Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F45C19C1F8611F197D5E99CDAE4EC9C.roa
File: 0F45C19C1F8611F197D5E99CDAE4EC9C.roa (raw, json)
Hash identifier: qFLT79fqicYEHUH652bxXYNDhp78O0WxiM3DrNv+9WU=
Subject key identifier: D8:9B:D7:4D:87:C1:9A:F3:42:6B:C2:B6:1F:A8:D2:11:50:79:75:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F45C19C1F8611F197D5E99CDAE4EC9C.roa
Signing time: Sat 14 Mar 2026 09:13:27 +0000
ROA not before: Sat 14 Mar 2026 09:13:21 +0000
ROA not after: Sun 31 May 2026 09:13:21 +0000
asID: 399077
IP address blocks: 154.91.117.0/24 maxlen: 24
154.91.118.0/24 maxlen: 24
154.91.119.0/24 maxlen: 24
154.91.120.0/24 maxlen: 24
154.91.121.0/24 maxlen: 24
154.91.122.0/24 maxlen: 24
154.91.123.0/24 maxlen: 24
154.91.124.0/24 maxlen: 24
154.91.125.0/24 maxlen: 24
154.91.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:06:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114520 (0x1bf58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 14 09:13:21 2026 GMT
Not After : May 31 09:13:21 2026 GMT
Subject: CN=69b526b7-e162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e8:2c:c5:66:13:c0:28:c1:40:3f:5c:f1:6a:
41:bb:92:3f:32:ef:92:e4:bb:d8:cf:8f:22:ed:82:
8b:16:50:8c:e2:63:6c:99:2a:6d:89:2e:c0:b0:50:
f8:62:1b:36:5a:69:70:2b:7c:12:d4:23:f3:12:db:
7f:40:b2:d2:7d:d7:f7:c3:fc:a2:99:fd:7d:5f:09:
f0:e9:db:c8:fb:87:1f:03:3d:66:ed:71:e3:a3:97:
e7:74:33:5d:8f:25:46:d4:52:b6:cd:6e:a1:25:19:
62:ac:b0:3e:63:ad:23:7a:78:9e:6f:68:c0:99:20:
9c:e6:23:7c:b3:2c:85:3f:f4:18:21:46:fc:39:01:
f0:cb:d3:b9:86:cc:45:d7:9c:b8:24:fb:f5:67:e7:
3a:b5:bc:13:76:59:4f:c9:a0:58:33:bd:08:d9:35:
90:c2:4f:4e:48:33:4e:d1:2e:19:30:3e:99:7b:c7:
c3:7d:66:6c:01:b4:bb:33:83:00:a0:d4:a9:15:d0:
6a:8d:dd:5b:4a:7f:c0:a7:48:a6:78:de:dd:26:e0:
7a:d8:93:ab:d6:6c:a4:8b:e3:18:ef:ab:15:08:e0:
00:17:33:5c:33:1a:ea:83:95:75:f0:b9:2c:ba:78:
b3:b8:e2:18:30:6e:13:0b:0d:3b:f3:7f:05:e1:61:
72:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9B:D7:4D:87:C1:9A:F3:42:6B:C2:B6:1F:A8:D2:11:50:79:75:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F45C19C1F8611F197D5E99CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.117.0-154.91.126.255
Signature Algorithm: sha256WithRSAEncryption
c0:c4:36:d7:ad:df:1f:22:d8:4f:51:13:01:4d:1f:ce:b8:3c:
5c:5b:a6:75:e5:a0:71:fd:49:94:77:3a:9f:a2:50:9f:f7:b6:
50:24:0c:90:8b:e5:60:f8:f8:0b:05:0c:1b:2a:cf:25:69:c7:
e9:fd:30:c2:81:94:f6:85:a8:31:4a:8d:1a:e9:a1:c8:41:92:
76:36:30:cc:45:3e:92:44:eb:48:92:e1:68:34:dc:de:54:ad:
1a:be:6e:c6:a0:2e:b7:1b:7e:4e:66:ab:22:29:01:72:96:89:
47:a9:80:34:6f:6f:c1:e1:bb:5f:43:c7:be:76:9f:78:4d:56:
8e:06:5d:b9:4a:98:55:1d:6b:64:8f:7f:9e:62:3a:63:ed:e6:
87:a9:41:d6:2a:b0:80:ba:88:d7:a4:9b:2f:63:6a:90:1e:25:
c6:b9:b0:7f:13:e8:2a:f8:5a:a5:f3:24:4c:41:da:73:1a:0d:
db:89:d9:e1:70:81:15:0c:e9:70:e0:05:06:1d:5d:9f:59:27:
67:3e:50:b8:d8:90:b5:d5:33:ec:95:0b:77:70:9b:4f:4f:f4:
15:fc:a0:eb:32:f6:71:5e:ef:65:2f:e5:59:97:3a:95:a2:5a:
b4:f8:b5:af:7e:19:f0:ff:3b:90:fa:88:c4:58:cd:86:7d:e3:
e2:f7:db:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 21:28:12 2026 by rpki-client