Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F36BAAFA109311F1940B097DDAE4EC9C.roa
File: F36BAAFA109311F1940B097DDAE4EC9C.roa (raw, json)
Hash identifier: /UGYsvOBC6zKvqm91rDSfGQ9bo9BvHMXLqsdgGA3pIE=
Subject key identifier: 3A:FD:BE:79:D1:EC:F0:01:07:E7:D3:38:7D:EE:8F:53:20:A9:36:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB15
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F36BAAFA109311F1940B097DDAE4EC9C.roa
Signing time: Mon 23 Feb 2026 08:45:05 +0000
ROA not before: Mon 23 Feb 2026 08:45:01 +0000
ROA not after: Tue 14 Apr 2026 08:45:01 +0000
asID: 272854
IP address blocks: 154.197.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113429 (0x1bb15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 23 08:45:01 2026 GMT
Not After : Apr 14 08:45:01 2026 GMT
Subject: CN=699c1391-9936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6f:14:92:46:b4:f0:86:90:89:d5:db:28:9c:
73:3b:8c:d1:fe:50:3a:91:65:2a:2d:6a:d6:95:e2:
93:ee:19:cb:81:be:9c:33:24:b9:36:bd:a4:83:fa:
4a:b8:f3:83:23:05:3c:16:ef:28:da:63:d0:d5:53:
28:49:7c:9f:31:a3:bc:0b:1b:81:aa:b7:99:0d:5e:
0a:67:8b:42:a7:88:06:98:f0:e4:41:85:33:d4:0f:
3f:e2:c9:92:b1:9f:1f:8e:5f:c6:9c:c3:f8:08:ce:
65:0d:29:7d:d0:bd:f1:6c:6d:58:86:4f:13:13:e1:
87:3b:7f:78:2c:50:07:81:a2:cc:39:ef:9c:6d:2b:
b4:0a:82:36:f8:5f:1a:76:ca:4a:b0:a6:e1:93:ff:
00:4f:55:d4:fb:63:4e:1a:21:79:c7:45:b7:c7:10:
76:ea:34:2a:77:50:ca:80:23:57:7a:8d:f2:87:2c:
d8:1b:20:a3:d2:9e:26:79:7b:1f:8d:18:ec:31:e9:
12:42:c4:06:06:7c:0f:54:32:39:a6:be:ce:41:cc:
c9:1c:8a:30:0c:14:f9:f8:19:00:8c:ba:64:bb:a3:
7d:16:dd:e3:5e:bb:ba:12:34:80:c1:18:85:19:f9:
e8:e7:f0:30:5c:15:86:53:2a:c2:37:7b:95:a7:fa:
1b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:FD:BE:79:D1:EC:F0:01:07:E7:D3:38:7D:EE:8F:53:20:A9:36:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F36BAAFA109311F1940B097DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.1.0/24
Signature Algorithm: sha256WithRSAEncryption
93:81:9a:a6:c6:a2:47:0c:82:79:6f:c5:a6:9e:1e:d3:69:49:
58:c0:fe:9d:21:0c:8a:d6:dd:f6:fb:64:d1:56:00:fe:33:23:
80:94:67:5e:70:2c:88:e9:21:bd:47:25:fd:82:7b:c7:46:b9:
97:dd:d7:74:71:e5:b1:90:4a:29:6d:7f:96:ca:94:b7:24:65:
8b:30:be:77:5a:0a:0b:a0:80:74:b9:86:0a:b8:cf:ac:5a:60:
1b:5f:e7:be:34:ed:a0:5f:42:c7:cb:b7:f6:da:60:3f:40:ee:
35:25:36:52:ab:1e:ba:68:60:62:84:ce:8c:89:d9:2c:4e:1d:
6e:fe:29:8c:5c:06:cb:e9:89:97:f1:8c:23:6d:bd:34:37:1c:
8f:c4:35:68:db:d0:73:49:b4:43:f4:07:89:97:92:19:15:ce:
fc:ec:a1:1f:7e:bd:34:8d:56:fa:89:c1:10:ea:46:e1:70:aa:
4c:24:c3:25:45:83:32:d3:d3:ca:6a:53:9a:ae:85:9e:7b:fa:
e4:40:f5:bd:10:a3:f6:d3:ca:5b:a2:72:b1:c5:67:99:6f:8b:
50:76:3d:4d:ee:07:9c:29:25:1d:40:53:27:bb:1f:18:23:3d:
45:be:8d:00:25:a1:23:83:49:58:11:16:97:57:88:f8:2a:55:
cd:9d:26:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:46:07 2026 by rpki-client