Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8077398115A11F1989E7CBEDAE4EC9C.roa
File: E8077398115A11F1989E7CBEDAE4EC9C.roa (raw, json)
Hash identifier: 4HiL/eyHzV8xgXm65M17LWGsjcQspCGFMD9ah68FV64=
Subject key identifier: F9:F2:78:07:E6:01:4F:0E:6B:DB:65:96:F8:3C:4B:51:DF:7F:05:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB2E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8077398115A11F1989E7CBEDAE4EC9C.roa
Signing time: Tue 24 Feb 2026 08:29:16 +0000
ROA not before: Tue 24 Feb 2026 08:29:12 +0000
ROA not after: Mon 30 Mar 2026 08:29:12 +0000
asID: 142032
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113454 (0x1bb2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 08:29:12 2026 GMT
Not After : Mar 30 08:29:12 2026 GMT
Subject: CN=699d615c-ff52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a4:e0:e4:b3:f2:08:8a:5a:8f:ad:45:dc:66:
e1:c3:20:d8:62:4d:d9:2f:e5:f5:93:7d:60:e6:32:
07:ce:96:f4:77:76:ea:c0:94:49:f8:08:f5:ed:bb:
55:b2:3e:1c:ef:e4:82:15:00:f6:c3:bb:23:41:a1:
11:02:8a:89:3a:36:44:a6:a2:a7:96:c7:31:b1:ad:
66:46:8b:62:cd:2d:6b:fd:35:c5:3f:35:18:d3:e7:
bd:e9:dc:3f:fd:f5:70:dc:50:d2:09:54:0f:37:53:
2a:e4:cd:e0:73:fd:a9:de:f6:15:bc:06:41:be:53:
3a:ba:f7:fe:0a:8e:35:b5:cd:18:d9:45:16:85:8b:
8e:0c:22:28:b2:10:1f:15:68:e5:42:77:e7:39:c4:
d7:ac:4d:ac:02:3f:dd:2e:ff:a2:a7:e8:9b:57:60:
43:b0:6d:07:a5:4e:c0:21:c1:3e:48:c7:4d:f2:71:
c5:bb:83:46:6c:8e:1e:5c:02:24:a9:59:65:65:a8:
82:76:2e:98:01:78:5f:d4:42:f9:c8:30:05:1e:13:
99:18:1c:f6:ec:d1:f7:99:30:88:2b:e4:ae:8d:f0:
9f:97:96:b5:68:24:60:36:98:3d:31:df:55:7f:fe:
cd:a9:59:5b:20:62:d2:07:91:b4:af:ab:43:d8:07:
5b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F2:78:07:E6:01:4F:0E:6B:DB:65:96:F8:3C:4B:51:DF:7F:05:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8077398115A11F1989E7CBEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:16:00:1e:30:a4:03:4b:00:ea:d4:1e:21:07:6e:52:e1:9a:
52:81:cf:e3:0a:19:28:6e:28:c3:6a:11:41:77:b8:22:5f:5c:
71:5f:b8:56:99:e8:eb:e8:c1:54:2a:69:72:1c:e0:c4:0b:9b:
a6:17:57:8b:ac:16:11:2d:45:60:fc:19:05:72:22:86:d3:de:
0b:db:36:20:1e:69:39:f4:f1:c0:f6:c7:8e:03:30:0b:f0:62:
b7:d0:bc:4d:e4:c8:c8:93:8b:46:6c:fa:f3:4f:b3:57:c3:1f:
ac:44:50:9e:5d:b9:6e:7b:d7:7d:50:27:7a:58:83:13:1f:d1:
3d:63:2a:75:54:6d:74:e6:af:f2:a5:57:1b:c7:dc:1c:be:21:
0e:9e:bc:99:f0:06:aa:dd:69:56:30:0c:e4:e8:9b:31:4f:b4:
3d:e2:66:f2:16:ed:fe:a3:9c:e5:23:15:ec:f0:89:da:06:9e:
26:24:85:b5:6c:29:80:1c:ce:2e:60:d2:0f:be:3f:ef:0f:ff:
b5:87:b8:f8:34:0c:4d:b3:70:b1:b3:64:9e:f6:6c:65:67:86:
1a:bf:c9:aa:30:b5:7b:2f:ac:8c:df:d8:5e:c1:54:36:6d:b9:
15:8c:ec:68:3d:03:47:88:c1:b2:8c:e3:c4:fa:68:ec:f8:00:
95:67:b9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:17:04 2026 by rpki-client