Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B24084A8FC2D11F0A4AF1598DAE4EC9C.roa
File: B24084A8FC2D11F0A4AF1598DAE4EC9C.roa (raw, json)
Hash identifier: 3I1VlfKSg1RymCcX9xV6+bsapcpkgMUhDQZeyxgpDTc=
Subject key identifier: 54:85:B2:FB:E7:6B:2E:26:B5:BB:2F:41:51:A0:F5:F0:CD:C6:A9:BF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B70B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B24084A8FC2D11F0A4AF1598DAE4EC9C.roa
Signing time: Wed 28 Jan 2026 09:42:45 +0000
ROA not before: Wed 28 Jan 2026 09:42:39 +0000
ROA not after: Mon 02 Mar 2026 09:42:39 +0000
asID: 9304
IP address blocks: 154.193.2.0/24 maxlen: 24
154.200.130.0/24 maxlen: 24
154.200.131.0/24 maxlen: 24
154.200.156.0/24 maxlen: 24
154.200.157.0/24 maxlen: 24
154.200.158.0/24 maxlen: 24
154.200.159.0/24 maxlen: 24
154.200.160.0/24 maxlen: 24
154.200.161.0/24 maxlen: 24
154.200.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 02 Mar 2026 09:42:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112395 (0x1b70b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 09:42:39 2026 GMT
Not After : Mar 2 09:42:39 2026 GMT
Subject: CN=6979da14-b5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:65:a1:54:00:22:90:6c:06:c0:97:c7:a8:d1:
53:f5:6a:c6:fa:9d:6d:28:61:68:f7:ca:97:07:dc:
85:58:d6:46:50:fd:17:7d:2e:4a:9a:c3:c0:df:9c:
8a:02:c8:7c:a5:f6:4c:42:a2:40:7d:27:5d:56:eb:
3c:68:1a:35:e5:af:c1:64:18:f8:12:23:ea:26:c1:
8c:e9:85:49:f1:69:37:d8:09:e7:0e:cc:13:7d:5a:
ab:aa:4d:be:08:42:ef:dc:53:dc:40:df:a3:0b:fa:
8b:59:87:ed:e6:f0:b2:d5:88:11:42:ab:8a:6d:39:
a0:09:53:1a:32:14:e4:44:01:b0:6e:c1:9d:15:bf:
d5:b3:71:06:74:3e:e0:36:46:97:a7:02:ba:48:c8:
24:87:22:0d:5f:05:b4:93:a1:1b:b3:4e:46:1a:32:
e9:4a:50:b1:32:b4:d6:5f:b9:d5:eb:41:1f:56:e6:
01:b6:5a:d9:69:7f:23:65:cc:1d:bf:38:f4:b3:90:
5d:d5:d1:a2:82:09:6b:e4:51:0d:d1:0e:f0:80:c0:
40:3e:ab:9c:2a:6e:79:06:58:2b:01:40:30:75:85:
eb:98:39:e6:76:58:7a:ad:af:16:e8:db:f5:91:75:
ac:b9:cd:ba:3f:6d:f2:4a:8e:1c:25:26:f7:e1:62:
08:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:85:B2:FB:E7:6B:2E:26:B5:BB:2F:41:51:A0:F5:F0:CD:C6:A9:BF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B24084A8FC2D11F0A4AF1598DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.2.0/24
154.200.130.0/23
154.200.156.0-154.200.162.255
Signature Algorithm: sha256WithRSAEncryption
09:ce:47:cf:c8:e8:a0:27:92:92:f1:60:1f:b1:ad:0d:a8:cd:
df:71:a7:3e:0d:2b:3a:33:db:d4:45:84:d2:5f:74:a2:00:67:
2b:26:c0:70:46:de:9b:4a:08:00:ef:cc:35:42:c9:29:b6:0e:
93:c9:ff:1f:6e:88:0e:c0:b7:b1:f7:21:be:e2:6b:a6:70:58:
33:22:61:e5:b7:b4:ba:c4:f1:7b:50:a1:31:77:46:6b:2b:a8:
9c:4c:e0:56:04:79:52:55:b8:7f:30:22:b8:41:04:17:0f:9f:
73:8d:9e:83:cc:fb:b0:8d:93:43:17:05:21:e9:80:5e:1d:50:
82:c9:89:a8:be:db:f3:7b:84:83:c7:eb:2f:5d:42:3f:c1:c2:
5b:e1:df:9f:a1:ab:0f:69:e1:62:e4:f0:23:db:26:91:c9:d8:
28:9e:6f:b4:aa:79:84:19:73:75:ad:1d:c7:6e:d7:71:1e:af:
90:c1:54:a4:09:0f:3c:e3:4d:23:cd:38:3d:f8:7e:54:bf:da:
00:f7:75:19:34:45:9a:e9:d3:b8:c4:b8:66:2e:a6:1c:ba:f7:
46:a4:ee:8c:e8:6b:97:e8:69:f8:86:2e:c2:13:95:2f:63:f9:
6a:a2:b1:91:a4:97:c6:e8:60:a5:2e:6f:67:53:64:84:20:8d:
13:69:37:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:18:42 2026 by rpki-client