Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76A2A318268511F1B6A769E7DAE4EC9C.roa
File: 76A2A318268511F1B6A769E7DAE4EC9C.roa (raw, json)
Hash identifier: LNet3bUbSL/87stO27i7jHAwi8au+lazs6SmwvQRP0o=
Subject key identifier: D3:58:0F:E2:F0:17:0E:44:F6:C5:20:EF:12:06:D8:A5:06:0D:B8:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C05D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76A2A318268511F1B6A769E7DAE4EC9C.roa
Signing time: Mon 23 Mar 2026 06:56:49 +0000
ROA not before: Mon 23 Mar 2026 06:56:44 +0000
ROA not after: Fri 12 Jun 2026 06:56:44 +0000
asID: 132585
IP address blocks: 154.194.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114781 (0x1c05d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 23 06:56:44 2026 GMT
Not After : Jun 12 06:56:44 2026 GMT
Subject: CN=69c0e431-178a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:54:2c:dc:40:b2:d2:b3:9b:03:0a:69:7f:5c:
91:83:8e:cc:4d:9c:4f:c6:dc:e2:28:cc:c1:a8:fe:
e6:19:89:b9:8f:6a:67:c0:11:93:26:b4:7a:b2:f6:
67:bc:be:3d:87:74:98:39:2d:ab:ab:2c:52:92:5e:
04:6b:66:61:86:af:33:2f:a3:62:ee:db:29:05:70:
cc:cb:96:66:37:e0:7a:68:9c:0b:a9:27:13:00:09:
ef:d2:34:13:98:1a:1f:5b:04:98:fc:28:1a:21:56:
2d:84:21:56:65:02:84:b5:fa:95:31:d8:0e:45:50:
64:fd:cb:a4:09:6f:be:49:bb:65:26:ae:75:3c:7f:
00:7a:02:c5:e0:50:d4:32:4e:97:a2:73:2a:23:1c:
5b:a8:08:6c:ea:c1:fe:0d:9e:ed:c8:9a:7f:33:5f:
89:9c:ae:c1:3f:0e:4b:59:d0:a6:3d:39:a5:8e:81:
3f:13:3e:1b:ec:8c:1b:8a:69:73:4d:49:a6:2b:fe:
2d:a9:52:3a:68:ac:eb:89:66:02:dd:b8:0c:9e:4d:
c7:cb:bc:1f:4d:af:b2:a5:fd:bc:ed:cb:e2:fd:01:
6d:4f:e9:2a:92:dd:a0:5f:c0:a7:1f:9a:c8:a1:85:
26:a2:d7:f8:69:ec:d4:60:c4:6f:10:1a:48:1c:c5:
26:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:58:0F:E2:F0:17:0E:44:F6:C5:20:EF:12:06:D8:A5:06:0D:B8:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76A2A318268511F1B6A769E7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.34.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e3:5b:e2:d4:2f:2e:5a:9f:85:00:c8:03:c4:38:4e:a7:6f:
db:90:f6:cf:29:3e:42:50:bf:e0:c4:78:56:a2:98:26:0c:fb:
98:05:61:36:30:6a:72:e0:03:64:51:d5:6a:8f:61:d4:d1:0f:
28:ec:fe:bc:fe:27:12:9d:cb:44:b3:69:2d:cc:ae:06:51:5f:
71:fd:d5:df:24:e1:7b:7e:5d:c6:3f:a8:a0:b9:2e:5d:92:50:
a7:cb:0f:33:92:15:ad:7c:ae:4e:a3:ce:e0:41:82:11:26:75:
69:e2:4d:e3:24:a0:97:1f:bd:35:d3:f3:5c:e7:22:08:4d:4f:
de:c1:92:b0:0b:50:0a:be:1b:fc:8e:a7:8f:92:7a:47:50:35:
2b:3a:28:0f:ba:38:7d:d1:db:81:a4:4d:88:0c:3d:c4:36:44:
fc:fa:e6:99:ce:bc:87:ed:2e:bc:be:d1:fd:29:b2:3a:fb:c2:
f9:a7:25:55:d2:62:fe:4f:28:53:bd:79:7e:58:a1:f3:dd:89:
f4:7e:24:80:88:ba:12:45:94:64:5c:2c:12:58:9e:44:10:6b:
ab:99:87:ae:1c:56:a7:d4:24:98:04:1f:60:87:32:42:d6:cc:
4f:1b:ae:9f:a3:1c:cb:97:ce:69:6b:ac:df:61:a3:e6:1d:9b:
45:39:3c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:16:39 2026 by rpki-client