Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9AF5B0C0E3911F18BC96788DAE4EC9C.roa
File: A9AF5B0C0E3911F18BC96788DAE4EC9C.roa (raw, json)
Hash identifier: k9RV1tjNR39G/gxFFbArIBq/vsr8ff96sJGefo6RDr8=
Subject key identifier: 24:02:5B:E1:71:BB:71:3D:1B:62:41:FA:67:B5:6F:11:78:AE:E8:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA4E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9AF5B0C0E3911F18BC96788DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 08:53:45 +0000
ROA not before: Fri 20 Feb 2026 08:53:40 +0000
ROA not after: Fri 27 Mar 2026 08:53:40 +0000
asID: 63139
IP address blocks: 154.94.112.0/24 maxlen: 24
154.94.113.0/24 maxlen: 24
154.94.114.0/24 maxlen: 24
154.94.115.0/24 maxlen: 24
154.94.116.0/24 maxlen: 24
154.94.117.0/24 maxlen: 24
154.94.118.0/24 maxlen: 24
154.94.119.0/24 maxlen: 24
154.94.120.0/24 maxlen: 24
154.94.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113230 (0x1ba4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 08:53:40 2026 GMT
Not After : Mar 27 08:53:40 2026 GMT
Subject: CN=69982119-c5ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:5f:19:15:5e:a8:b1:46:8d:74:93:1a:5e:f9:
04:f5:06:51:d4:f5:ad:38:ad:2f:b3:64:97:1e:3a:
4e:5c:3a:c0:ad:a4:e3:bd:94:67:e5:61:f3:a9:9e:
08:43:54:b6:c9:9f:db:49:2c:8c:9a:7e:df:a4:97:
84:69:fe:35:70:5c:03:dd:3b:a7:0a:93:96:dd:a9:
51:1e:8f:e9:4d:54:ac:fa:92:d7:87:51:43:b5:e0:
6e:c5:5b:04:e5:b4:0b:29:62:c5:32:bf:cf:31:cc:
4f:ae:97:c8:a4:76:1f:57:3e:ab:1b:be:5a:d7:c7:
9f:f2:4a:9b:ee:06:37:98:96:52:7c:55:f8:69:82:
9e:6e:e4:bd:c8:f7:e1:20:34:b8:8c:9a:dd:82:8f:
c0:5f:60:23:da:88:46:c6:75:e8:f6:b1:82:45:2a:
cf:3c:17:4d:4a:8b:e3:b9:5d:a6:27:72:0f:cc:d2:
0e:cf:3a:68:ab:92:78:25:4c:a3:7b:3d:a2:3c:32:
e1:9c:b2:b8:ac:ab:f6:1d:36:2c:dd:2d:e6:f3:b5:
9b:68:4a:ce:89:f7:c2:f6:57:31:72:48:86:9c:ea:
38:6d:67:34:fa:5f:0b:7b:e5:3d:d1:d5:5a:de:14:
6b:27:e9:17:9d:e8:79:1f:72:25:07:de:d5:ac:0a:
7c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:02:5B:E1:71:BB:71:3D:1B:62:41:FA:67:B5:6F:11:78:AE:E8:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9AF5B0C0E3911F18BC96788DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.112.0-154.94.121.255
Signature Algorithm: sha256WithRSAEncryption
69:f4:81:45:be:92:fd:48:de:d5:77:87:e0:9b:16:a4:58:20:
36:57:42:99:b8:6f:01:57:83:b0:1d:72:69:21:85:14:7b:d1:
22:7b:7c:8a:38:09:09:8e:6a:e2:a4:c1:ee:85:56:62:62:e4:
c7:a9:1e:a7:81:dd:cb:ed:9f:fe:7e:6b:3c:87:2b:4e:96:4f:
ce:33:29:25:e8:45:15:3f:54:c2:6f:6e:92:dc:c3:ee:b2:3e:
d7:af:ec:48:9f:56:70:66:90:5f:a1:56:3b:71:02:79:27:7c:
13:a3:75:5a:be:b4:57:23:aa:18:9c:23:ad:5a:3f:e7:b1:c7:
18:07:17:8c:d0:fb:71:d4:e2:4e:48:4e:51:2c:5a:a6:5f:db:
dc:1b:c2:8d:f4:61:fc:b5:09:62:b2:7a:68:f1:1e:a7:36:25:
df:52:de:46:45:ff:13:fb:db:d0:cb:46:bc:d9:b5:99:5e:1a:
48:42:d2:30:96:a2:9d:d5:c4:fd:cf:d4:23:5a:3d:96:b3:11:
58:26:93:ce:4b:1b:f7:31:6c:ed:ec:59:b0:ee:eb:e7:9f:c3:
4d:a2:be:98:96:1c:c7:58:19:48:15:a9:a4:ca:b9:0e:a4:4f:
58:cf:f1:ee:de:01:56:af:bd:3b:aa:12:93:87:b1:15:40:75:
86:c3:8a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:02 2026 by rpki-client