Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EAA04D8160F11F193B65CA0DAE4EC9C.roa
File: 7EAA04D8160F11F193B65CA0DAE4EC9C.roa (raw, json)
Hash identifier: mAf3G4dH+foAEZ+XwPSYXryxc2Cbk7hUrDoFIit6JbQ=
Subject key identifier: 01:BB:40:4E:0C:0A:DA:57:98:A1:C4:45:C3:5A:32:00:0A:F0:30:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCC0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EAA04D8160F11F193B65CA0DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 08:12:03 +0000
ROA not before: Mon 02 Mar 2026 08:11:58 +0000
ROA not after: Fri 02 Mar 2029 08:11:58 +0000
asID: 17561
IP address blocks: 154.80.102.0/24 maxlen: 24
154.80.103.0/24 maxlen: 24
154.80.104.0/24 maxlen: 24
154.80.105.0/24 maxlen: 24
154.80.106.0/24 maxlen: 24
154.80.107.0/24 maxlen: 24
154.80.108.0/24 maxlen: 24
154.80.109.0/24 maxlen: 24
154.80.110.0/24 maxlen: 24
154.80.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113856 (0x1bcc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 08:11:58 2026 GMT
Not After : Mar 2 08:11:58 2029 GMT
Subject: CN=69a54653-e122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:36:31:56:00:ad:b0:8e:63:6a:82:25:ad:40:
11:1f:84:46:6e:2d:f4:b1:eb:55:36:13:97:4b:b0:
31:b9:e9:a4:6b:e5:a4:bf:22:6c:f3:60:a1:4f:d9:
de:46:51:0b:d1:62:a6:c9:de:c6:ef:bf:81:84:b5:
fa:27:ff:92:a0:ca:ed:68:5e:c6:c4:34:b6:e2:f5:
de:bb:0f:56:59:45:cc:65:7a:0b:1f:f3:c0:d3:20:
81:39:18:d3:94:ff:9a:71:ce:b1:ac:af:e7:e5:21:
e9:53:85:0b:bf:87:21:8b:52:41:bd:b6:73:5f:ee:
37:2b:f9:10:39:ed:d2:6b:6e:48:d8:fb:a8:57:e8:
3f:05:0d:02:77:42:e1:21:c6:3c:20:36:50:41:5a:
c1:c3:8a:36:d5:68:90:50:9c:2b:ee:37:61:68:ee:
d6:40:6b:d1:4b:a1:f2:91:c0:f9:ae:d1:7c:46:89:
46:14:2c:52:52:9f:96:22:e4:d0:39:7a:83:e3:71:
4f:b6:85:83:1f:7f:cf:17:40:21:52:fe:02:21:8f:
fd:ab:e1:e6:f1:09:1d:4f:e5:c1:4d:83:df:5e:d5:
29:6c:0f:02:76:67:73:a1:5f:9c:70:23:0b:38:07:
c4:48:9e:4a:59:70:ec:8f:97:d5:28:3b:2c:b1:e5:
23:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BB:40:4E:0C:0A:DA:57:98:A1:C4:45:C3:5A:32:00:0A:F0:30:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EAA04D8160F11F193B65CA0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.102.0-154.80.111.255
Signature Algorithm: sha256WithRSAEncryption
03:1d:49:56:bb:e7:a5:e4:88:ad:10:0d:3e:87:d5:5c:f4:6c:
03:65:27:38:a9:74:2d:b1:bc:15:5d:94:16:eb:e2:61:bc:62:
6c:5a:79:cd:da:54:49:5f:7a:1a:6e:24:d2:bb:e7:ed:6c:18:
c3:b7:15:c9:eb:ea:a8:d9:e6:a5:32:9c:b6:0c:f2:94:59:3c:
fe:fb:32:17:8c:69:de:1f:4c:25:fc:32:15:8f:3f:14:eb:aa:
c9:db:39:0c:d6:26:fa:cf:ac:47:e2:4c:39:54:24:26:24:b9:
3d:16:63:f0:03:9f:08:ea:57:5e:7c:b0:24:3f:42:b7:51:9b:
d2:93:e9:b4:5d:47:90:59:5d:44:74:ab:eb:5b:55:62:c6:8c:
c8:37:65:a2:53:88:91:fa:bd:8e:11:99:f2:e8:7d:7a:89:38:
d2:93:6d:e4:cd:21:6c:e6:d5:ce:5c:1b:ab:40:65:3f:0a:b9:
3c:62:b3:ff:88:8d:36:48:b5:6e:75:22:b5:df:e1:c2:50:58:
b3:5e:73:9b:69:5a:b0:53:c0:57:7f:55:d2:da:cd:3d:27:ee:
2a:a5:29:23:d8:69:8b:e7:89:be:97:ad:3d:12:00:ea:23:be:
3a:30:c5:54:e1:4e:53:15:11:56:c9:94:9b:54:bb:20:4f:9a:
54:3b:cb:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:16:06 2026 by rpki-client