Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2178FEF81A0711F1AF8D018BDAE4EC9C.roa
File: 2178FEF81A0711F1AF8D018BDAE4EC9C.roa (raw, json)
Hash identifier: G04XQHdtrP2ZtAxlVSmCyRVAE260ylgJiBBZtAi1vT8=
Subject key identifier: BB:D2:53:14:C9:C0:A8:CB:C1:40:28:BB:76:21:7E:44:93:B1:64:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE36
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2178FEF81A0711F1AF8D018BDAE4EC9C.roa
Signing time: Sat 07 Mar 2026 09:22:16 +0000
ROA not before: Sat 07 Mar 2026 09:22:10 +0000
ROA not after: Wed 07 Mar 2029 09:22:10 +0000
asID: 17561
IP address blocks: 154.83.176.0/24 maxlen: 24
154.83.177.0/24 maxlen: 24
154.88.41.0/24 maxlen: 24
154.88.56.0/24 maxlen: 24
154.88.58.0/24 maxlen: 24
154.90.174.0/24 maxlen: 24
154.90.175.0/24 maxlen: 24
154.90.188.0/24 maxlen: 24
154.90.190.0/24 maxlen: 24
154.90.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114230 (0x1be36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 7 09:22:10 2026 GMT
Not After : Mar 7 09:22:10 2029 GMT
Subject: CN=69abee48-6cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:01:65:a2:4f:30:a2:ec:1f:aa:dd:86:63:50:
ec:a9:2c:59:61:30:f5:7f:42:c5:3a:f6:3a:c3:bc:
b2:23:a3:3c:f8:42:d8:66:81:7d:c4:93:c4:bf:2f:
77:7d:1a:83:af:03:a8:cf:ad:78:84:c2:1d:59:c5:
db:bf:d5:ba:05:38:aa:5c:fb:b1:26:c7:08:c0:78:
f7:bf:80:e6:6a:bb:55:4f:ea:97:09:b3:5e:5e:94:
7b:01:2b:eb:16:ea:8e:a0:b6:f8:7f:c1:26:92:33:
73:7e:9f:8c:f2:23:7f:f4:9f:7c:2c:7b:12:22:7a:
a7:6f:42:7e:76:46:40:e3:ba:c3:5b:ca:c4:7d:3f:
2c:d7:28:55:4a:e7:98:39:27:95:ff:60:c0:73:0c:
4b:aa:21:7a:de:95:9a:b5:59:52:fb:29:b3:00:c3:
ea:00:fd:95:90:5f:41:f0:f2:a5:7b:5f:64:18:68:
19:39:a3:6b:eb:03:2a:72:14:cc:1c:e6:23:df:b3:
47:ba:be:2e:08:1d:d3:9c:41:a2:46:88:f8:8c:7f:
b8:d6:c1:f4:c8:44:09:ee:14:db:49:9c:0b:88:a9:
c0:59:0c:ce:4a:bd:ac:b2:d4:83:78:40:05:04:62:
7f:0b:6b:f9:74:5a:8a:bd:2f:6f:85:88:ed:2d:d5:
f8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D2:53:14:C9:C0:A8:CB:C1:40:28:BB:76:21:7E:44:93:B1:64:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2178FEF81A0711F1AF8D018BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.176.0/23
154.88.41.0/24
154.88.56.0/24
154.88.58.0/24
154.90.174.0/23
154.90.188.0/24
154.90.190.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:49:06:47:3f:65:66:c8:4b:2d:c9:89:80:d0:76:ca:47:38:
fd:ca:50:50:42:c8:d0:c5:43:38:7c:7a:09:74:a0:e9:0d:ba:
75:84:60:c2:33:8d:ef:f3:1b:f9:7b:b8:cc:24:ac:e2:b8:db:
ee:9a:21:0c:d8:cd:23:87:7a:0e:a4:2f:21:29:c7:9e:57:38:
ab:07:bb:e4:4f:2d:7c:f5:64:bb:a3:61:4f:4b:ad:a6:fa:25:
dd:0e:3c:2c:d1:cd:5e:89:94:ca:36:a4:55:94:db:09:b2:c1:
a4:1a:a6:40:25:01:94:47:c4:f3:f9:6e:21:45:2c:97:12:05:
b2:60:eb:15:cc:19:bb:5e:ee:76:d2:dc:b7:01:f1:48:cf:07:
37:50:f3:58:17:1a:0c:9f:48:95:16:37:78:d7:0b:a1:6d:00:
39:1f:1d:e6:66:7c:ae:24:1f:b2:f6:87:28:73:94:2e:2e:0a:
e4:a9:43:ce:86:7a:e7:d9:da:cc:2f:9a:0a:4f:a4:63:05:d4:
87:37:09:57:4b:85:3b:10:1f:cf:a4:34:9e:7c:7f:d2:d9:b3:
0f:3c:81:bd:0e:e0:07:4d:55:6b:7e:c3:ec:64:a7:7a:cd:05:
33:96:c5:55:9c:92:6f:9a:f5:d2:0c:63:28:33:f1:84:d9:d8:
7a:30:35:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:13:47 2026 by rpki-client