Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EABE7B8E0F0911F1BBE1FA87DAE4EC9C.roa
File: EABE7B8E0F0911F1BBE1FA87DAE4EC9C.roa (raw, json)
Hash identifier: EHG/DG/mvLxHxZSQsshnklHMV8ZMK+1puKnQyQ+twGU=
Subject key identifier: 19:80:ED:8B:20:8C:9E:95:AE:EB:B9:B6:D3:7F:2B:D5:C3:3B:ED:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BAE4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EABE7B8E0F0911F1BBE1FA87DAE4EC9C.roa
Signing time: Sat 21 Feb 2026 09:44:29 +0000
ROA not before: Sat 21 Feb 2026 09:44:25 +0000
ROA not after: Tue 24 Mar 2026 09:44:25 +0000
asID: 58931
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113380 (0x1bae4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 21 09:44:25 2026 GMT
Not After : Mar 24 09:44:25 2026 GMT
Subject: CN=69997e7d-20b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:20:74:d3:71:59:37:54:a0:c0:38:62:06:
0c:92:48:49:2c:75:f7:f5:ae:cc:30:58:21:21:f6:
21:1a:c2:e1:25:a0:5b:8d:0d:79:e0:a2:d7:95:cb:
47:ea:73:16:38:7c:69:47:32:71:77:29:6f:7b:78:
6b:69:7f:9b:76:aa:1f:d3:78:cc:5e:15:9b:cb:40:
18:82:4b:1a:d9:47:33:5a:2a:70:80:8c:1b:0a:9a:
82:24:b5:20:cc:e3:e1:5a:2b:77:8d:18:0d:00:09:
a2:23:05:2c:f0:dc:f8:70:96:3f:84:8a:7d:0c:6b:
36:60:09:08:32:3a:4c:53:c4:bf:2e:75:5e:7f:b7:
90:f5:53:ab:f4:d4:2e:9b:fe:17:9c:f2:92:0f:1a:
6f:24:df:b6:32:f8:a6:63:e2:0d:f6:30:b9:00:72:
45:cc:cc:37:e4:1a:f7:9c:b7:23:37:9f:89:5f:59:
67:74:49:2d:54:58:63:39:d4:62:36:8d:87:88:1a:
03:00:1b:e1:f4:67:16:68:ec:f8:86:ae:3e:8e:a3:
a3:b5:1a:f2:13:00:8d:20:94:24:99:9a:4b:c6:56:
be:aa:c1:59:d9:f7:d7:45:43:50:a1:e9:5d:49:65:
46:5f:ab:bf:1c:8d:3f:89:38:9c:ab:26:8a:97:51:
0a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:80:ED:8B:20:8C:9E:95:AE:EB:B9:B6:D3:7F:2B:D5:C3:3B:ED:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EABE7B8E0F0911F1BBE1FA87DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:1e:96:2e:a0:11:58:91:f1:bb:38:85:08:c8:49:14:a0:9e:
92:39:76:01:20:48:48:3a:cd:2c:01:6c:c9:ee:56:38:b5:93:
4e:a1:ba:45:88:c2:87:02:c9:b0:2c:9e:c2:99:03:e7:ef:2b:
76:b5:b3:31:97:0d:41:64:9c:3e:63:65:36:05:7b:5a:e9:1b:
10:2b:e9:35:bb:21:37:30:33:ca:56:1a:e8:70:c1:e3:f6:01:
6f:cc:2b:40:fc:45:25:40:01:06:f1:f0:0c:b7:da:d3:39:ae:
c5:cd:ce:20:8b:4f:12:03:df:85:bd:72:9f:93:f7:74:2a:5a:
6b:f2:12:b0:8e:ee:20:49:ed:46:10:ed:a0:fb:7c:15:63:a6:
72:dc:60:1c:bb:9b:4b:95:e1:ff:72:14:dd:3b:09:af:1a:9c:
4a:a4:ce:69:e0:f9:f4:83:72:14:13:13:f1:6d:03:34:da:b8:
ea:ce:e4:f3:f8:9e:10:80:85:70:3c:b4:04:a6:91:73:8e:52:
9a:9c:08:79:48:e1:6c:e3:eb:9b:04:94:88:02:ff:66:3e:07:
0e:c8:67:1b:07:44:68:ff:9f:b1:5c:23:48:f9:11:fd:4e:d0:
55:04:06:84:71:47:4d:04:22:c6:3a:dc:01:c4:fa:68:62:d9:
b2:fe:09:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:46 2026 by rpki-client