Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D170F1560E3811F1B70B4584DAE4EC9C.roa
File: D170F1560E3811F1B70B4584DAE4EC9C.roa (raw, json)
Hash identifier: HqvlwG1RmuvLkg9mivRDkmz52ncZ36rG2V1ApiVVIzk=
Subject key identifier: E7:08:2E:03:3B:46:47:62:50:90:70:B2:18:3D:1C:EE:BE:A5:3A:8A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA4C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D170F1560E3811F1B70B4584DAE4EC9C.roa
Signing time: Fri 20 Feb 2026 08:47:42 +0000
ROA not before: Fri 20 Feb 2026 08:47:33 +0000
ROA not after: Fri 27 Mar 2026 08:47:33 +0000
asID: 63139
IP address blocks: 154.93.77.0/24 maxlen: 24
154.93.78.0/24 maxlen: 24
154.93.79.0/24 maxlen: 24
154.93.80.0/24 maxlen: 24
154.93.81.0/24 maxlen: 24
154.93.82.0/24 maxlen: 24
154.93.83.0/24 maxlen: 24
154.93.95.0/24 maxlen: 24
154.93.123.0/24 maxlen: 24
154.94.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113228 (0x1ba4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 08:47:33 2026 GMT
Not After : Mar 27 08:47:33 2026 GMT
Subject: CN=69981fae-5227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c7:1a:56:aa:a1:4e:a7:a3:19:16:8c:e6:52:
ba:52:0b:cb:6a:30:8f:c5:5c:f4:b0:20:58:75:71:
67:22:fd:66:a5:b5:87:5e:a6:68:7b:3d:43:e0:62:
57:ab:d7:dc:4e:5f:9d:32:53:6f:b6:15:28:67:a7:
21:80:bf:41:a4:52:fb:8a:03:56:c3:ee:63:de:e8:
68:a2:4d:dc:0c:28:95:e8:ca:25:36:97:0e:b3:db:
bb:68:e1:c6:5a:fe:2f:e9:35:b7:2a:75:57:ae:ce:
30:50:61:06:09:26:ba:17:93:7b:c1:47:dd:1f:8a:
fc:8e:48:1c:27:e9:7d:ad:d6:1a:31:e6:46:0e:08:
eb:de:d5:29:eb:a1:ab:3b:95:67:ce:10:45:54:88:
8a:35:cd:1a:f2:c6:83:60:0a:3a:49:27:6c:0f:c9:
ae:e1:f1:d0:20:3a:92:f0:e0:9a:0b:35:66:5b:58:
74:6e:62:55:97:5a:b3:43:13:7a:d7:46:33:06:39:
35:d3:c4:26:db:5c:7c:0f:ed:6c:ec:68:21:07:6b:
27:ba:51:c5:9f:38:1f:48:e2:9a:24:29:e3:50:94:
e1:42:8f:e9:e6:09:25:9e:9d:eb:ba:54:74:8b:95:
82:8c:85:d8:94:91:82:a7:83:43:6a:e2:46:15:00:
52:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:08:2E:03:3B:46:47:62:50:90:70:B2:18:3D:1C:EE:BE:A5:3A:8A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D170F1560E3811F1B70B4584DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.77.0-154.93.83.255
154.93.95.0/24
154.93.123.0/24
154.94.111.0/24
Signature Algorithm: sha256WithRSAEncryption
79:31:97:03:7c:73:a9:ac:66:38:3c:22:20:bb:4d:ff:3f:5c:
2d:d3:1e:15:a5:2e:3f:8c:77:a9:50:c0:ed:82:f4:40:de:b9:
93:03:32:89:3f:a5:ae:f2:24:52:f7:3d:74:cd:6e:d8:c5:7e:
b3:8c:4e:89:13:fd:78:49:af:4c:9f:39:7b:10:dc:75:b9:53:
5a:57:80:76:be:fc:cc:6f:45:50:c6:14:09:1b:c5:6f:e3:6e:
2b:93:c7:90:8e:99:0b:8a:e5:a6:ba:57:6a:0c:df:c9:6a:b9:
68:db:ea:2d:b8:ae:74:82:5b:31:0b:88:7b:20:bc:c3:79:f9:
53:00:df:5c:34:03:fc:33:6f:e6:ad:e9:d7:cf:46:8c:c2:83:
c3:a9:44:37:16:79:ed:1e:7c:01:e8:7d:f0:9f:3c:ed:33:2a:
34:8c:c6:5c:1e:f7:b2:5b:a2:63:d1:a8:de:9f:c4:36:65:5e:
20:f5:e0:4c:ab:86:fd:a4:58:dc:42:34:2a:0d:b1:96:d6:9a:
e1:9a:eb:ea:93:42:b8:00:1f:53:67:b0:36:ac:de:e5:cc:9e:
40:f8:3d:cc:fb:c3:21:70:f8:6a:e1:13:fc:a0:e5:05:f0:17:
a4:55:e8:b1:31:ae:a0:92:4e:c9:14:03:25:d0:15:e9:73:2f:
3a:ed:d9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:30 2026 by rpki-client