Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C79CCA41A1E11F182DC3A95DAE4EC9C.roa
File: 6C79CCA41A1E11F182DC3A95DAE4EC9C.roa (raw, json)
Hash identifier: r9VqllS0UHpbBy5NOPwtNkFi/ZFVBE/psvaXGSNT7Ws=
Subject key identifier: F9:8C:44:BE:48:FA:3B:90:C6:23:F1:7B:5E:E3:BB:FE:58:11:3C:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE3C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C79CCA41A1E11F182DC3A95DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 12:09:00 +0000
ROA not before: Sat 07 Mar 2026 12:08:55 +0000
ROA not after: Wed 07 Mar 2029 12:08:55 +0000
asID: 17561
IP address blocks: 154.199.23.0/24 maxlen: 24
154.199.50.0/24 maxlen: 24
154.199.54.0/24 maxlen: 24
154.199.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114236 (0x1be3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 7 12:08:55 2026 GMT
Not After : Mar 7 12:08:55 2029 GMT
Subject: CN=69ac155c-200b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:92:99:b0:47:1e:97:58:29:f9:8b:72:6a:99:
da:e1:38:74:bb:9a:b2:b9:46:61:44:31:87:0e:69:
35:eb:b4:3d:ca:a8:c6:74:51:0d:09:c8:e2:3a:2a:
d9:b3:0a:b2:07:a7:a7:d9:bd:f2:b2:5b:80:3c:ca:
cc:8a:37:e0:8a:e0:4b:68:64:a5:b6:b2:b7:77:37:
44:74:23:ce:23:2f:9e:be:92:dc:9d:d7:a5:33:21:
99:44:27:55:f9:8c:89:a7:2d:f0:a6:b9:82:8d:a2:
87:65:6a:7c:89:39:42:4e:35:7b:2f:e4:0b:ec:3d:
89:e9:ab:12:5a:38:72:ed:b4:fc:59:6d:d3:92:c4:
d8:ee:5c:2f:bd:ee:82:ee:59:83:c1:8f:19:54:6c:
f5:0e:19:16:0d:ac:e3:4a:03:22:d2:4e:7d:c1:82:
a1:a8:7f:75:73:d3:43:53:73:c6:27:3e:7a:1c:78:
15:af:d2:29:f3:1f:e0:00:1f:06:a3:07:39:b0:07:
3c:31:a2:f7:c3:06:1f:3a:fc:5e:ae:8f:14:b7:74:
a7:a5:78:95:b7:05:3e:13:13:55:91:1e:46:1e:ca:
da:e4:a0:7b:4f:c1:19:06:f5:7f:23:40:5a:96:d3:
44:95:bb:d1:86:e1:c2:02:c4:89:e8:41:c4:24:4e:
bd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:8C:44:BE:48:FA:3B:90:C6:23:F1:7B:5E:E3:BB:FE:58:11:3C:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C79CCA41A1E11F182DC3A95DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.23.0/24
154.199.50.0/24
154.199.54.0/23
Signature Algorithm: sha256WithRSAEncryption
87:4b:9d:37:7d:54:af:1a:d6:ca:7e:57:34:61:c3:c1:8d:7c:
26:87:c0:83:27:82:53:98:54:73:c4:bb:48:9a:ff:24:5b:40:
10:67:42:9b:70:97:95:8a:ad:68:e8:c3:52:41:49:b9:e3:09:
ca:ce:63:2c:51:03:fe:74:d8:95:4b:90:83:65:20:b4:98:72:
c6:f3:9e:dd:da:22:52:60:1d:0a:d9:6f:66:74:73:48:4f:3b:
9b:b4:a6:10:b3:d1:92:ad:a0:9b:e2:d0:5b:68:49:f8:3a:a4:
c1:3d:1e:0f:18:28:79:81:2e:e8:6f:09:4e:21:ff:55:83:7c:
42:40:ee:a0:3e:62:b7:fa:1d:09:3c:88:84:75:e4:2c:6e:57:
af:a2:70:20:43:56:fb:fa:e7:2f:19:44:ad:cd:cc:bd:8e:78:
63:d3:46:f1:f5:c9:5a:54:bb:4b:69:23:6f:66:34:5a:b1:6e:
e6:2b:3e:8f:15:5f:29:f6:2c:75:81:d1:8c:5d:18:cf:de:ca:
52:a6:ce:3f:57:75:9a:90:dc:9b:f2:ab:a4:3c:fc:2c:0f:76:
a3:18:a3:34:40:b0:78:b8:6d:8a:a1:94:c9:5c:01:3c:d2:02:
77:e0:f3:a1:96:d9:66:bc:a0:73:ac:f4:24:85:eb:f5:1c:85:
b5:08:13:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:50 2026 by rpki-client