Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D2D9DBA1D2B11F191FE8ED9DAE4EC9C.roa
File: 0D2D9DBA1D2B11F191FE8ED9DAE4EC9C.roa (raw, json)
Hash identifier: 7VnnJOZl4fGyc+jwcZePxJvAUL8yf2hUpniqSEfJJ84=
Subject key identifier: B5:C1:2D:59:6A:6F:6A:99:31:6D:1B:DD:94:8B:79:6D:80:34:64:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BEED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D2D9DBA1D2B11F191FE8ED9DAE4EC9C.roa
Signing time: Wed 11 Mar 2026 09:16:57 +0000
ROA not before: Wed 11 Mar 2026 09:16:52 +0000
ROA not after: Thu 25 Jun 2026 09:16:52 +0000
asID: 16437
IP address blocks: 154.81.208.0/21 maxlen: 24
154.81.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114413 (0x1beed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 11 09:16:52 2026 GMT
Not After : Jun 25 09:16:52 2026 GMT
Subject: CN=69b13309-cb1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b8:4f:58:9d:bd:de:b5:0c:21:f8:8d:c0:dd:
cc:2d:8e:cc:29:66:b5:7b:85:3a:73:6b:da:fb:ee:
21:7f:c8:28:b8:58:e4:49:0c:42:6c:b0:ab:74:9c:
11:6c:6a:2e:05:ed:9a:3a:38:27:4c:0e:a8:66:31:
bb:e6:31:d7:f7:99:36:ea:39:36:65:a8:ed:b8:17:
12:9c:69:23:0b:6e:22:5c:00:49:40:5b:40:a2:df:
53:07:b7:92:15:ca:9b:8e:31:87:8a:94:60:e9:d3:
d8:d6:ea:c3:de:bb:a3:04:d4:ca:df:4c:41:5c:b5:
04:49:1f:cd:dd:c7:0f:fb:9a:bc:01:d1:0b:89:fc:
df:a4:83:a1:e1:0c:b5:bd:0c:9a:20:07:bf:a8:46:
e5:7a:35:4c:4f:26:3d:25:33:aa:48:eb:d2:12:b2:
cf:df:be:3b:f7:8a:df:52:38:6f:23:48:7c:ba:15:
ea:c1:7c:4b:a6:7d:dc:9b:04:c4:2f:b3:ed:44:63:
a9:99:94:cd:39:a1:e8:5e:7b:9b:f6:a4:db:1f:a4:
33:c8:7c:0f:a0:b7:7b:f5:a7:4d:7e:ce:a4:6c:e2:
c9:0f:8b:05:18:96:9f:00:13:08:50:eb:ec:e3:ee:
18:e3:d2:f7:a3:34:55:ca:bd:31:60:98:67:40:01:
45:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C1:2D:59:6A:6F:6A:99:31:6D:1B:DD:94:8B:79:6D:80:34:64:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D2D9DBA1D2B11F191FE8ED9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.208.0-154.81.219.255
Signature Algorithm: sha256WithRSAEncryption
1f:f3:cf:69:cd:ff:00:62:c1:f0:cc:d9:89:67:18:db:2d:24:
e1:9c:52:8b:00:3b:75:9a:c3:ec:5a:77:ff:72:bc:8b:5f:6f:
e4:b1:71:5e:15:ee:43:62:cf:c1:e6:5e:d2:6a:37:bf:7f:af:
20:33:61:d4:93:80:db:29:95:4b:52:e6:ec:7c:ba:03:70:a7:
b9:b0:ae:6d:9a:f0:87:01:e9:c6:e3:56:c2:f0:de:77:a4:ac:
a3:7d:77:7f:2a:2f:05:80:68:af:c8:dc:dc:d4:37:54:4f:6e:
14:c8:d0:7e:f0:4e:a9:e8:b8:03:d5:3d:6e:17:b0:8b:f8:52:
1b:c3:3c:f3:34:38:6a:35:57:5a:c1:01:ff:8c:d1:6d:27:d8:
ea:ba:eb:f9:88:7c:46:2f:68:ec:28:c8:11:e6:41:81:fb:96:
a7:ee:ac:14:14:2b:ea:41:1a:2a:30:34:31:93:cb:9e:27:b2:
c8:da:49:1c:c0:2a:8a:a2:c9:f7:88:20:f8:77:71:dc:5f:62:
27:69:9a:21:d5:a0:30:b3:47:d4:07:ee:c6:31:ff:92:e4:c2:
d0:89:14:5e:2a:91:82:9e:7e:d5:35:c0:3f:c2:fa:77:6b:68:
0e:64:a3:4b:d2:87:9c:fb:41:23:a4:e8:e6:2b:2d:14:54:d4:
e8:03:ca:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:13:54 2026 by rpki-client