:10:e0:d4:dc:bf:a4:9c:d9:39:6f:20:f0:95:
08:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E7:D5:3B:C0:1C:33:6B:B2:02:E8:09:4D:38:68:A1:2A:B2:AD:2C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1CD3FA4116C11F199D5E2A8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.139.0/24
154.195.143.0-154.195.151.255
Signature Algorithm: sha256WithRSAEncryption
cb:2a:91:db:47:2f:74:19:4c:e4:41:75:19:e1:6a:7e:5c:5e:
41:71:35:e6:77:45:52:3f:78:a9:e1:15:c7:49:d7:d2:32:40:
59:50:19:39:51:db:00:56:c1:58:7a:40:c1:5d:ed:63:ec:a6:
0e:33:74:c9:f8:d2:f6:a8:ca:2f:28:c0:f6:52:6c:6b:1f:54:
74:5c:ef:8a:99:b0:43:d9:60:38:f3:c0:66:f8:f2:57:f7:62:
c7:47:fe:34:22:a1:6b:8c:be:0c:4e:13:96:1c:68:6c:91:b5:
02:f1:3b:dc:d1:15:6e:e1:c5:92:8d:54:6a:01:99:30:a0:47:
02:2b:63:16:1e:70:b6:04:e4:15:14:d4:83:f5:76:34:66:0b:
12:1e:90:0f:f1:c7:f4:6f:16:f0:8e:c5:61:27:6b:ae:07:11:
de:fc:0d:ca:21:42:48:c6:77:07:31:68:09:27:0f:e0:a2:cd:
fa:df:d0:3f:ee:76:c5:36:9d:27:5a:f2:92:ff:2a:30:3e:c4:
48:d9:c9:af:9a:d0:0a:5d:41:e6:a2:f3:f9:a9:0a:e3:5a:df:
db:6e:b8:da:a6:ec:68:2f:30:92:c7:76:cf:c7:24:47:27:a2:
8c:8c:29:24:29:4e:27:ad:98:ec:ea:a5:11:38:1c:c9:4c:51:
6f:d8:16:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:19:29 2026 by rpki-client