Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE39A116019E11F1BA76A58DDAE4EC9C.roa
File: AE39A116019E11F1BA76A58DDAE4EC9C.roa (raw, json)
Hash identifier: LXbcmSkx7QiT5C05OybJbQiwq2WEFmKvOLMDr6nCRzI=
Subject key identifier: 39:1C:98:88:FF:7C:D0:64:ED:03:91:18:A8:16:B3:FB:C1:91:DD:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B87B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE39A116019E11F1BA76A58DDAE4EC9C.roa
Signing time: Wed 04 Feb 2026 07:54:07 +0000
ROA not before: Wed 04 Feb 2026 07:54:02 +0000
ROA not after: Thu 12 Mar 2026 07:54:02 +0000
asID: 138915
IP address blocks: 154.95.72.0/22 maxlen: 24
154.95.100.0/22 maxlen: 24
154.95.104.0/22 maxlen: 24
154.95.112.0/22 maxlen: 24
154.95.120.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112763 (0x1b87b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 4 07:54:02 2026 GMT
Not After : Mar 12 07:54:02 2026 GMT
Subject: CN=6982fb1f-7329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:90:8a:06:1b:8d:f4:50:89:e3:78:60:2c:c6:
ed:dc:8e:6c:a5:b2:6f:46:a3:9c:a7:f1:58:e0:cf:
fb:e9:7c:0b:90:72:66:47:41:54:7e:a1:b5:63:f1:
e6:72:c7:67:3e:59:94:3b:7f:e2:51:73:e9:86:7a:
40:92:68:98:42:62:aa:c5:75:9d:ba:1c:0a:c8:3b:
c6:ff:bd:00:3b:8c:9f:35:96:c1:6e:aa:63:36:c9:
b4:df:74:1a:38:17:a8:c5:03:c2:40:cd:53:06:de:
e9:ef:a0:f6:30:88:ea:ea:b0:d9:b3:f6:11:95:ba:
9f:23:90:ac:b3:29:ed:e2:76:0b:5c:4c:c7:39:fb:
e6:d2:67:f8:25:66:2f:7b:03:a0:f9:58:0b:a5:3c:
ac:24:53:6b:bc:08:42:4a:6f:1b:11:1b:53:5f:8f:
56:b4:69:d9:fc:9a:2a:95:79:ba:53:d0:54:ab:4f:
17:e7:a7:09:3d:bd:dc:2a:94:fb:bf:bf:8f:38:b6:
51:97:15:fa:c8:12:4b:96:b4:5c:b1:ac:75:b5:18:
0e:50:af:b2:f6:5e:f2:ee:1a:9b:69:04:83:02:01:
7b:00:96:fd:96:11:3d:cc:30:08:de:4e:29:0f:b4:
41:28:c7:a4:c0:33:1a:8b:d3:ff:df:c0:2f:2b:6c:
01:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1C:98:88:FF:7C:D0:64:ED:03:91:18:A8:16:B3:FB:C1:91:DD:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE39A116019E11F1BA76A58DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.72.0/22
154.95.100.0-154.95.107.255
154.95.112.0/22
154.95.120.0/23
Signature Algorithm: sha256WithRSAEncryption
56:84:03:2b:4d:e6:ea:a4:20:26:26:a2:91:e9:f9:a2:86:79:
60:6c:13:2a:e1:84:f4:31:56:88:2b:90:30:66:0a:a9:ea:ef:
4a:b5:c3:77:ae:b7:35:b1:e2:05:43:fc:d9:c5:d0:f1:0b:6c:
c6:b2:11:94:6f:13:51:02:31:59:5b:9b:e9:0c:6b:cf:63:7f:
ce:cd:ff:c0:4b:b9:78:68:cb:d9:d5:0a:de:75:b8:ab:ff:bf:
2f:dd:83:ec:11:53:d3:46:4f:ad:a4:c3:97:58:19:82:e7:b9:
65:ce:f0:6f:69:e9:1c:fd:03:22:7c:c6:cf:c3:46:1e:0e:f7:
15:44:c2:99:91:31:a7:ef:17:7a:f5:ea:4f:50:2a:20:66:a7:
5a:8c:33:c4:ef:45:39:1c:51:76:97:78:8c:c4:55:b2:5a:3c:
4d:7a:d4:f1:30:4b:48:66:aa:a3:78:3c:33:8c:8f:9f:fd:c1:
9a:7b:2a:76:05:c4:a2:bc:47:ab:76:ae:43:bd:1c:67:4a:4f:
f2:8d:40:10:47:ea:4d:fc:85:af:bd:06:53:0f:54:b8:d5:9a:
7e:d5:2f:57:9b:85:b5:01:01:4d:18:66:73:c2:11:3c:e0:30:
82:bc:9c:a8:4f:22:ee:d2:d3:bb:3c:7e:fe:d3:48:ea:27:20:
46:a9:63:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:59:24 2026 by rpki-client