Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/095D4DDC193B11F1B18230A1DAE4EC9C.roa
File: 095D4DDC193B11F1B18230A1DAE4EC9C.roa (raw, json)
Hash identifier: p26KtXhQWV/NEfuFfSLoUJWnGFgl7xZmkaSu/3FpEhM=
Subject key identifier: B6:A6:75:7C:48:9D:9F:8A:9D:06:DE:B8:AB:EA:BD:37:24:48:DA:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BDF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/095D4DDC193B11F1B18230A1DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 09:01:18 +0000
ROA not before: Fri 06 Mar 2026 09:01:13 +0000
ROA not after: Wed 08 Apr 2026 09:01:13 +0000
asID: 45194
IP address blocks: 154.84.199.0/24 maxlen: 24
154.84.223.0/24 maxlen: 24
154.84.244.0/24 maxlen: 24
154.84.245.0/24 maxlen: 24
154.84.246.0/24 maxlen: 24
154.84.247.0/24 maxlen: 24
154.84.248.0/24 maxlen: 24
154.84.249.0/24 maxlen: 24
154.84.250.0/24 maxlen: 24
154.84.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114165 (0x1bdf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 6 09:01:13 2026 GMT
Not After : Apr 8 09:01:13 2026 GMT
Subject: CN=69aa97de-e88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9d:0a:76:b7:e4:b2:36:d2:49:70:74:fd:5a:
72:14:00:eb:7c:b2:09:b4:f4:f7:bc:18:80:f8:af:
f8:89:fa:86:7e:e7:87:19:29:09:ed:80:0b:30:9a:
49:6b:d4:7d:df:50:90:8f:98:1a:86:26:b7:94:28:
52:53:86:27:84:b6:e9:c1:57:05:ab:2d:cc:3f:6e:
22:fe:cb:41:57:12:a3:f1:0f:d1:21:37:b1:0d:1d:
85:1c:07:7c:93:38:65:e9:01:7a:c5:12:02:d1:98:
72:f9:4b:46:c4:75:6a:a3:0a:91:ea:8e:fa:f3:f5:
a9:36:25:98:25:6d:55:90:f9:43:dc:89:81:21:28:
57:22:b1:22:13:61:27:c6:f2:ca:b0:a1:95:41:20:
57:74:2a:1c:5d:1b:cf:7d:62:9a:0b:b6:ba:2a:31:
3b:e8:12:3a:27:b0:0e:5b:c2:03:c0:f5:12:77:24:
0e:16:be:87:f9:60:da:de:61:0b:d8:e3:2d:ce:1a:
2f:6e:5b:29:53:f5:a6:e4:b9:63:8a:f8:07:38:08:
6c:84:af:4e:58:d6:94:13:2e:ef:bb:af:5c:d6:bd:
e8:cf:3a:03:f9:c3:8b:de:a0:3b:9e:ca:91:82:73:
72:69:e0:d2:5f:56:a2:ac:86:aa:df:61:45:14:40:
b9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A6:75:7C:48:9D:9F:8A:9D:06:DE:B8:AB:EA:BD:37:24:48:DA:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/095D4DDC193B11F1B18230A1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.199.0/24
154.84.223.0/24
154.84.244.0-154.84.251.255
Signature Algorithm: sha256WithRSAEncryption
58:ae:c7:28:69:7d:26:e3:22:ca:87:aa:bb:ea:6b:ae:47:8c:
52:c6:2e:69:22:3b:54:1b:68:fa:23:1f:db:df:c6:a0:ee:9b:
dd:ce:08:01:80:2c:28:06:17:fa:f0:ae:19:d2:c3:c6:bb:2e:
23:1e:e0:ba:7c:86:b1:63:d0:7d:d9:9b:51:04:e2:0c:ff:b3:
17:35:54:97:39:43:a3:81:40:33:98:47:85:4c:ba:82:45:16:
19:70:c1:70:30:0a:c8:cf:df:2b:42:ea:70:c2:e9:f6:fb:80:
60:98:d3:23:b2:2e:24:94:28:ad:a9:f4:eb:d5:72:6e:d4:5e:
a8:1d:66:50:d4:22:5e:f4:21:9a:9b:75:81:d6:8b:e1:72:3d:
97:92:82:1c:32:94:56:b3:de:63:8d:f9:0a:ec:7e:d4:cf:b9:
21:f5:c7:81:6f:ab:36:a7:6f:29:54:f8:80:fe:b5:b2:69:7b:
c4:75:50:7f:bd:cf:31:b1:a9:b3:aa:00:2b:f3:18:1a:e3:ed:
2a:e8:bf:92:11:bd:b3:28:29:f2:e1:50:0a:c1:24:a1:32:6e:
82:f1:49:47:fc:60:08:09:6e:87:a3:a7:90:68:99:a9:60:f5:
f6:95:e7:62:34:cd:cd:42:9e:cc:97:83:31:ce:ba:64:7e:8f:
41:e8:2b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 07:59:42 2026 by rpki-client