Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B70E47B2108811F18D3C6AB7DAE4EC9C.roa
File: B70E47B2108811F18D3C6AB7DAE4EC9C.roa (raw, json)
Hash identifier: cVLP/HnAjaazE2yixPBqi6ZTOXAwvpqW7LapHZpBMfw=
Subject key identifier: 99:46:78:04:CA:0C:E0:6D:45:FB:53:1A:B5:3D:08:A0:09:AE:51:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB13
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B70E47B2108811F18D3C6AB7DAE4EC9C.roa
Signing time: Mon 23 Feb 2026 07:24:40 +0000
ROA not before: Mon 23 Feb 2026 07:24:36 +0000
ROA not after: Thu 05 Mar 2026 07:24:36 +0000
asID: 32043
IP address blocks: 154.197.104.0/22 maxlen: 24
154.200.22.0/24 maxlen: 24
154.200.38.0/23 maxlen: 24
154.200.40.0/24 maxlen: 24
154.200.47.0/24 maxlen: 24
154.200.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113427 (0x1bb13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 23 07:24:36 2026 GMT
Not After : Mar 5 07:24:36 2026 GMT
Subject: CN=699c00b8-7ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c0:0f:ab:cc:1b:1b:c2:4c:21:64:e1:b2:19:
c8:ff:f0:e5:48:8f:a6:95:7e:35:72:5c:e6:82:27:
d3:cd:32:3b:94:72:ac:98:98:bc:b7:42:7b:d1:37:
01:10:83:48:3e:60:42:22:7b:7a:2b:68:30:61:9b:
e9:71:c8:1f:87:89:3a:bd:ff:79:28:23:37:9a:01:
2d:c2:ab:4f:ac:fb:76:dd:67:76:9b:9d:72:0a:f7:
7a:d4:d3:6e:e7:02:90:96:8e:64:19:42:43:77:d7:
63:a7:a0:07:9d:f4:a9:7c:9b:9a:d0:79:64:2d:25:
80:9a:b2:44:f6:3c:d8:1c:33:da:00:1a:84:8f:7b:
8d:a0:f6:db:1b:45:58:43:88:a3:4b:1b:98:eb:59:
a0:ab:5a:d3:2e:df:b3:73:ab:fb:6c:25:13:98:e6:
08:cd:98:24:af:72:51:92:ae:62:ff:3f:96:fc:93:
3a:bc:aa:26:52:4b:4b:85:5a:88:b6:a3:a3:de:ce:
95:e4:6a:6a:4a:1a:17:87:af:c3:87:10:a0:7c:a0:
3c:f2:4a:72:02:f9:8b:0d:d5:e2:04:71:0b:ef:4b:
3b:27:81:c1:6a:16:c8:36:2f:bf:48:58:e5:e8:b7:
f7:00:5b:ef:55:16:bf:ae:86:b3:3d:21:af:d2:e6:
b0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:46:78:04:CA:0C:E0:6D:45:FB:53:1A:B5:3D:08:A0:09:AE:51:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B70E47B2108811F18D3C6AB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.104.0/22
154.200.22.0/24
154.200.38.0-154.200.40.255
154.200.47.0/24
154.200.110.0/24
Signature Algorithm: sha256WithRSAEncryption
50:aa:d7:05:7d:ca:b8:e8:2f:4e:40:ac:b9:03:fa:bd:03:13:
2d:db:5a:d3:ed:73:3c:e7:8d:67:19:64:42:31:83:f6:e7:dc:
bb:92:0b:06:22:b6:09:e5:26:cd:b7:76:ce:78:3e:e8:d7:fc:
52:d0:45:ff:47:b1:10:95:f9:4a:bf:e5:44:a9:3d:91:04:ef:
37:7c:80:dc:6d:14:28:42:7f:48:d0:30:b7:cf:af:6a:52:0c:
a7:6b:1a:49:d5:41:fe:17:51:a8:fc:5a:af:ca:00:df:ec:ba:
46:14:83:7b:7d:be:23:9e:92:41:c5:2b:e3:bc:77:f7:a0:ad:
3b:ff:44:f9:36:d8:7b:79:5d:02:75:fc:5d:f9:a8:07:00:88:
b9:3a:15:3a:9e:c8:ab:67:39:c6:0c:22:07:44:51:c0:71:3e:
5a:ef:f0:9a:c3:ad:2f:66:3d:9b:35:38:50:51:b6:7d:16:af:
5b:f0:a5:81:7a:41:59:ac:88:33:98:7f:78:9f:45:e4:9e:c7:
40:cd:3c:d7:f8:c1:6e:ff:9c:a8:99:a5:e5:c2:64:3e:60:a0:
d8:3c:c5:6d:b2:59:4e:f8:8e:01:53:3f:cd:02:e2:80:00:9b:
c1:80:8b:b7:86:fa:bc:95:cf:fe:34:e5:b8:94:45:ae:75:47:
27:cd:c1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:51:07 2026 by rpki-client