Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/300B3B4A19F611F1A9E93AA5DAE4EC9C.roa
File: 300B3B4A19F611F1A9E93AA5DAE4EC9C.roa (raw, json)
Hash identifier: /aKEX1po2NNxN+GEnYkI451iJwzaVbDkajNQ0un2SGQ=
Subject key identifier: A0:CD:F8:E7:04:68:3B:CE:5C:76:B7:76:30:E9:5B:6D:9C:2E:B2:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE22
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/300B3B4A19F611F1A9E93AA5DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 07:20:59 +0000
ROA not before: Sat 07 Mar 2026 07:20:53 +0000
ROA not after: Thu 04 Jun 2026 07:20:53 +0000
asID: 142403
IP address blocks: 154.92.18.0/24 maxlen: 24
154.92.19.0/24 maxlen: 24
154.94.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114210 (0x1be22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 7 07:20:53 2026 GMT
Not After : Jun 4 07:20:53 2026 GMT
Subject: CN=69abd1db-1abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6c:31:4b:e8:4a:91:16:cf:24:b4:0b:ca:15:
d1:35:86:2a:f7:97:aa:ef:99:90:f1:d4:f8:78:af:
a0:4d:c6:1c:68:1e:80:3c:d9:20:00:22:b1:d5:15:
e8:97:5c:78:bd:8f:20:83:94:e2:bc:3a:9b:e1:5f:
2e:d6:27:72:7b:34:9e:de:11:8e:6f:9b:78:8f:f1:
cd:8f:53:c1:bb:15:bc:31:53:9e:2b:77:21:8e:d9:
91:9b:e5:ab:0c:48:53:72:d6:5a:da:a4:67:18:21:
bc:95:94:e2:fa:af:98:99:6d:80:47:1a:23:67:4c:
9e:ff:6c:5f:6f:24:66:fd:c5:ce:00:ad:d0:7f:ca:
8c:78:9c:0d:24:41:d0:f2:92:df:56:92:89:aa:6f:
35:77:91:e5:02:02:fc:31:a8:10:d0:be:a3:c1:f7:
29:f3:0f:72:a3:e8:76:0a:13:18:c2:1c:e6:a5:5e:
3b:bf:ee:0e:2f:93:b9:9a:20:7b:8a:af:fb:0e:b3:
9c:54:55:72:ee:c7:2c:8b:43:31:5d:cc:d9:cf:ca:
7e:f0:ef:87:23:ac:0f:7a:81:22:ba:70:9b:34:07:
31:b3:16:b6:1d:a6:52:7d:54:8e:7b:a3:79:38:89:
bd:4a:fc:d7:94:40:f6:d5:92:ec:7f:87:bd:18:52:
2c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CD:F8:E7:04:68:3B:CE:5C:76:B7:76:30:E9:5B:6D:9C:2E:B2:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/300B3B4A19F611F1A9E93AA5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.18.0/23
154.94.5.0/24
Signature Algorithm: sha256WithRSAEncryption
61:96:89:10:22:ef:b8:33:3d:49:58:e6:ff:c1:b6:f3:db:cd:
1f:11:8f:ca:e3:e0:fc:9d:a5:f8:cb:b4:09:f9:2c:c2:5c:c9:
64:b0:04:e2:2a:c0:70:4b:83:5d:c2:85:d4:8f:d8:0f:18:7a:
f7:ab:ca:3f:05:3e:8f:dd:ce:fa:1d:d8:5d:3c:f4:d0:67:1c:
3d:bf:6a:90:98:12:17:c4:51:45:1a:7c:7e:05:6b:da:ff:d4:
6a:3c:82:75:11:c5:03:5c:9e:e9:66:53:71:53:ca:64:af:5b:
14:cb:0d:a8:08:be:65:5c:78:dc:51:25:fd:ee:35:cb:3d:6f:
23:4c:61:11:cc:b2:e7:2c:ca:d2:90:78:f3:a9:5f:7d:5e:e1:
28:9e:07:14:9b:42:ae:c6:04:d8:7a:b8:b1:ff:0a:f3:27:70:
4e:b6:83:75:49:c6:b3:2a:4e:4c:7a:51:b9:b8:0a:4d:33:a6:
66:ec:a3:1c:59:03:61:38:40:26:89:3a:bb:b5:de:e8:76:af:
85:de:73:e0:a4:8d:bd:39:84:8c:66:d2:c7:55:ac:2a:40:bc:
4e:82:05:33:e1:85:57:ff:a9:62:59:0e:9e:27:41:17:77:cc:
18:e7:ef:71:db:74:fb:84:43:83:0e:59:12:89:4b:ac:bf:4b:
57:84:b3:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:16:38 2026 by rpki-client