Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF22B1A6117811F1856E95F1DAE4EC9C.roa
File: EF22B1A6117811F1856E95F1DAE4EC9C.roa (raw, json)
Hash identifier: abhh3Vz9qro4aiVmUqeytbO93I4tDmetAp+T1tVSO8k=
Subject key identifier: 98:09:77:58:30:03:C8:4E:D8:B2:FC:45:45:F6:64:41:6A:D5:96:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF22B1A6117811F1856E95F1DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 12:04:13 +0000
ROA not before: Tue 24 Feb 2026 12:04:08 +0000
ROA not after: Tue 31 Mar 2026 12:04:08 +0000
asID: 62240
IP address blocks: 154.194.72.0/24 maxlen: 24
154.196.23.0/24 maxlen: 24
154.196.24.0/24 maxlen: 24
154.196.25.0/24 maxlen: 24
154.196.26.0/24 maxlen: 24
154.196.27.0/24 maxlen: 24
154.196.28.0/24 maxlen: 24
154.196.51.0/24 maxlen: 24
154.196.52.0/24 maxlen: 24
154.196.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113498 (0x1bb5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 12:04:08 2026 GMT
Not After : Mar 31 12:04:08 2026 GMT
Subject: CN=699d93bd-7bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:56:b8:b2:73:4f:32:01:b6:5b:07:48:77:8c:
70:10:82:0c:08:da:72:51:ea:cc:20:31:bf:4d:a7:
12:33:38:56:71:1a:05:2a:a7:85:6a:39:35:64:23:
b0:17:a1:2f:35:5e:4e:eb:88:20:19:65:e9:32:11:
78:42:b0:9f:a6:e5:1a:93:17:b0:7d:7e:76:e8:76:
f3:5b:f2:64:75:3f:1d:54:6f:a3:b6:2c:d1:88:8c:
f5:35:ce:0d:11:40:6d:a7:a3:b3:c6:1f:a5:e9:f8:
91:28:fb:de:38:53:51:e2:88:1e:47:1f:98:5f:37:
6a:33:93:d5:12:8c:8f:50:df:db:87:c1:91:6b:92:
f9:b8:cc:06:d0:a5:58:87:8a:4a:78:64:ae:b2:4a:
c7:d8:74:7b:48:ea:bc:40:a8:49:b0:2c:a0:71:07:
fc:7f:70:3c:8c:2a:d9:01:9e:82:70:91:a5:0f:68:
66:fd:db:0f:91:1d:69:0d:86:61:ff:f3:bf:8e:e5:
8d:d5:16:1a:61:c0:3c:5c:33:b1:10:12:3e:14:b8:
b0:75:c2:ab:1b:d7:74:56:ed:99:f3:f7:9f:a0:c9:
05:61:23:a5:f5:48:40:5c:b1:67:51:c7:98:c1:59:
da:ef:bc:04:b2:6b:28:27:fc:8e:f3:b7:79:f5:ec:
d1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:09:77:58:30:03:C8:4E:D8:B2:FC:45:45:F6:64:41:6A:D5:96:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF22B1A6117811F1856E95F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.72.0/24
154.196.23.0-154.196.28.255
154.196.51.0-154.196.53.255
Signature Algorithm: sha256WithRSAEncryption
74:86:89:0c:48:7d:c4:2c:d0:37:ab:f2:cd:43:4d:0d:23:a9:
1a:f8:02:6e:5e:44:fe:66:14:f4:1e:9e:96:b8:4b:c1:9c:5d:
eb:6e:87:1b:37:67:2a:5f:41:46:e5:05:7c:c8:21:bf:7a:d8:
11:bd:76:9d:8e:b1:aa:4d:05:d5:b9:21:fc:24:83:f3:9b:da:
31:f8:b5:0b:18:ee:09:87:04:14:a4:f8:5e:4f:8c:fb:10:d7:
45:a9:9d:8c:82:62:53:f2:00:78:0d:34:6e:91:95:3b:ec:5a:
5c:fe:66:17:b6:f7:0a:cc:90:65:e5:bd:fb:9a:f8:39:21:7e:
85:ad:8d:c1:f4:1a:58:74:12:bd:8e:01:3b:a6:22:24:ea:b2:
bd:64:56:0d:ec:1a:e5:8f:82:4f:55:50:0e:b7:45:1a:21:c0:
52:0c:7b:d9:1d:84:41:32:9d:83:78:0b:26:1f:75:d6:3b:7a:
bb:75:31:7f:99:5e:09:bb:58:30:79:00:d4:e5:d9:5a:6b:09:
ff:71:eb:8a:82:03:06:a2:e8:21:c3:d2:8e:df:4f:ad:26:56:
76:4e:63:05:c7:c1:f8:e4:a0:3e:a5:03:df:c2:8f:bd:84:01:
0a:ef:6e:e2:f5:88:da:a9:5f:74:8a:dd:80:f0:bd:a1:4d:37:
df:f3:6b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:34:01 2026 by rpki-client