Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA2B4F4AFE7C11F0892103CCDAE4EC9C.roa
File: FA2B4F4AFE7C11F0892103CCDAE4EC9C.roa (raw, json)
Hash identifier: EzZjUMVR2r9Kcrar7pElpncLAugt4iL6IVj+SgehYg4=
Subject key identifier: 8A:E7:10:2F:80:C2:8E:AF:1F:D2:36:AB:F4:63:CB:AB:90:98:89:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B7C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA2B4F4AFE7C11F0892103CCDAE4EC9C.roa
Signing time: Sat 31 Jan 2026 08:15:17 +0000
ROA not before: Sat 31 Jan 2026 08:15:13 +0000
ROA not after: Sun 08 Mar 2026 08:15:13 +0000
asID: 202656
IP address blocks: 154.219.29.0/24 maxlen: 24
154.222.40.0/24 maxlen: 24
154.222.41.0/24 maxlen: 24
154.222.42.0/24 maxlen: 24
154.222.193.0/24 maxlen: 24
154.222.194.0/24 maxlen: 24
154.222.195.0/24 maxlen: 24
154.222.196.0/24 maxlen: 24
154.222.198.0/24 maxlen: 24
154.222.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112576 (0x1b7c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 08:15:13 2026 GMT
Not After : Mar 8 08:15:13 2026 GMT
Subject: CN=697dba15-74d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:44:13:fb:d7:18:bd:ec:b5:c8:2a:e5:e7:09:
88:a5:0e:2a:6b:36:cf:3d:fb:49:40:a1:33:f1:dd:
a0:66:61:7f:e4:55:16:96:37:6b:11:65:4f:f1:82:
6f:ca:b1:eb:4c:28:ba:94:33:15:35:49:bc:16:ef:
bb:d0:c1:dc:07:cf:29:d7:03:c7:36:b9:d4:a2:c1:
b8:c5:c2:8d:70:0a:8a:23:60:69:9d:9d:cb:cd:32:
cf:97:17:d3:24:df:32:15:d2:d8:8a:cf:c4:32:50:
1c:7d:4d:fa:85:57:13:b7:25:72:ba:de:1e:20:c4:
5b:e5:b7:fd:e2:f0:a5:0e:6c:ce:1e:3b:13:e6:cb:
89:8c:bc:67:d7:38:aa:86:01:1f:fa:7b:79:b0:30:
45:3f:38:2d:1d:42:92:f5:f3:58:c2:1b:8b:01:e9:
b3:b2:c4:aa:7d:33:54:d6:70:38:ff:b5:46:b5:7d:
0e:91:b3:4c:25:a9:51:00:06:3e:b1:93:ad:e4:9c:
cd:9b:52:77:97:c0:92:8e:32:de:9e:8c:47:1f:b7:
71:38:6b:1a:9e:61:69:b7:3c:39:7d:cc:50:2f:b4:
b2:cb:a6:7f:9a:90:b1:d0:b7:cd:89:bd:85:0c:d9:
b4:99:9f:64:26:40:84:8c:a0:02:7e:15:35:60:c4:
c9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E7:10:2F:80:C2:8E:AF:1F:D2:36:AB:F4:63:CB:AB:90:98:89:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA2B4F4AFE7C11F0892103CCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.29.0/24
154.222.40.0-154.222.42.255
154.222.193.0-154.222.196.255
154.222.198.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:f4:94:9b:28:a4:18:9a:75:f4:57:cf:68:4e:17:87:f5:f2:
e6:b3:e8:8e:39:6d:96:87:28:2b:aa:4f:ea:49:45:03:f5:0c:
38:82:45:0a:09:ff:14:5c:dd:3e:29:ba:17:bc:87:b8:5b:9b:
78:b0:80:b9:c6:60:74:80:e8:18:6d:9f:3f:1a:c8:ad:88:86:
24:e0:83:3d:65:45:40:67:bc:31:0e:90:fe:2c:0a:d9:bf:0b:
87:5a:ae:c1:fa:1a:09:30:a0:d3:13:ed:9d:04:03:c0:da:77:
69:fe:a5:3e:63:bb:32:a2:9b:0b:0f:47:87:8e:04:f7:48:df:
6b:74:d3:ab:54:c2:52:ba:64:c9:87:de:8f:a0:09:2d:a7:3a:
47:6f:cd:cd:48:f4:77:52:4e:26:d1:d9:e7:79:bd:d7:ad:24:
e1:e9:a0:70:31:a3:31:1c:77:4f:73:b4:85:cd:42:c7:1d:c5:
c0:19:3c:4d:d0:ea:73:0e:f0:16:26:30:54:ff:b0:7b:35:e9:
a5:d3:bc:78:d8:34:5f:9d:0a:d5:d2:cd:37:69:ae:3b:f2:21:
12:45:ad:32:9c:6f:0c:13:58:2c:50:95:cb:af:d1:d4:cb:68:
ab:dd:a1:8d:fe:0a:2b:16:33:c2:60:12:11:a4:b8:a0:a7:d9:
56:fb:32:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:07:31 2026 by rpki-client