Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6D32C42116911F1B1CA8598DAE4EC9C.roa
File: E6D32C42116911F1B1CA8598DAE4EC9C.roa (raw, json)
Hash identifier: fAIUjWBZO7H+aTw7DWldibLdFCRa3u76+K37e5hfdgo=
Subject key identifier: 13:0A:61:61:F6:CC:90:F9:44:1D:6C:D0:03:44:E4:DB:0F:B9:85:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB3C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6D32C42116911F1B1CA8598DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 10:16:37 +0000
ROA not before: Tue 24 Feb 2026 10:16:33 +0000
ROA not after: Tue 31 Mar 2026 10:16:33 +0000
asID: 62240
IP address blocks: 154.195.108.0/24 maxlen: 24
154.195.111.0/24 maxlen: 24
154.195.112.0/24 maxlen: 24
154.195.120.0/24 maxlen: 24
154.195.124.0/24 maxlen: 24
154.195.136.0/24 maxlen: 24
154.195.137.0/24 maxlen: 24
154.195.138.0/24 maxlen: 24
154.195.140.0/24 maxlen: 24
154.196.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113468 (0x1bb3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 10:16:33 2026 GMT
Not After : Mar 31 10:16:33 2026 GMT
Subject: CN=699d7a85-d261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b0:38:fc:66:46:54:d9:00:98:dc:92:a0:73:
e2:45:9b:3b:32:e1:d9:6c:10:67:47:cd:30:8e:3c:
bc:11:5f:7d:c7:a8:39:e6:ae:6d:92:c1:3d:40:4c:
03:a2:7a:93:2c:9b:51:a9:f6:71:ff:40:bd:e5:2d:
2d:69:c9:c0:b7:a2:91:be:cb:1d:da:0d:09:82:1c:
f6:e9:ff:ee:4f:17:52:d0:c6:cc:4f:53:14:0c:dc:
ed:f8:17:e9:ce:ff:7d:12:ce:b8:9d:06:ed:d3:19:
df:36:c5:e1:0c:cd:8c:14:00:da:52:6f:c7:03:23:
05:7e:34:f5:24:29:b9:65:19:df:cd:f8:20:d2:a4:
e1:67:c5:1d:e8:ef:58:61:e1:47:09:66:96:e4:0d:
87:c2:fd:ed:69:5a:4a:cb:99:69:ed:b3:f7:64:5a:
1a:e5:64:32:bf:79:79:58:89:66:d4:8a:ac:05:82:
26:ec:ac:dd:d7:c5:27:8a:0e:0c:e5:b6:4e:df:df:
07:ba:7e:db:c3:5b:d9:36:42:55:a2:63:9f:11:ff:
bf:28:9b:26:96:24:00:8e:00:3c:ce:92:fb:b5:e0:
ef:48:67:b2:fc:c1:3a:c9:83:07:f6:88:10:e7:ca:
49:68:6b:0e:62:c1:75:c1:37:8a:6d:c8:c2:bc:6d:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0A:61:61:F6:CC:90:F9:44:1D:6C:D0:03:44:E4:DB:0F:B9:85:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6D32C42116911F1B1CA8598DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.108.0/24
154.195.111.0-154.195.112.255
154.195.120.0/24
154.195.124.0/24
154.195.136.0-154.195.138.255
154.195.140.0/24
154.196.91.0/24
Signature Algorithm: sha256WithRSAEncryption
20:21:07:ae:e9:68:6f:04:e1:1f:ab:16:0d:f8:11:bf:eb:5d:
f2:06:54:7d:18:26:41:e5:b7:a3:cb:04:a0:1f:13:82:0f:67:
29:21:16:d8:12:81:a0:3f:46:cb:55:36:b4:c8:9f:07:75:08:
f7:28:e1:41:2a:04:3a:8a:04:dc:96:b9:af:ed:e0:94:67:fb:
c8:b6:f5:ce:19:2f:5d:09:50:bc:e3:d7:ea:79:57:9e:db:6a:
82:2a:15:22:32:c4:ec:e2:88:ef:d2:bf:d3:b2:79:4c:9e:ea:
bb:5a:96:01:63:1a:c7:a1:ad:a7:9f:5a:a3:56:a8:31:56:33:
fb:23:95:d7:dd:24:ef:48:dd:4b:73:98:29:49:cd:55:5c:4f:
ef:49:4c:7e:b4:70:89:e7:bc:88:72:63:72:42:2f:b5:db:c9:
f4:5d:01:41:9d:60:49:c0:14:fe:c7:ba:53:43:52:fa:77:89:
87:2a:a7:09:6f:31:b8:bc:34:f5:8d:dd:52:23:4f:6b:6f:1c:
7a:f2:ae:06:bc:12:dc:4b:23:9a:8b:32:c3:a9:c2:4f:1a:84:
56:70:09:5d:e8:33:ad:9c:00:1d:24:b9:45:75:b5:a9:1d:b4:
5a:bf:05:72:3a:fa:0e:2a:4f:60:56:9b:88:99:f9:e5:ad:ac:
90:10:7c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:52:15 2026 by rpki-client