Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8616E54817CB11F18E3197C6DAE4EC9C.roa
File: 8616E54817CB11F18E3197C6DAE4EC9C.roa (raw, json)
Hash identifier: 30iJsSpha7btJKzcwdnV5jx6rYFFmjl6R70BMwXSfTo=
Subject key identifier: EF:F7:42:22:21:AA:A3:C7:09:86:74:CF:6F:7C:61:B6:2D:AF:8E:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BD7D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8616E54817CB11F18E3197C6DAE4EC9C.roa
Signing time: Wed 04 Mar 2026 13:10:32 +0000
ROA not before: Wed 04 Mar 2026 13:10:27 +0000
ROA not after: Tue 07 Apr 2026 13:10:27 +0000
asID: 272092
IP address blocks: 154.83.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114045 (0x1bd7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 4 13:10:27 2026 GMT
Not After : Apr 7 13:10:27 2026 GMT
Subject: CN=69a82f48-0cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cb:da:61:b3:fb:22:07:f7:22:61:85:c0:fb:
de:6d:ec:78:db:5b:9f:66:03:14:a0:8a:86:e9:8d:
8b:81:8b:1a:f1:5e:13:9a:03:0a:5b:33:bb:b3:26:
95:22:91:2a:66:bb:3b:a6:0e:69:79:6f:6a:4a:ef:
c5:cd:17:23:b8:35:41:fd:77:af:80:82:53:69:03:
23:01:ef:1c:9e:67:46:9d:d7:ff:9e:b4:a6:08:3d:
a3:b6:8b:de:9b:dd:c8:17:1b:00:a5:10:a9:74:e6:
e8:96:2d:41:11:29:0b:19:9d:79:a1:7a:8f:e2:b1:
b8:c1:be:9e:56:7e:6e:05:49:98:28:69:07:f6:92:
7b:01:58:12:29:ad:a1:3a:f2:40:23:ea:a4:68:60:
8f:97:5f:0d:fd:d8:7c:5e:c8:7b:09:30:fd:30:74:
ce:e7:fc:65:36:33:23:a0:d4:5b:86:6b:a8:79:56:
a6:fb:10:5c:1b:e3:52:b5:75:f1:f8:f6:a7:69:f8:
d4:bc:ea:55:85:21:29:22:5a:92:3b:82:4c:28:9e:
23:e4:16:e4:b1:60:47:0a:f2:47:53:ad:e8:8c:34:
1f:f2:17:cd:92:03:82:44:55:a1:88:f7:72:1b:54:
f3:d9:cc:54:a5:3b:8b:85:b8:a7:cc:bb:dd:c3:da:
5e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F7:42:22:21:AA:A3:C7:09:86:74:CF:6F:7C:61:B6:2D:AF:8E:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8616E54817CB11F18E3197C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.29.0/24
Signature Algorithm: sha256WithRSAEncryption
62:a6:63:e8:55:2d:ca:a9:fb:6d:37:54:9b:5e:0a:d9:ac:20:
94:f0:1e:ce:c2:ad:a9:72:00:23:74:cd:b8:bd:a1:0a:cb:6c:
15:1f:cf:cf:36:88:48:21:25:d9:c2:af:77:67:a7:7b:ab:83:
1e:16:3a:93:bf:24:2d:81:b5:ca:cc:a9:c8:d4:8e:a7:1b:f0:
71:3c:f6:bc:82:15:01:72:15:97:c3:dc:1a:9e:c9:8e:ba:91:
86:b8:a4:00:f0:f3:a5:3f:8f:48:e6:4d:8e:f0:20:dc:a7:56:
0c:0e:2e:a9:79:ab:f2:b1:91:0e:df:9e:34:c8:97:a0:bc:4e:
c0:5c:a1:04:96:7a:6a:20:39:3c:94:0a:49:41:9c:0d:81:05:
0d:c9:a1:23:d0:5e:af:19:59:3e:6a:1a:a1:2f:29:03:2a:fd:
db:36:6c:72:51:8f:d0:91:b4:c8:79:f2:96:20:14:76:7e:d4:
c1:02:60:7d:10:5e:9a:bd:d6:48:90:e6:cd:0e:60:52:50:0b:
a1:bd:d4:94:04:25:16:5f:8e:ae:a7:5e:d2:4f:aa:d8:ef:77:
a1:db:99:44:23:98:b4:2f:f9:62:c6:5c:f9:86:83:a7:21:b6:
ee:46:5a:9b:21:a8:f6:f3:77:03:34:06:64:90:70:06:65:1d:
61:50:13:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 09:29:18 2026 by rpki-client