Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FB93FD0186511F18AF5CE7FDAE4EC9C.roa
File: 2FB93FD0186511F18AF5CE7FDAE4EC9C.roa (raw, json)
Hash identifier: ppgAxCN203aMaYtHXVz3pUuXD1bbq8ObGkcBQe6mRWU=
Subject key identifier: 15:2E:35:94:08:7C:6B:A9:CB:A2:06:7E:89:E7:7D:0B:DC:80:FA:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BDB3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FB93FD0186511F18AF5CE7FDAE4EC9C.roa
Signing time: Thu 05 Mar 2026 07:30:30 +0000
ROA not before: Thu 05 Mar 2026 07:30:26 +0000
ROA not after: Tue 26 May 2026 07:30:26 +0000
asID: 9294
IP address blocks: 154.211.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114099 (0x1bdb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 5 07:30:26 2026 GMT
Not After : May 26 07:30:26 2026 GMT
Subject: CN=69a93116-5d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2b:97:9b:c5:18:e7:29:eb:44:ce:ce:e5:f4:
d3:55:27:84:73:44:c4:42:f1:fb:83:6d:77:7b:0f:
cf:87:7d:de:e3:20:82:32:12:ac:c1:5e:a8:90:7c:
3f:23:a1:a5:7e:04:0c:11:cb:b0:73:3c:e7:67:13:
9f:b6:f9:11:bd:53:b2:db:da:58:37:0b:f9:67:71:
5b:3f:3d:87:80:de:30:7e:e9:cc:7d:5e:0b:88:f0:
32:cd:8a:18:ac:3d:4a:00:fb:82:8c:44:49:3a:60:
1e:46:6c:37:82:cc:ac:4e:ed:c7:82:df:68:78:a8:
25:79:46:cc:c5:f5:15:34:c2:29:f7:58:25:96:0b:
75:4d:c2:81:2d:c5:8d:a8:c0:b3:e8:bd:f5:a9:08:
a2:57:f3:16:17:1b:96:f3:c5:6c:77:ea:12:a2:65:
3e:2b:2e:1a:18:70:ff:8e:12:de:1f:e2:f0:ad:40:
45:c5:00:b1:02:55:5d:44:71:0c:ac:27:6d:62:74:
45:2e:a1:35:30:40:be:68:74:83:58:8e:1d:2a:c8:
d4:f5:d5:98:b2:1f:ed:d9:33:00:94:6c:15:c3:74:
6c:6b:73:dd:5a:a4:3f:c5:17:dd:21:14:1c:ab:cb:
59:38:19:c0:b1:ce:2c:db:ef:a6:e0:86:bb:77:28:
f1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:2E:35:94:08:7C:6B:A9:CB:A2:06:7E:89:E7:7D:0B:DC:80:FA:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FB93FD0186511F18AF5CE7FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.32.0/19
Signature Algorithm: sha256WithRSAEncryption
9d:b8:46:bb:1d:e1:61:1a:2b:2f:d3:91:7b:b4:a8:f3:a3:f6:
53:87:ad:ab:5e:57:95:da:bc:a9:24:39:45:de:e1:68:d4:6b:
79:b4:f9:bf:0f:c6:bc:f9:db:8c:08:53:c4:29:69:8a:cb:97:
19:8a:ea:6b:fe:cd:d7:08:96:db:02:64:77:dc:48:95:28:b9:
5c:a6:4e:52:b6:4f:fc:65:07:72:e6:59:14:5f:9e:cb:87:10:
60:53:12:f1:cb:0b:12:75:32:76:fd:e4:d9:4c:cf:dc:b7:dd:
6e:a1:d6:f1:d8:b3:60:1a:ad:75:d8:c8:f6:10:d6:9b:e9:e2:
f1:5d:d4:e7:5a:85:49:72:3c:54:5c:f4:dd:0b:aa:34:23:56:
25:b8:6d:5d:69:07:72:de:97:9a:17:e4:96:e5:37:71:19:73:
ab:6f:6d:1c:26:ca:c1:a7:bc:5e:09:63:8e:b6:20:2b:17:52:
39:2b:5c:42:13:9a:7a:69:bb:57:11:ec:9b:14:18:87:55:23:
92:e6:41:92:0a:fa:47:fb:c3:85:94:0e:73:0a:1b:71:45:26:
54:d4:a1:54:4b:22:8d:ee:29:50:e7:34:24:09:fe:42:d8:3f:
77:2d:2a:af:b7:61:fa:76:90:93:cf:ef:08:34:00:d7:bc:21:
62:70:93:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 22:52:58 2026 by rpki-client