Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FFE52DA25D911F1B6AE3A7ADAE4EC9C.roa
File: 0FFE52DA25D911F1B6AE3A7ADAE4EC9C.roa (raw, json)
Hash identifier: 6RNHfBIm/9yyeaY5fanxC22eOMM2y5fBXL49CQbFq38=
Subject key identifier: 6D:BE:B0:83:70:37:13:6E:2A:AC:E0:A9:63:DC:B7:F8:88:07:6C:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C056
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FFE52DA25D911F1B6AE3A7ADAE4EC9C.roa
Signing time: Sun 22 Mar 2026 10:22:49 +0000
ROA not before: Sun 22 Mar 2026 10:22:25 +0000
ROA not after: Sun 01 Aug 2027 10:22:25 +0000
asID: 2914
IP address blocks: 154.214.219.0/24 maxlen: 24
154.214.223.0/24 maxlen: 24
154.214.252.0/24 maxlen: 24
154.214.253.0/24 maxlen: 24
154.214.254.0/24 maxlen: 24
154.214.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114774 (0x1c056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 22 10:22:25 2026 GMT
Not After : Aug 1 10:22:25 2027 GMT
Subject: CN=69bfc2f8-a3c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a1:0e:e0:2d:1c:26:60:51:ab:8e:e0:16:08:
15:60:93:48:13:40:1c:ed:c0:0b:1b:61:13:77:5b:
aa:e6:ea:8e:e2:bf:a8:c0:72:92:51:44:ef:3f:ad:
82:f7:bf:ad:36:73:68:4a:26:5e:3a:d1:bf:19:df:
c8:df:d6:32:49:c6:4c:90:99:a5:6d:44:70:58:61:
b4:8d:d6:8a:bd:3c:01:6b:65:4a:b3:46:86:a4:1e:
10:6e:80:e6:54:79:6f:3a:35:c1:8e:18:2f:b5:5e:
55:e5:83:82:cc:c9:99:6a:94:a6:48:58:72:6d:c5:
c3:3f:cb:4b:9e:00:c3:59:43:5e:34:40:5a:38:3a:
58:03:02:3f:fc:88:56:f8:79:71:3e:29:16:6f:ce:
12:84:63:a8:11:e7:d9:05:d6:ab:ae:3d:d4:0d:a1:
98:ec:5e:62:12:be:d9:cc:25:72:9a:90:6e:af:10:
e3:a0:9a:67:2e:97:a4:76:77:d8:ce:6d:31:9e:b5:
2a:a9:e3:87:6f:45:64:d3:46:3f:b1:60:29:0f:a3:
5a:79:fe:e3:51:ab:5d:f1:1e:f1:44:21:84:78:3d:
94:43:d0:dd:e1:12:05:34:b8:a3:da:dd:7f:bd:f6:
7b:07:c9:55:95:70:73:52:3c:37:de:43:cd:c2:44:
b6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BE:B0:83:70:37:13:6E:2A:AC:E0:A9:63:DC:B7:F8:88:07:6C:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FFE52DA25D911F1B6AE3A7ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.219.0/24
154.214.223.0/24
154.214.252.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:de:70:73:3a:3d:ee:c8:67:20:67:5b:4c:3e:a4:b5:af:85:
aa:38:fe:49:79:7f:8b:89:1b:5c:58:6a:f3:25:14:da:70:f3:
f8:d1:47:09:3d:a1:19:79:cc:82:5a:e0:1a:2a:4e:03:02:00:
b5:24:da:7c:84:0c:94:e3:75:a9:6a:9c:b2:b6:28:16:38:20:
85:b9:c5:14:fb:b8:63:e6:3d:23:bd:54:77:35:90:5c:33:54:
9f:e3:34:71:8e:7c:45:30:13:40:28:b8:96:b1:4e:9e:d0:1e:
ab:ed:8c:a5:85:06:87:15:d7:12:9c:78:97:bc:cc:94:6f:89:
c1:1f:16:3c:ac:07:53:a1:cd:eb:5f:15:3a:01:76:dc:43:22:
c4:3a:5d:55:68:39:68:84:ee:dd:b4:28:e3:56:9c:95:2f:cb:
4a:7c:81:e7:dd:e6:e0:d3:e2:8d:76:4d:48:f1:eb:26:be:cd:
47:d9:1a:11:61:ea:5b:51:cf:80:b5:9b:0f:35:07:48:de:1f:
29:b3:09:67:18:55:97:7d:8b:15:45:e9:68:bc:8e:47:cc:f1:
18:8b:4d:ff:77:92:52:06:b2:7d:7c:35:ed:ee:6e:90:e9:e1:
22:8b:8a:cc:e5:8e:f9:5f:81:cf:c9:7d:f0:95:30:7c:ae:1d:
de:64:c1:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:14 2026 by rpki-client