Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1660E43E242711F1939A349DDAE4EC9C.roa
File: 1660E43E242711F1939A349DDAE4EC9C.roa (raw, json)
Hash identifier: EZy8a6xI0DhsVJlKvKw9coVXzHf8+t+PXnuQVjgSmpY=
Subject key identifier: 0F:50:8F:E4:B1:15:71:CD:4D:98:20:F1:B2:3F:4C:31:19:3D:0B:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BFF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1660E43E242711F1939A349DDAE4EC9C.roa
Signing time: Fri 20 Mar 2026 06:36:13 +0000
ROA not before: Fri 20 Mar 2026 06:36:06 +0000
ROA not after: Fri 17 Jul 2026 06:36:06 +0000
asID: 154376
IP address blocks: 154.193.240.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114676 (0x1bff4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 06:36:06 2026 GMT
Not After : Jul 17 06:36:06 2026 GMT
Subject: CN=69bceadd-9e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:d6:e4:a5:b3:eb:22:25:ca:8e:25:f4:46:46:
b1:d2:d1:fa:ee:07:01:8d:98:84:f5:a4:b3:02:f9:
34:a5:e1:3f:5c:f6:6b:dd:cf:92:23:b6:7a:d9:5d:
ac:bf:e1:a9:e8:c9:db:13:32:c3:26:76:e9:c6:6d:
7f:48:4e:ff:13:18:2c:b5:e3:72:a3:ce:60:49:d5:
6b:ac:90:48:04:7b:a2:9d:a1:fe:f9:01:ce:58:c8:
6a:1b:55:0a:ce:e6:7e:55:df:b3:af:36:a6:1a:94:
ea:fe:93:da:9f:db:85:e6:92:9d:ff:02:e8:4c:d5:
74:0c:ee:09:fe:8d:f5:b3:94:ce:d9:c9:c8:db:75:
81:86:8a:d3:18:a3:e4:fc:45:a9:37:47:54:e1:9a:
e7:e8:85:56:2f:a3:b2:fe:4f:68:70:d6:83:1e:c3:
b5:c5:b8:73:b1:74:b7:d5:75:86:32:23:66:1c:42:
56:0e:f1:ba:73:b3:db:08:10:07:0f:c4:ea:10:14:
e2:95:bf:01:ec:49:6d:2b:cf:84:14:f8:27:96:72:
ce:e7:62:54:df:1b:f1:9b:98:a2:0f:bc:e2:7a:38:
e4:c9:96:2d:2d:b6:a1:0d:19:e5:54:1b:11:61:c5:
36:c1:dc:33:2d:3a:e0:f6:34:9b:ab:88:b8:6b:92:
a6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:50:8F:E4:B1:15:71:CD:4D:98:20:F1:B2:3F:4C:31:19:3D:0B:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1660E43E242711F1939A349DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.240.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:63:cf:68:aa:2d:0d:55:49:76:70:79:1f:c1:fd:8b:67:05:
45:9d:66:c7:8e:9e:e9:61:7e:0d:44:7b:c3:96:19:63:8a:91:
8a:07:75:9f:ed:68:34:90:5b:64:8f:79:52:01:8e:d5:d4:07:
5c:9f:fa:cb:14:c2:76:94:e4:5b:cd:d9:97:ae:2d:c1:ee:64:
fd:23:43:52:84:e9:6c:5d:bd:d7:2c:a0:1c:d0:a8:ec:e3:ff:
13:91:c6:36:88:9f:62:55:fe:57:fa:6c:43:af:c8:fb:eb:42:
08:3b:4a:e6:05:25:32:84:fb:70:21:70:87:5a:0e:97:3a:69:
94:56:9c:84:4a:b6:fc:a7:1c:f3:90:46:76:87:cd:8a:ab:ff:
2f:a4:89:1a:60:43:7d:7e:db:ab:bc:46:a8:16:5f:b6:e7:40:
28:94:fa:42:3c:f5:a0:15:df:41:cd:e9:a2:7d:5f:8d:65:e6:
15:ad:e5:ef:39:a2:0d:1e:f5:b5:81:5f:b0:d3:c3:03:a6:2f:
22:4a:7c:b5:df:0d:a5:bc:f2:d5:de:a8:e7:6b:f5:08:aa:2c:
42:25:f8:48:e7:f4:cf:12:54:78:5f:dd:96:86:6b:f5:97:6d:
ff:41:3f:b8:c9:44:7d:98:e2:8d:3c:5c:ee:48:d9:8f:ed:9c:
42:30:d8:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:17:33 2026 by rpki-client