Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E9A5294245411F1B2D23A9BDAE4EC9C.roa
File: 0E9A5294245411F1B2D23A9BDAE4EC9C.roa (raw, json)
Hash identifier: 1cq+MXDHQ/islO3kCNUWurevinjiax2sVUp1sAtVh2I=
Subject key identifier: FF:50:F5:4E:EE:2B:CF:03:5E:7F:DF:F1:C9:73:96:7E:E7:1D:C5:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C032
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E9A5294245411F1B2D23A9BDAE4EC9C.roa
Signing time: Fri 20 Mar 2026 11:58:07 +0000
ROA not before: Fri 20 Mar 2026 11:58:02 +0000
ROA not after: Sun 26 Apr 2026 11:58:02 +0000
asID: 138915
IP address blocks: 154.93.84.0/23 maxlen: 24
154.93.86.0/24 maxlen: 24
154.93.92.0/24 maxlen: 24
154.93.93.0/24 maxlen: 24
154.93.100.0/23 maxlen: 24
154.93.104.0/23 maxlen: 24
154.93.124.0/24 maxlen: 24
154.93.125.0/24 maxlen: 24
154.93.126.0/24 maxlen: 24
154.93.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114738 (0x1c032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 11:58:02 2026 GMT
Not After : Apr 26 11:58:02 2026 GMT
Subject: CN=69bd364f-706a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e3:b6:3a:85:02:2f:1f:a1:35:7a:97:09:c0:
6d:cf:c0:b3:ad:76:6a:5d:7f:4c:24:5b:5d:a0:08:
5b:3a:43:e8:7b:d6:5d:75:99:38:dc:02:c6:bc:85:
12:5f:19:34:31:37:12:8e:f5:f6:87:8f:43:6b:70:
79:ab:eb:93:da:c0:85:1e:75:73:f3:b8:42:fe:26:
ce:42:e4:f5:48:6b:9b:13:25:2e:67:36:55:fa:0d:
e9:ac:20:2a:17:62:e6:01:d1:60:99:09:55:53:a1:
ac:17:88:62:65:79:a2:ae:06:45:a6:48:42:d2:cb:
08:87:06:f8:84:58:74:4f:03:28:c4:9b:87:5d:7f:
1f:80:bf:b8:ee:9f:75:e3:24:6a:2b:94:f9:5f:85:
9a:e7:f5:79:b3:07:4b:97:39:ca:08:f3:49:af:97:
18:8d:c9:70:fd:ac:e4:54:fc:b5:ef:bb:28:68:7e:
d9:d6:90:e4:fa:fa:5c:c9:21:07:4c:c3:62:c1:e1:
fc:9c:ee:1c:07:9e:a4:15:5e:2d:75:15:d0:dc:37:
86:83:d4:fd:2e:2c:a4:7b:de:c9:e8:01:bf:9a:b0:
e5:08:67:7d:9e:11:1b:c9:5a:88:de:d9:41:6e:bf:
e4:e8:a1:c3:af:6b:bc:e3:aa:dd:1f:28:59:5f:a2:
86:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:50:F5:4E:EE:2B:CF:03:5E:7F:DF:F1:C9:73:96:7E:E7:1D:C5:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E9A5294245411F1B2D23A9BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.84.0-154.93.86.255
154.93.92.0/23
154.93.100.0/23
154.93.104.0/23
154.93.124.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:80:6f:2d:95:4c:f9:ea:4a:05:aa:ea:ab:b9:12:69:09:30:
33:d0:dc:7a:7b:31:b9:b6:0a:49:cc:8b:a8:21:e7:34:cb:4d:
0e:82:99:d0:1c:8e:ef:ad:c0:91:df:93:f0:69:47:68:12:98:
89:b8:62:08:d0:d2:a6:56:6e:08:8f:b2:d9:dd:d9:b4:04:99:
ae:1d:67:18:94:49:c8:51:ba:d7:96:6c:ad:95:80:39:f1:39:
e5:5d:e1:eb:4e:80:bf:0c:31:d6:67:b1:5d:9b:d8:c0:3b:e3:
c9:93:d6:43:d2:ad:be:ed:4b:9e:10:b0:1b:a0:27:4b:4d:71:
3d:b4:11:b3:43:b4:e8:9f:1f:76:35:bf:cf:72:b6:0a:54:db:
84:c1:a0:9b:b4:8c:f2:c8:2d:13:b9:f5:7a:9e:64:9f:19:fb:
cd:6f:4b:b1:18:28:50:e6:e2:44:1a:1a:75:1c:dd:d1:3d:85:
1d:0a:75:94:1b:77:86:bb:d2:0e:35:e6:96:f8:27:38:ba:4f:
46:ff:c6:c9:8c:ca:0a:1b:59:c2:c6:42:3d:df:ce:e5:76:ee:
c3:03:6b:d3:01:fd:ec:b5:28:0e:8c:e3:2b:65:4f:67:a1:40:
e2:df:9a:47:8a:d9:9f:4f:60:c5:d7:78:8c:29:52:f1:68:5d:
65:b3:99:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:48 2026 by rpki-client