Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55BAC476161511F18CF67AC1DAE4EC9C.roa
File: 55BAC476161511F18CF67AC1DAE4EC9C.roa (raw, json)
Hash identifier: ZMoSKEK1kMnyofHYn0vy4+4PeS7T17KYn5gCm6KREjk=
Subject key identifier: 68:D3:68:35:C4:41:8A:B2:38:F4:6C:2A:55:84:82:B3:9C:41:8E:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55BAC476161511F18CF67AC1DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 08:53:51 +0000
ROA not before: Mon 02 Mar 2026 08:53:47 +0000
ROA not after: Fri 02 Mar 2029 08:53:47 +0000
asID: 17561
IP address blocks: 154.198.104.0/24 maxlen: 24
154.198.105.0/24 maxlen: 24
154.198.106.0/24 maxlen: 24
154.198.107.0/24 maxlen: 24
154.198.108.0/24 maxlen: 24
154.198.109.0/24 maxlen: 24
154.198.110.0/24 maxlen: 24
154.198.111.0/24 maxlen: 24
154.198.112.0/24 maxlen: 24
154.198.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113876 (0x1bcd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 08:53:47 2026 GMT
Not After : Mar 2 08:53:47 2029 GMT
Subject: CN=69a5501f-ddec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f6:72:f1:d1:52:3e:d7:e5:0d:61:d2:fb:f9:
76:25:1b:e3:21:d9:96:ab:03:ee:08:cb:1b:4d:24:
b7:12:a9:a4:a0:78:a0:3f:4e:5c:5d:bc:ec:83:e7:
d9:30:3e:d6:f2:cc:c9:46:f3:1c:dc:e8:92:db:62:
70:89:f9:fc:8b:67:65:40:a5:c8:af:fa:ee:07:f0:
a8:4d:1e:22:45:e3:f6:0b:75:57:88:70:fb:0f:4c:
da:78:dd:cb:18:60:b7:8d:e5:de:a5:2b:8c:95:49:
2c:5e:7b:6a:95:72:28:82:a2:78:8e:c6:6b:6e:a3:
2d:a3:06:cf:77:98:03:d2:d4:a3:4c:a8:53:b3:44:
28:8d:58:c5:f1:34:c0:cc:83:f4:46:a8:17:cc:71:
fe:4a:8a:e2:e6:86:d6:11:06:5b:da:ef:42:fa:f7:
11:3a:f9:fa:42:e1:de:96:2e:0e:a0:69:9c:6a:df:
22:51:8e:15:4a:5f:ee:8c:50:52:1d:7f:f6:5d:d6:
24:29:f3:cb:57:64:1a:e5:02:81:5d:8d:03:a0:cc:
8a:99:f1:c2:9b:0c:ae:a8:70:c7:2a:f7:c4:bb:4b:
14:01:a4:bf:3b:e0:5a:15:68:e7:40:67:7c:bc:5a:
d3:42:d6:2d:f6:ae:86:8f:08:dc:5c:fa:54:bd:37:
bf:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D3:68:35:C4:41:8A:B2:38:F4:6C:2A:55:84:82:B3:9C:41:8E:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55BAC476161511F18CF67AC1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.104.0-154.198.113.255
Signature Algorithm: sha256WithRSAEncryption
04:02:9b:8d:65:7a:04:07:dd:12:5b:3d:5a:a3:6c:0d:2a:43:
5d:51:88:35:31:b6:9d:a6:3c:d2:9c:1e:dc:ad:25:5a:c7:77:
4c:48:48:2b:74:d6:19:22:91:da:93:c3:0e:2d:14:cb:72:29:
c2:c1:58:47:13:cc:b0:a9:18:0c:b6:24:fa:52:19:ca:41:d5:
0a:4b:c1:5a:9b:97:cf:49:7e:9f:38:b0:e7:4c:11:28:86:d1:
13:b9:f7:33:97:60:d7:8d:55:a6:40:b7:45:cd:04:bd:03:2a:
93:6f:16:4e:f6:17:39:5a:b9:f7:0e:d1:c5:c1:6e:c4:3a:3c:
e5:84:0f:80:e5:b3:1d:be:d0:25:47:8b:9e:75:bd:8a:bd:23:
5d:19:29:65:ca:ed:dc:93:b1:3a:5d:8d:8b:01:f7:54:07:f6:
97:b6:df:d4:0d:07:f3:8b:36:16:30:87:1b:a5:c6:2b:22:21:
0a:c3:29:41:cc:0f:20:76:d0:dd:a5:2e:4f:3e:ba:fd:2f:58:
8d:54:f1:2e:06:62:4d:34:c8:08:b4:33:fb:ca:2d:61:0d:fe:
a3:4e:34:50:d1:2a:fd:4a:90:50:c2:06:fc:b7:6b:f6:91:84:
8a:e5:ce:a3:f7:3d:00:ec:e6:5e:22:bf:8a:0f:fc:f6:05:de:
d3:8a:c5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:17:34 2026 by rpki-client