Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5696324A161011F19E41A3A4DAE4EC9C.roa
File: 5696324A161011F19E41A3A4DAE4EC9C.roa (raw, json)
Hash identifier: /uM7up4OPqeLLohHqv+SV0JgBTnwlTqGMGwo2s3OWWo=
Subject key identifier: 6C:24:8E:CC:18:CF:67:4B:B4:44:0F:A9:6D:75:FA:FD:95:BF:FC:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCC2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5696324A161011F19E41A3A4DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 08:18:05 +0000
ROA not before: Mon 02 Mar 2026 08:18:01 +0000
ROA not after: Fri 02 Mar 2029 08:18:01 +0000
asID: 17561
IP address blocks: 154.80.112.0/24 maxlen: 24
154.80.113.0/24 maxlen: 24
154.80.114.0/24 maxlen: 24
154.80.115.0/24 maxlen: 24
154.80.116.0/24 maxlen: 24
154.80.117.0/24 maxlen: 24
154.80.118.0/24 maxlen: 24
154.80.119.0/24 maxlen: 24
154.80.120.0/24 maxlen: 24
154.80.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113858 (0x1bcc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 08:18:01 2026 GMT
Not After : Mar 2 08:18:01 2029 GMT
Subject: CN=69a547bd-857f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:03:67:e3:cb:6c:e5:dc:4c:9c:b0:f6:57:80:
2f:dd:69:0c:ba:22:ca:81:12:b8:da:11:e3:75:33:
fc:32:63:68:13:0b:9c:4b:5e:9d:3a:53:a0:9f:3b:
2a:fc:5d:29:75:17:0f:6c:e8:77:b9:7a:29:a9:a0:
d7:cc:9c:3b:9b:7a:5e:99:e7:f5:10:02:ce:07:30:
1b:d9:16:4b:5e:d4:90:e4:43:da:be:1f:b5:3f:3e:
aa:40:c2:4e:17:f3:b3:ef:8b:96:98:90:eb:90:cd:
be:b9:f7:79:7c:17:16:e4:8b:5a:70:c3:70:33:bc:
cf:7d:cf:98:97:69:a3:24:7c:ca:c7:42:35:ff:d4:
f5:c9:fa:a3:3b:5c:12:36:d5:a2:6f:91:bf:e0:fd:
eb:55:cc:be:b2:7f:ca:ef:3b:e9:1b:b8:42:3e:af:
9a:d9:2a:f4:74:06:53:7a:b4:fd:b8:7c:23:32:14:
5a:77:53:98:8a:09:4c:27:56:fb:df:d2:36:ec:ce:
05:aa:5b:b7:ad:a0:9b:e4:a0:b5:55:13:62:63:14:
10:47:0d:ed:8a:da:82:3b:32:36:fe:3e:06:2f:72:
1c:2a:9a:a3:9a:79:0e:45:62:3f:08:5d:71:e2:9f:
51:b4:82:71:7c:80:54:b0:2f:22:f3:d0:c4:af:ad:
cd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:24:8E:CC:18:CF:67:4B:B4:44:0F:A9:6D:75:FA:FD:95:BF:FC:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5696324A161011F19E41A3A4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.112.0-154.80.121.255
Signature Algorithm: sha256WithRSAEncryption
c6:99:80:52:83:13:8f:9e:b8:ae:87:68:1c:04:ac:16:5d:48:
d1:f6:91:96:a1:f4:05:e3:ec:d8:c8:18:90:e2:e5:07:e6:0a:
ab:fc:3c:8e:1c:c2:10:85:0f:04:79:fa:6b:f5:49:a4:aa:91:
76:03:00:02:c6:50:d8:43:14:44:95:af:27:fe:49:ca:25:4d:
f4:7f:61:39:cd:5a:db:de:b4:65:a8:89:85:b4:d9:dd:ca:49:
fe:92:d4:68:f6:05:a9:17:54:48:ba:70:28:2d:f8:5c:82:e7:
b5:17:13:5d:08:a4:ca:0f:23:4c:8b:08:c3:a3:ed:7c:38:99:
d7:28:47:15:f6:50:95:74:bd:62:d6:e3:03:10:7c:8d:b1:69:
bc:65:e9:6b:88:bc:94:5e:a3:4f:43:b5:c2:fd:91:c3:9d:70:
20:eb:5b:64:47:00:76:68:14:54:b0:31:1a:b7:76:78:c9:84:
77:2a:98:ab:b3:aa:a5:1a:98:8c:2e:a5:c9:e4:40:c2:ba:48:
74:f4:05:cd:2f:ee:fc:45:73:0a:d8:51:c0:40:67:7a:f1:2d:
bb:93:48:65:e3:5a:80:dd:2e:08:71:56:e5:ca:49:72:a4:bb:
49:d9:52:bc:9b:22:47:51:0e:34:48:17:75:eb:18:32:a7:b9:
d0:5f:00:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:49 2026 by rpki-client