Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9493B66115C11F198FEF0C8DAE4EC9C.roa
File: B9493B66115C11F198FEF0C8DAE4EC9C.roa (raw, json)
Hash identifier: n94pFmeDaRctnNrlbp0wuvXFLokfgy5N1HFXMZCBMig=
Subject key identifier: D4:AE:2A:5D:EA:AE:9B:1B:5B:D1:8A:1D:4F:DA:3F:8B:B4:7C:E9:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB34
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9493B66115C11F198FEF0C8DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 08:42:17 +0000
ROA not before: Tue 24 Feb 2026 08:42:13 +0000
ROA not after: Mon 30 Mar 2026 08:42:13 +0000
asID: 328608
IP address blocks: 154.91.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113460 (0x1bb34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 08:42:13 2026 GMT
Not After : Mar 30 08:42:13 2026 GMT
Subject: CN=699d6469-bbb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:c9:85:8b:60:1a:db:b8:b6:18:da:9e:d1:df:
05:bc:3b:6e:77:67:95:29:a8:77:2b:0e:ab:89:4a:
41:a0:ad:93:02:3a:22:86:5f:90:67:85:d1:12:26:
46:66:98:44:81:fd:49:29:ee:cc:09:01:0c:3f:2d:
ed:ba:ed:78:1b:9f:c0:e5:fa:a6:21:d4:2d:21:40:
d0:ad:d0:3f:ce:ef:f7:e7:c5:d2:e3:5b:b5:39:9a:
91:0b:a7:47:24:27:a7:c3:35:74:a6:36:80:2d:10:
51:83:40:c1:cb:72:4e:65:d1:12:ef:1d:a0:4e:48:
6e:9f:8e:93:b9:cb:0b:f2:02:0c:cf:77:e7:49:6c:
f7:82:bc:20:b5:03:f3:1c:e7:3a:d5:3b:8c:18:a8:
9a:d5:94:54:1a:a3:93:a8:12:5b:26:66:85:f9:7d:
44:6e:65:b5:2c:3e:23:17:e1:32:ac:06:cc:89:f6:
f4:18:d9:0d:2a:30:c4:c0:3e:cb:68:96:54:e7:a4:
8e:fb:2c:f7:06:8b:7d:67:2c:b6:19:73:10:a7:71:
66:83:f4:af:a4:95:ec:a4:92:4f:e6:b5:a9:d0:c4:
da:89:b2:8f:15:a5:fc:0f:a5:7b:2f:9e:5a:b8:53:
e3:d1:e2:81:10:65:d0:30:38:d7:10:4e:a0:67:28:
b7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AE:2A:5D:EA:AE:9B:1B:5B:D1:8A:1D:4F:DA:3F:8B:B4:7C:E9:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9493B66115C11F198FEF0C8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.37.0/24
Signature Algorithm: sha256WithRSAEncryption
75:6c:f7:2d:07:a4:40:a3:47:29:79:69:c2:fb:d5:43:fb:08:
4c:e0:23:67:91:de:26:63:2e:e5:40:60:eb:de:10:46:da:c5:
a6:dd:cd:63:9f:6b:8a:10:11:49:2d:68:65:e3:eb:67:57:96:
f5:61:1d:99:a8:26:bd:f1:c3:f8:3d:c6:32:de:6d:0d:36:47:
be:e8:fe:56:af:cc:1b:a8:00:1d:9c:fe:2c:05:7d:f2:31:08:
85:ea:d6:78:16:79:8c:4f:43:de:2f:25:3b:e3:5d:d4:31:b7:
5a:aa:99:9b:aa:ba:40:67:55:65:19:54:72:bc:44:01:ad:3c:
27:20:97:b1:6a:69:65:b9:ba:76:83:d6:da:0e:aa:81:2f:77:
1a:a1:92:9b:42:fe:1f:0b:6e:0b:3f:c5:4d:ca:4c:5d:35:31:
6e:1d:ea:fa:38:bc:27:51:b8:d6:b1:a6:88:4d:e1:0a:60:de:
5b:d0:35:c7:e1:6b:1f:f7:d6:f3:2d:f4:ca:bc:7a:8d:72:a2:
dc:72:71:a0:2e:bb:0c:8c:72:64:ae:c1:22:59:bc:a7:5b:65:
69:0d:b0:01:c1:ab:f8:f8:54:69:05:a4:fd:42:e7:e2:df:e1:
bf:80:5c:e9:9a:88:f6:35:ac:93:d9:e6:15:40:58:82:e5:f9:
14:1c:ab:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:34:28 2026 by rpki-client