Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81648A3A1B8D11F1A057A7E6DAE4EC9C.roa
File: 81648A3A1B8D11F1A057A7E6DAE4EC9C.roa (raw, json)
Hash identifier: kYvq45wwJCxQgEnYs3Jp7gtTjDb4aKF4ZCy0uw4ctqA=
Subject key identifier: A8:69:82:79:C8:39:34:58:1A:09:4E:F5:84:A6:06:64:E5:F2:6A:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE6E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81648A3A1B8D11F1A057A7E6DAE4EC9C.roa
Signing time: Mon 09 Mar 2026 07:56:41 +0000
ROA not before: Mon 09 Mar 2026 07:56:35 +0000
ROA not after: Fri 09 Mar 2029 07:56:35 +0000
asID: 17561
IP address blocks: 154.90.244.0/24 maxlen: 24
154.90.245.0/24 maxlen: 24
154.90.246.0/24 maxlen: 24
154.90.247.0/24 maxlen: 24
154.90.248.0/24 maxlen: 24
154.90.249.0/24 maxlen: 24
154.90.250.0/24 maxlen: 24
154.90.251.0/24 maxlen: 24
154.90.252.0/24 maxlen: 24
154.90.253.0/24 maxlen: 24
154.90.254.0/24 maxlen: 24
154.90.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114286 (0x1be6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 9 07:56:35 2026 GMT
Not After : Mar 9 07:56:35 2029 GMT
Subject: CN=69ae7d38-d993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:72:99:e3:74:ec:5e:0d:8e:66:c8:2c:7e:d5:
9f:4c:8a:88:07:92:32:fa:7f:6e:fa:8e:b6:c5:ea:
38:97:47:d9:f0:72:86:1e:d6:41:8d:a4:3b:58:de:
86:5d:1d:fc:15:ea:5e:67:30:d9:e9:ca:9f:7a:e2:
21:a9:05:87:e7:83:fd:dd:59:2d:e0:af:46:1c:52:
e7:b0:29:26:98:1e:d9:59:af:97:62:5d:8b:b8:31:
cc:e3:a1:3e:60:e3:1e:71:7f:1d:ae:15:46:6b:eb:
2b:4b:cd:ec:45:e7:5d:42:4b:47:4f:6f:17:c2:c7:
b9:3d:57:32:3d:74:82:31:4b:48:17:18:59:0e:84:
c3:e3:58:d9:3e:12:4c:59:da:f3:db:de:56:6e:de:
8b:9b:26:cd:11:31:7c:b3:af:a6:4b:8e:d6:70:06:
7b:e7:f6:e6:79:96:56:a9:77:e4:53:b8:20:21:23:
28:2d:ac:c0:13:8d:8e:f3:a2:25:45:07:fa:3b:e9:
eb:b5:20:67:e7:1d:cb:84:cf:84:80:20:4b:e8:c8:
f4:9c:bd:1b:14:95:82:b8:dd:58:ea:b6:ce:c8:73:
b8:1c:63:53:98:c6:03:d0:dc:9c:4a:5f:cf:35:d5:
35:57:88:73:36:9d:ec:6d:1a:19:30:e1:87:67:5c:
7f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:69:82:79:C8:39:34:58:1A:09:4E:F5:84:A6:06:64:E5:F2:6A:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81648A3A1B8D11F1A057A7E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.244.0-154.90.255.255
Signature Algorithm: sha256WithRSAEncryption
35:6d:d9:c8:b5:e0:0f:9d:10:52:4f:57:ae:46:17:88:43:d8:
cd:89:dd:4e:a2:64:74:d1:b7:27:ce:4b:a7:14:f8:ba:54:81:
b9:36:de:c0:7e:bc:f8:82:cb:db:a1:60:79:48:be:9b:5c:05:
6f:50:77:5b:1f:6e:d0:9f:0e:ee:26:f5:91:41:dc:9d:2e:42:
31:3a:6b:88:3a:57:08:a2:6e:86:fb:b5:f8:8f:70:62:ad:53:
02:4b:03:a4:b1:8b:51:c7:92:e8:45:05:e6:f8:25:92:05:8d:
ef:e9:22:79:82:c2:3c:35:98:30:7c:26:12:5c:1c:cf:24:e2:
0b:67:7c:c4:89:de:58:ea:5a:b4:a5:4b:09:12:24:39:0a:7b:
28:27:41:cd:55:47:d8:82:d9:f1:2a:60:6f:7f:04:ec:03:35:
35:54:e3:ba:5a:5e:c4:20:2e:d3:9f:17:cf:2c:df:fe:1d:88:
aa:03:5f:21:ba:e6:a5:41:14:09:07:bf:e1:62:ea:19:aa:06:
db:33:a5:5e:06:c1:d1:e5:91:fd:83:05:dd:e6:4e:4a:6d:5e:
68:87:53:7f:83:da:aa:6b:8a:68:8d:90:12:20:9e:cd:18:0f:
79:81:cc:f6:24:d8:c1:bb:9a:97:40:e6:f7:b9:0c:83:57:b2:
e9:4c:b2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:48 2026 by rpki-client