Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58BFA7C8194D11F1B76D0D8FDAE4EC9C.roa
File: 58BFA7C8194D11F1B76D0D8FDAE4EC9C.roa (raw, json)
Hash identifier: 0EW24Lse7OZQSVf7k/eSrXh/khGiEL1ntkdxQSuVN6Y=
Subject key identifier: 69:B4:82:53:80:1F:20:CE:81:A2:93:0F:A3:9C:2E:9A:97:CA:EF:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58BFA7C8194D11F1B76D0D8FDAE4EC9C.roa
Signing time: Fri 06 Mar 2026 11:12:22 +0000
ROA not before: Fri 06 Mar 2026 11:12:17 +0000
ROA not after: Sun 05 Apr 2026 11:12:17 +0000
asID: 271988
IP address blocks: 154.88.160.0/20 maxlen: 24
154.88.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Mar 2026 00:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114179 (0x1be03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 6 11:12:17 2026 GMT
Not After : Apr 5 11:12:17 2026 GMT
Subject: CN=69aab696-2de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c0:62:74:88:6b:b6:f0:c8:7d:ed:61:25:dc:
15:74:1d:20:61:33:e3:91:c7:b5:86:15:0f:d3:bf:
7a:4d:68:18:1e:a8:4f:b0:3d:60:4e:61:66:ce:4b:
84:cd:fa:7d:ad:a9:31:90:6f:39:b5:35:e4:ff:da:
de:0a:27:dc:48:c6:f5:4c:14:4d:d1:c5:07:f7:7c:
3e:8f:db:fc:90:05:4a:6d:e5:1b:f9:cb:04:e4:62:
cf:db:66:fe:49:78:87:e7:39:f6:46:7c:4d:d6:f7:
b9:5c:c5:54:68:b2:47:77:b0:85:05:5b:1f:67:4c:
a7:2b:ba:b2:88:c9:c3:b7:d0:46:8a:94:d9:9f:05:
1e:ff:89:42:fa:d9:6d:94:94:9a:ea:17:d8:1d:eb:
4a:34:4d:3d:9e:f5:a8:1a:13:c5:a4:02:f3:93:ca:
3f:7f:f5:0b:1c:4a:0f:d7:fd:66:45:9f:90:37:53:
4f:53:6c:80:6a:e7:42:d7:fe:78:3e:5c:d3:e6:ad:
6c:72:b7:cc:45:79:cc:08:88:c4:38:30:74:9f:0e:
3c:4f:04:40:70:12:bc:34:4e:d9:43:36:ea:ef:04:
01:c9:0d:a6:6e:22:51:6e:48:95:c4:e4:64:2d:c4:
c6:fd:46:2f:12:86:b1:51:c5:76:8f:86:fb:a6:e7:
ab:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B4:82:53:80:1F:20:CE:81:A2:93:0F:A3:9C:2E:9A:97:CA:EF:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58BFA7C8194D11F1B76D0D8FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.160.0-154.88.179.255
Signature Algorithm: sha256WithRSAEncryption
4c:41:77:a8:20:60:08:9a:84:c5:fd:02:1b:18:b5:9d:d2:5a:
3e:e0:6d:18:cd:5f:24:b5:6f:bf:a3:e3:84:3f:d0:81:82:b4:
c3:19:17:c1:55:6e:86:ee:fc:8e:d5:6a:c8:86:d7:3b:5e:cd:
2c:5d:2d:0a:ca:ef:cd:1f:83:2c:5a:fb:06:dc:04:03:e0:f3:
3d:0e:e9:c5:2a:8f:82:bd:29:46:76:d5:f3:c8:ae:5e:a0:b8:
0a:55:ef:87:9f:16:b7:18:a9:68:72:f1:c1:7e:5a:3d:91:17:
8b:00:b3:7a:31:8c:e3:35:cc:3b:d1:e2:01:bc:e8:87:9f:23:
54:6d:31:0d:dd:ed:9c:87:0a:36:c9:00:9d:87:04:24:7d:67:
29:61:0e:e0:f5:bc:60:01:32:1f:ce:d0:13:a3:a5:52:3d:a9:
88:9d:79:39:d8:c4:43:d3:29:47:e5:31:a2:32:95:08:01:1c:
15:22:b3:d4:3e:a2:84:74:35:ec:86:41:1b:3c:c9:c1:ab:7e:
41:1c:42:8e:80:b8:67:0c:a0:f4:6d:f8:e8:67:01:15:e2:44:
78:db:3e:ea:37:f3:1c:b4:3a:9d:31:c3:0d:ae:28:e7:77:a9:
de:68:34:7b:03:b5:4c:15:9f:d4:eb:f0:10:f4:d3:38:e2:db:
7d:a9:32:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 06:08:24 2026 by rpki-client