Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5BABD88FB5B11F0A0EC9A8FDAE4EC9C.roa
File: B5BABD88FB5B11F0A0EC9A8FDAE4EC9C.roa (raw, json)
Hash identifier: erWPQkQC9bT/sBMieoKJtCCBNYBwiMVCY3Rz3iWk6S4=
Subject key identifier: A8:40:C5:7A:AE:B7:14:8D:64:3F:E5:4C:78:08:0B:2C:41:E4:35:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B6EC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5BABD88FB5B11F0A0EC9A8FDAE4EC9C.roa
Signing time: Tue 27 Jan 2026 08:39:36 +0000
ROA not before: Tue 27 Jan 2026 08:39:31 +0000
ROA not after: Thu 05 Mar 2026 08:39:31 +0000
asID: 48678
IP address blocks: 154.82.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112364 (0x1b6ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 08:39:31 2026 GMT
Not After : Mar 5 08:39:31 2026 GMT
Subject: CN=697879c8-dc69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8e:98:fa:68:5f:9a:6e:6b:0c:d9:a8:f2:2f:
0d:8d:15:7e:16:89:e2:37:76:0d:63:7a:8e:be:b7:
c5:f0:04:b9:30:9a:4e:2d:96:da:3d:1d:7a:d7:eb:
9e:6b:09:a7:64:b0:c6:f6:e2:a9:12:8c:37:78:a1:
6a:b1:6b:68:ca:97:9e:17:ae:10:a4:ad:d7:34:8b:
79:14:89:57:5a:0a:eb:4f:4a:fc:70:3f:b4:c2:1f:
00:31:c9:ae:9e:67:73:66:a5:1f:29:e9:62:19:e1:
24:dc:66:6a:71:cc:de:32:18:66:c8:44:51:37:89:
e1:52:9b:40:42:d5:d4:24:2d:ff:64:7e:12:6d:a3:
65:4a:e6:f1:89:dd:93:cc:3b:8e:2a:87:3b:9f:9a:
2c:3e:f9:5b:b9:99:68:69:55:a2:22:c9:4a:d1:d5:
52:0f:0b:95:2a:00:a1:74:a8:0b:ca:43:42:47:76:
5d:3c:76:3d:6a:66:50:59:2e:83:8d:76:8e:98:9f:
ab:8c:e6:89:1c:36:3a:cb:4a:9a:2d:ed:4d:83:2f:
b4:fb:0e:02:41:5e:1c:c6:11:80:49:a7:99:da:23:
35:72:7f:df:00:c2:a7:45:d9:61:7b:3c:49:aa:d9:
97:75:62:20:fa:7e:97:2a:a5:34:7f:af:1b:a2:d1:
2f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:40:C5:7A:AE:B7:14:8D:64:3F:E5:4C:78:08:0B:2C:41:E4:35:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5BABD88FB5B11F0A0EC9A8FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.24.0/24
Signature Algorithm: sha256WithRSAEncryption
25:45:83:12:6f:4f:fb:fa:65:30:f4:22:68:52:27:a2:44:69:
83:ad:bc:51:b3:e8:56:ae:22:9e:5d:57:6c:51:a6:f3:7a:38:
ee:ca:dd:fc:62:1d:e9:17:73:f3:15:c4:e8:60:64:60:24:26:
26:69:56:cf:22:bc:01:e9:da:d1:ed:09:e4:ba:de:b1:a9:f3:
eb:84:af:d3:ed:44:f8:4c:46:0d:d7:29:e8:dd:47:80:ff:98:
b9:da:44:15:72:ee:08:c3:5b:df:59:2c:ab:6a:83:15:2a:06:
e3:44:0e:de:7f:d2:5b:25:f5:36:42:46:27:07:9d:92:16:26:
41:71:7a:a1:cc:19:2a:0a:ba:70:ac:04:5c:55:fe:9c:6a:a0:
76:19:d3:0c:39:0b:fb:10:ce:bd:65:55:c8:91:eb:69:d7:6a:
7b:4a:76:77:45:90:62:14:94:5b:97:20:27:b5:9d:38:23:15:
02:bb:88:18:c7:5c:5c:79:83:4a:b1:6d:ce:d8:98:56:89:a6:
67:c2:1f:aa:db:08:34:e0:3e:e0:68:aa:65:3f:70:93:78:b8:
c7:aa:af:c6:2b:5d:d3:f5:c5:fb:c2:fa:9f:62:9d:f5:cd:93:
6f:a5:d2:7a:87:39:0f:d4:f2:3b:b9:d3:91:a0:a0:92:cb:53:
ee:59:5a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:59:12 2026 by rpki-client