Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C37CA268155711F18AE97EB5DAE4EC9C.roa
File: C37CA268155711F18AE97EB5DAE4EC9C.roa (raw, json)
Hash identifier: teRw7sKATMbnJeXcFTfNkTrPurDFaIj65cXtXCWHY1s=
Subject key identifier: 5E:D8:41:88:53:F4:83:D3:40:CD:FD:44:1E:20:3D:12:6B:31:6D:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BC76
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C37CA268155711F18AE97EB5DAE4EC9C.roa
Signing time: Sun 01 Mar 2026 10:16:51 +0000
ROA not before: Sun 01 Mar 2026 10:16:46 +0000
ROA not after: Sun 05 Apr 2026 10:16:46 +0000
asID: 49505
IP address blocks: 154.209.218.0/24 maxlen: 24
154.209.219.0/24 maxlen: 24
154.209.220.0/24 maxlen: 24
154.209.221.0/24 maxlen: 24
154.209.222.0/24 maxlen: 24
154.209.223.0/24 maxlen: 24
154.211.9.0/24 maxlen: 24
154.211.10.0/24 maxlen: 24
154.211.11.0/24 maxlen: 24
154.211.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113782 (0x1bc76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 10:16:46 2026 GMT
Not After : Apr 5 10:16:46 2026 GMT
Subject: CN=69a41213-db40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:12:e2:00:d0:1e:73:96:6e:65:8f:f9:af:
a7:fb:d8:9c:b3:46:aa:16:51:e4:96:aa:0f:e2:87:
7e:a7:b0:22:da:46:72:4c:97:fd:52:b6:e9:e8:78:
ab:4c:0a:5f:7f:bb:4f:46:d9:0c:b3:2a:99:f2:8e:
2e:1d:6f:d7:e5:8a:eb:79:6f:a1:26:59:ec:58:a6:
3e:7a:c4:c6:41:60:6e:2b:4c:72:99:57:7c:9f:2b:
ba:56:17:83:e9:09:4e:39:14:f3:c9:a5:14:b4:e8:
e3:13:67:dc:05:3c:a6:34:17:27:89:34:85:f7:25:
22:5a:b8:cc:8e:7c:f6:9b:a6:3f:0a:12:1c:66:b0:
4e:61:a0:cf:8f:31:39:77:1c:48:3a:bc:dc:23:4e:
a1:b3:14:a7:cf:1a:55:14:60:8f:0d:bb:e3:47:0d:
af:e5:0e:28:f9:07:4d:27:fe:9d:61:0e:e3:12:f2:
fb:3d:41:74:ee:91:89:dc:7b:d5:62:b9:ef:2a:c4:
ef:fa:58:77:42:85:e0:03:58:d8:a0:ec:69:b0:84:
68:ab:fc:2e:18:b3:dd:19:46:05:43:a3:a0:0f:db:
6b:fe:c1:33:b7:36:8a:6c:83:a5:51:ca:8d:37:05:
f9:f3:3b:ef:78:5b:d9:90:da:f9:79:2e:9e:75:44:
95:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D8:41:88:53:F4:83:D3:40:CD:FD:44:1E:20:3D:12:6B:31:6D:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C37CA268155711F18AE97EB5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.218.0-154.209.223.255
154.211.9.0-154.211.11.255
154.211.16.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:ac:73:22:48:6f:f7:98:58:2d:4a:19:dd:46:be:28:11:48:
dc:f9:3b:7b:08:ab:75:cf:17:a8:c4:22:46:88:c6:86:c4:65:
9f:dd:56:06:1e:bd:56:8f:96:3f:c9:a3:a1:30:02:b4:a2:f5:
4d:bf:0d:70:c3:64:71:10:06:4f:8b:5e:9b:57:de:f9:40:1e:
44:72:65:40:f6:c3:53:dd:b0:fb:6b:19:0e:6a:b8:83:4a:a2:
ca:ad:ce:77:2f:d9:a9:17:1c:76:1d:71:46:ab:a7:fc:08:07:
60:96:f3:c6:8c:bf:6b:1e:c2:d8:05:05:a2:ee:e1:c9:68:ac:
e2:80:33:d9:c3:ae:5e:1a:05:b2:49:1e:6a:18:1c:29:76:94:
e2:38:63:5d:d4:15:69:7b:35:15:29:6f:75:25:bd:2f:c1:5a:
12:34:b8:b1:e6:12:cc:1e:4b:4c:d3:f1:e9:2d:fa:eb:70:1a:
5d:64:43:1a:88:1a:37:26:0c:35:cc:e3:74:02:41:fd:77:ae:
b6:2b:0e:9b:7d:7f:27:bb:3a:0e:38:17:01:f2:09:e3:e4:3d:
db:c9:9f:33:27:90:f7:f9:4d:40:f5:67:b3:98:30:80:0b:7f:
60:ca:e8:dc:5b:cf:bf:b0:56:db:27:34:c2:9d:2f:83:f0:67:
bb:b1:94:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:08:34 2026 by rpki-client