Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C05589F20E6C11F18596FFBADAE4EC9C.roa
File: C05589F20E6C11F18596FFBADAE4EC9C.roa (raw, json)
Hash identifier: CPkIa7V4cGd7Ab4asri7f9L3vS7Hf0uY0ydO/ijwgug=
Subject key identifier: 65:5F:7B:F4:BD:96:30:AF:4B:F9:E4:A2:FB:24:4B:8E:C0:BB:F6:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA94
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C05589F20E6C11F18596FFBADAE4EC9C.roa
Signing time: Fri 20 Feb 2026 14:59:27 +0000
ROA not before: Fri 20 Feb 2026 14:59:23 +0000
ROA not after: Thu 04 Jun 2026 14:59:23 +0000
asID: 18229
IP address blocks: 154.210.135.0/24 maxlen: 24
154.210.136.0/24 maxlen: 24
154.210.137.0/24 maxlen: 24
154.210.138.0/24 maxlen: 24
154.210.139.0/24 maxlen: 24
154.210.140.0/24 maxlen: 24
154.210.141.0/24 maxlen: 24
154.210.142.0/24 maxlen: 24
154.210.143.0/24 maxlen: 24
154.210.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113300 (0x1ba94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 14:59:23 2026 GMT
Not After : Jun 4 14:59:23 2026 GMT
Subject: CN=699876cf-a765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e2:78:09:01:da:e7:ac:84:77:a2:cb:15:fc:
4b:97:b4:66:10:8d:e9:c3:62:09:e2:01:77:73:17:
19:55:2c:2f:c0:ed:d6:1a:28:28:47:22:1e:5d:d9:
fc:a4:35:b9:0e:eb:e6:14:90:30:32:49:1a:80:cd:
b1:67:eb:cc:0f:b8:24:7f:24:01:d5:9d:88:d2:63:
18:a9:55:f1:cb:49:83:56:47:f1:38:4d:89:96:66:
38:d9:95:8d:68:09:f9:c1:e1:9d:d6:2d:f9:eb:e7:
e0:ed:9b:58:55:84:00:3b:bb:8c:6f:6f:1e:b6:94:
f6:71:7e:6e:88:26:5a:bb:39:e7:48:b3:82:cd:0a:
41:a0:ed:02:42:cb:c9:c9:75:cf:d9:97:00:27:68:
d2:ce:81:a8:71:4e:93:c0:97:a8:09:2c:4d:48:42:
d7:bd:a8:21:7f:b1:6e:cf:f6:62:4a:b9:6e:94:d0:
8c:37:3c:c6:c4:f2:21:f9:b3:7c:b1:d1:53:86:90:
3f:d9:1f:f1:db:7f:c5:3f:1e:fb:15:31:26:fa:e3:
e1:98:62:43:4b:a6:94:75:18:ea:86:b5:a4:7e:8d:
2d:dd:87:c5:33:4b:a6:e6:57:41:80:a5:d9:1c:cb:
27:39:91:ea:db:fe:29:5f:8c:d9:79:48:33:80:5f:
c5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:5F:7B:F4:BD:96:30:AF:4B:F9:E4:A2:FB:24:4B:8E:C0:BB:F6:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C05589F20E6C11F18596FFBADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.135.0-154.210.144.255
Signature Algorithm: sha256WithRSAEncryption
4e:54:3a:77:fe:a9:28:78:6b:e8:e9:77:d6:4a:af:ca:49:fe:
7f:0d:0b:21:54:9b:33:f0:af:51:b8:f6:29:55:f5:d3:e0:19:
0c:c1:b0:1e:b2:c9:81:c5:d5:53:46:bb:65:9a:2a:47:7d:93:
b9:7b:67:7e:d8:dc:fd:31:16:06:dd:3d:61:63:a6:2b:e1:cb:
6a:34:19:de:34:3a:52:38:b9:af:d4:49:46:37:0e:6e:56:c7:
ba:fb:28:04:e6:b8:49:e5:fe:70:6b:c9:f3:87:2e:df:b0:6b:
bc:41:fa:e6:90:9f:68:d6:ad:3b:ca:2f:af:fe:5d:46:9b:38:
a1:32:5e:27:8a:ef:09:51:2e:02:bc:cf:8c:14:1b:b4:f3:78:
78:dd:c3:9e:dd:14:0c:2a:71:8e:bf:da:88:86:71:74:a3:81:
8d:7a:12:ee:de:15:af:e8:5f:e4:74:a1:05:a9:57:43:37:44:
10:b4:5a:87:29:5f:ca:d9:10:11:21:df:8e:3b:dc:f1:b2:ea:
1f:fd:3c:ef:ef:f4:4c:86:43:1e:a4:8c:72:71:f0:52:79:ed:
6d:20:bf:2a:78:81:e4:76:d0:4b:75:fd:0e:4c:1e:02:ca:64:
52:fa:b7:a0:f8:67:1c:48:5e:01:95:00:c5:0a:36:54:d5:32:
01:5c:f9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:16:44 2026 by rpki-client