Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A43F4B0C12DD11F181DD4585DAE4EC9C.roa
File: A43F4B0C12DD11F181DD4585DAE4EC9C.roa (raw, json)
Hash identifier: 287uuh2787PAqsIj2e+KaFnXKOZ5krRNnyDSFnYstm8=
Subject key identifier: 1F:57:4A:FC:AA:F5:CE:6F:29:9F:1A:F6:3A:1A:7E:0B:AD:FC:54:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BBD8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A43F4B0C12DD11F181DD4585DAE4EC9C.roa
Signing time: Thu 26 Feb 2026 06:37:38 +0000
ROA not before: Thu 26 Feb 2026 06:37:34 +0000
ROA not after: Sun 29 Mar 2026 06:37:34 +0000
asID: 214143
IP address blocks: 154.197.25.0/24 maxlen: 24
154.197.90.0/24 maxlen: 24
154.197.127.0/24 maxlen: 24
154.200.72.0/21 maxlen: 24
154.200.109.0/24 maxlen: 24
154.205.248.0/22 maxlen: 24
154.206.4.0/22 maxlen: 24
154.208.72.0/22 maxlen: 24
154.222.72.0/23 maxlen: 24
154.223.232.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113624 (0x1bbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 26 06:37:34 2026 GMT
Not After : Mar 29 06:37:34 2026 GMT
Subject: CN=699fea32-c2db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:88:5e:90:54:f9:cf:26:d8:39:7d:7a:31:0d:
91:ae:79:08:46:34:2e:db:2d:1e:c2:5b:54:38:cc:
e9:2f:10:fd:eb:40:17:ae:92:21:ee:f4:74:d6:0b:
03:aa:a4:76:53:d2:53:31:c7:05:df:38:e7:b5:ac:
e9:e4:f8:65:bb:34:e0:93:f0:9d:ed:58:84:77:9f:
99:07:9a:f9:14:42:65:07:d0:0f:d2:09:0f:c8:1f:
90:dc:02:18:e8:7b:3b:04:a1:87:6a:64:f3:e1:d8:
2f:75:58:2d:e5:72:af:c7:2a:ba:c4:21:97:b5:6f:
56:f3:69:22:d6:81:eb:3b:23:ae:b8:fc:2b:8c:fd:
81:d9:51:8f:ef:d0:ea:57:d1:7f:0e:21:46:b8:8f:
f6:73:c3:f0:27:6a:cb:87:4f:22:75:2c:9d:6e:39:
bd:1c:8d:ae:d1:85:ed:f1:50:2e:4b:1f:30:c3:7a:
c2:d5:ee:80:0d:d6:6e:5b:42:cc:3c:e2:df:a6:59:
19:db:6c:91:40:d3:bf:ee:f9:8c:ae:be:77:5d:fe:
18:6e:9f:10:ff:97:9b:11:b7:54:25:f0:31:37:f8:
2b:95:e1:ae:3e:a2:dd:59:3f:a1:e4:77:96:4f:2b:
09:4e:d0:85:b6:cc:e6:59:e3:7d:ae:3a:19:a3:6a:
1c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:57:4A:FC:AA:F5:CE:6F:29:9F:1A:F6:3A:1A:7E:0B:AD:FC:54:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A43F4B0C12DD11F181DD4585DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.25.0/24
154.197.90.0/24
154.197.127.0/24
154.200.72.0/21
154.200.109.0/24
154.205.248.0/22
154.206.4.0/22
154.208.72.0/22
154.222.72.0/23
154.223.232.0/21
Signature Algorithm: sha256WithRSAEncryption
18:1c:57:02:f0:5f:43:24:84:0e:74:7e:04:2c:8a:a3:59:a8:
98:d3:0b:ab:14:9b:52:9c:c8:32:ce:de:a5:f5:0b:20:c0:fa:
4e:37:56:77:ef:a5:6b:ba:79:b2:e1:66:db:8d:16:7d:b8:2a:
48:4a:9d:8a:d2:ee:77:61:2b:7b:34:e4:87:67:59:71:5f:f8:
5f:8d:97:31:6d:ee:9f:68:0e:50:7e:b3:81:3c:57:94:ab:4c:
f7:08:6c:33:d7:c2:77:29:34:5d:72:73:c2:3e:18:73:59:66:
79:d1:ee:89:4f:78:33:20:1c:38:4c:11:b1:d7:c7:fc:48:6a:
b7:1b:59:81:e1:d2:68:a1:08:cd:79:bf:2d:69:06:49:51:f2:
6d:95:3c:b1:d6:72:36:41:f3:e5:4c:ec:28:3a:2a:23:3c:77:
1d:ba:b4:11:a4:4f:cb:d7:ff:ce:7b:97:03:89:ba:f1:c2:9d:
37:54:13:ae:2d:96:6c:37:5b:73:fc:96:17:6f:16:2e:de:86:
61:13:40:4a:9f:7a:c7:a6:47:c1:5f:e8:c1:65:00:7e:8e:51:
a4:0e:f5:cd:af:3b:24:ae:5a:92:40:37:00:60:cf:0a:01:cf:
36:2d:9f:88:8d:03:d5:c0:33:7b:73:9c:76:34:31:b2:cd:d5:
b9:0d:35:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:05 2026 by rpki-client