Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72077D7225DD11F1A52CF591DAE4EC9C.roa
File: 72077D7225DD11F1A52CF591DAE4EC9C.roa (raw, json)
Hash identifier: 1jaeTKiM+NdEmkp9oT6ZaYj4TCq2keP0saiHCaqCPEc=
Subject key identifier: 70:03:F7:67:AD:B9:D8:F1:D0:3C:80:8B:23:B4:5C:78:A6:A3:11:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C05A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72077D7225DD11F1A52CF591DAE4EC9C.roa
Signing time: Sun 22 Mar 2026 10:54:06 +0000
ROA not before: Sun 22 Mar 2026 10:54:01 +0000
ROA not after: Sun 01 Aug 2027 10:54:01 +0000
asID: 2914
IP address blocks: 154.214.194.0/24 maxlen: 24
154.214.195.0/24 maxlen: 24
154.214.196.0/24 maxlen: 24
154.214.202.0/24 maxlen: 24
154.214.203.0/24 maxlen: 24
154.214.208.0/24 maxlen: 24
154.214.209.0/24 maxlen: 24
154.214.216.0/24 maxlen: 24
154.214.220.0/24 maxlen: 24
154.214.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114778 (0x1c05a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 22 10:54:01 2026 GMT
Not After : Aug 1 10:54:01 2027 GMT
Subject: CN=69bfca4e-faee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fd:63:de:4c:3c:1b:32:14:78:28:cf:7e:76:
f9:5d:e8:f6:2b:8f:2a:1a:d7:93:66:30:db:60:cb:
03:08:84:61:af:0e:b2:9d:bd:37:19:65:93:95:4b:
ab:52:3b:3c:0e:dc:b1:ce:66:57:91:3e:9d:c9:a9:
0b:65:c8:fd:55:f9:35:24:6d:b4:38:27:0f:e2:f1:
7a:07:d3:c4:f3:5e:e0:62:4d:43:2d:6d:f7:51:f5:
bb:2f:d1:aa:35:cc:98:d3:02:b8:21:46:ba:ce:4f:
56:6e:2f:69:74:d9:10:b9:0a:1f:12:e8:f1:c7:3e:
68:7f:94:34:53:b0:26:c3:d1:28:fd:02:f6:04:7d:
43:6c:77:69:f2:ec:67:89:88:b4:4a:38:e4:a7:3f:
da:ce:4a:62:56:60:1e:92:64:5a:1f:4d:11:6d:47:
da:96:70:ad:8c:1f:aa:f5:89:24:e4:f2:74:e1:3a:
a6:dc:8d:85:e9:bc:b0:de:38:70:b0:64:f1:da:e6:
ff:c9:64:ea:28:5c:56:0e:ef:15:64:f7:94:56:5d:
d1:7d:e7:5a:6e:06:ab:24:1e:6f:3a:ed:ab:e7:af:
0b:0e:19:19:f8:90:7c:4e:71:c3:3a:a2:ce:db:95:
d4:e2:b7:92:0b:f2:50:6a:a9:f6:fe:84:51:7e:b5:
99:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:03:F7:67:AD:B9:D8:F1:D0:3C:80:8B:23:B4:5C:78:A6:A3:11:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72077D7225DD11F1A52CF591DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.194.0-154.214.196.255
154.214.202.0/23
154.214.208.0/23
154.214.216.0/24
154.214.220.0/23
Signature Algorithm: sha256WithRSAEncryption
18:58:3e:94:ff:1f:75:fe:8c:5a:af:98:be:96:47:52:77:b4:
38:0a:b3:f0:78:ef:ec:9e:62:d2:16:7d:ce:9b:08:e6:34:32:
8e:fc:9c:1f:df:6c:36:90:02:f6:96:9f:8c:34:96:c4:8d:30:
84:ee:03:f5:fe:95:66:ce:81:a7:f7:0a:4c:fe:b1:12:5b:a4:
83:c4:66:ca:6d:72:b7:69:cf:4b:3d:19:ee:00:24:fd:10:3a:
fc:be:a1:e4:05:0c:7a:b6:39:95:e9:2b:11:b3:62:ae:51:f6:
82:d1:a8:f9:0a:b2:e5:74:68:31:e8:4a:4d:b0:4e:c7:be:06:
56:85:12:d3:5a:f8:3b:7e:90:67:15:fc:fa:72:7b:f3:5a:7d:
f7:21:1f:af:2b:4a:99:8a:38:48:4a:c2:c5:76:8e:25:38:48:
17:0a:87:c7:b4:1f:08:53:19:5b:ef:9a:6e:fe:f8:d3:d2:ea:
f8:5d:cb:a1:9b:9b:91:fe:4d:0b:95:2f:ef:bc:cf:18:05:7b:
05:90:8e:07:fb:b7:2f:ac:a6:eb:7c:b1:bf:cd:8e:a8:74:f9:
4e:f0:61:ba:a5:ad:bd:b0:19:ad:0d:c3:d9:55:b9:81:f6:d8:
e3:dd:6d:ad:15:34:ff:9e:2e:e8:9f:0e:96:01:12:5e:13:db:
50:fa:9f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:15:45 2026 by rpki-client