Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00A1379C162C11F19B2213CDDAE4EC9C.roa
File: 00A1379C162C11F19B2213CDDAE4EC9C.roa (raw, json)
Hash identifier: LovzQTWx3gtEou5m17PIMTGjEaObWnNzx691TZ/eC0M=
Subject key identifier: 4D:97:F4:49:EA:1F:EE:E2:09:90:4C:5C:79:0C:A3:45:62:F8:B9:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCF7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00A1379C162C11F19B2213CDDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 11:36:07 +0000
ROA not before: Mon 02 Mar 2026 11:36:02 +0000
ROA not after: Fri 02 Mar 2029 11:36:02 +0000
asID: 17561
IP address blocks: 154.80.22.0/24 maxlen: 24
154.80.23.0/24 maxlen: 24
154.80.24.0/24 maxlen: 24
154.80.25.0/24 maxlen: 24
154.80.26.0/24 maxlen: 24
154.80.27.0/24 maxlen: 24
154.80.28.0/24 maxlen: 24
154.80.29.0/24 maxlen: 24
154.80.30.0/24 maxlen: 24
154.80.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113911 (0x1bcf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 11:36:02 2026 GMT
Not After : Mar 2 11:36:02 2029 GMT
Subject: CN=69a57627-ddf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f9:b1:fd:76:df:ea:5e:d4:05:e8:4e:a1:6b:
de:07:03:84:e8:31:81:0a:b5:30:bb:71:4e:79:5d:
81:50:2d:8d:c7:7c:c2:ff:7e:70:12:de:31:f6:dc:
7f:84:b1:16:bc:6c:83:0b:8f:dc:16:47:c6:15:7a:
bd:ab:f2:8a:47:f9:97:3b:1d:d1:9e:15:9d:8e:2f:
4c:01:00:bb:a4:97:0e:51:16:21:70:03:da:5e:91:
cf:4b:7d:82:e5:75:61:af:ad:ca:37:17:84:be:6f:
f9:92:12:86:17:0e:22:65:da:a5:e6:b9:c8:bb:20:
14:b5:57:9b:2e:c8:5c:2a:bc:85:8c:7d:28:1b:fa:
61:3f:f2:99:11:00:ab:4f:c6:cf:33:f9:f9:8e:28:
7e:50:db:52:a3:0e:43:1e:6e:4c:65:51:52:ea:9b:
54:14:d6:ee:59:a0:22:d2:21:70:09:e1:76:f0:27:
fd:82:a3:4f:fd:d3:c5:a6:85:9b:a7:75:39:5b:23:
0c:24:b3:6e:5b:34:da:c3:4a:c1:e6:f7:3f:b0:b4:
79:2c:77:9e:72:84:33:9e:cf:d0:f3:2e:ee:f8:a4:
32:f7:f9:b1:47:ab:60:b5:7b:ad:c6:72:33:7e:34:
f4:06:8a:aa:02:25:30:b2:8b:f2:85:e5:bf:09:8a:
c3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:97:F4:49:EA:1F:EE:E2:09:90:4C:5C:79:0C:A3:45:62:F8:B9:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00A1379C162C11F19B2213CDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.22.0-154.80.31.255
Signature Algorithm: sha256WithRSAEncryption
a5:b1:d9:a1:5b:13:1f:fb:69:43:52:78:f6:f6:c2:b8:9d:5e:
c7:b4:7d:1a:b5:b2:89:fe:77:4f:31:1f:58:ff:ce:3b:59:57:
02:a1:18:24:de:af:50:34:a7:fd:9f:94:05:e2:c3:20:30:78:
b6:0b:a4:6a:fb:f9:cf:a6:ab:ad:e3:9f:27:90:ce:8b:2c:a2:
00:20:d4:9a:19:64:4d:04:1d:f7:3c:3e:f0:83:5f:4f:49:9f:
52:27:4d:d0:b8:97:03:17:d7:5e:7f:55:e1:96:63:1f:53:5d:
81:bb:ca:65:6c:eb:be:48:25:e3:f6:84:eb:0b:93:8c:a9:81:
76:21:a9:8d:e7:17:53:0a:9e:5f:b7:d9:06:55:a2:9a:2c:21:
fe:a4:a1:65:84:57:d2:16:fc:41:1a:de:88:46:ef:b3:83:91:
93:9b:13:1d:7d:7a:09:ee:a9:09:3f:4e:71:83:e4:50:fc:f6:
cf:93:91:0f:c2:0f:86:37:6c:00:5a:4f:8b:c2:72:a2:69:9b:
a8:4b:6a:f5:ab:1f:9b:a1:6c:2d:10:ec:f7:10:6e:9e:41:f9:
5d:5a:d9:15:dd:df:8b:b6:c7:38:6a:2b:10:b2:20:b4:37:f3:
95:1b:c8:14:ba:63:4f:07:57:65:07:8d:4c:5b:b9:b0:6f:45:
98:71:d6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:13 2026 by rpki-client