Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/879F8880275111F1BF8FA091DAE4EC9C.roa
File: 879F8880275111F1BF8FA091DAE4EC9C.roa (raw, json)
Hash identifier: 8hvMGwiS2DP4KwuvpKTZXEFuBp9t3TqML1OS1iAH//8=
Subject key identifier: 7F:48:32:5D:C9:2E:33:5B:E4:2E:7D:B7:DF:0D:1C:02:1A:F3:FC:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C079
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/879F8880275111F1BF8FA091DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 07:17:35 +0000
ROA not before: Tue 24 Mar 2026 07:17:30 +0000
ROA not after: Thu 27 Aug 2026 07:17:30 +0000
asID: 45669
IP address blocks: 154.198.90.0/24 maxlen: 24
154.198.91.0/24 maxlen: 24
154.198.92.0/24 maxlen: 24
154.198.93.0/24 maxlen: 24
154.198.94.0/24 maxlen: 24
154.198.95.0/24 maxlen: 24
154.198.96.0/19 maxlen: 24
154.198.96.0/24 maxlen: 24
154.198.97.0/24 maxlen: 24
154.198.98.0/24 maxlen: 24
154.198.99.0/24 maxlen: 24
154.198.100.0/24 maxlen: 24
154.198.101.0/24 maxlen: 24
154.198.102.0/24 maxlen: 24
154.198.103.0/24 maxlen: 24
154.198.104.0/24 maxlen: 24
154.198.105.0/24 maxlen: 24
154.198.106.0/24 maxlen: 24
154.198.107.0/24 maxlen: 24
154.198.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114809 (0x1c079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 07:17:30 2026 GMT
Not After : Aug 27 07:17:30 2026 GMT
Subject: CN=69c23a8f-24a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:66:ff:34:4d:bc:90:42:c6:0d:3f:d7:b9:40:
a5:e7:50:2e:9f:16:d2:2f:a1:2a:58:70:30:b2:43:
9a:b5:23:ef:ca:60:de:4a:ef:6f:15:fe:67:f5:4d:
42:8e:82:b6:17:df:1c:26:28:2f:96:87:b9:38:db:
a8:53:44:63:80:68:f3:bb:ba:31:07:cd:fc:47:87:
d8:d5:49:b3:dc:3f:a9:5a:26:f4:d7:1f:48:33:ed:
15:17:a6:88:fc:fb:3f:ed:1f:ed:0e:16:7f:2e:97:
2a:c3:58:0b:60:a6:cd:23:92:48:e0:1c:b9:67:2d:
1a:c6:aa:da:6c:f1:15:fd:07:7a:fa:fb:9a:fd:26:
c5:4a:0a:c6:ba:e1:ce:32:16:9e:c7:ea:58:70:2a:
bb:4b:af:25:43:ea:ba:50:e2:86:8e:2f:b1:8a:34:
5a:bd:b3:5f:55:aa:5b:e4:ca:0a:54:d0:51:1c:21:
78:84:85:04:79:e3:0f:17:c8:da:69:ba:63:d6:93:
7d:b1:ae:5b:0f:7c:ae:ba:3b:97:f0:e4:49:d9:e5:
08:c6:a6:a8:4a:30:81:3c:b1:7c:1d:f7:ea:29:04:
b2:af:6b:e9:a1:3a:fc:9d:fc:b1:5c:58:15:e5:4d:
8f:e9:cc:53:f9:de:28:18:68:25:8d:a1:06:1c:1d:
72:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:48:32:5D:C9:2E:33:5B:E4:2E:7D:B7:DF:0D:1C:02:1A:F3:FC:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/879F8880275111F1BF8FA091DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.90.0-154.198.127.255
Signature Algorithm: sha256WithRSAEncryption
92:27:ed:a5:ba:90:7f:e7:b0:8a:72:2d:66:d0:97:52:0c:ac:
fa:0a:96:0e:19:42:95:98:97:21:21:5b:3e:01:bb:27:17:c7:
50:95:e8:0a:67:da:0a:68:2f:1b:ea:6f:11:8e:7a:d5:d4:06:
89:dc:8e:43:ad:d0:39:a2:cd:c4:b1:1c:fe:70:6a:ee:77:3b:
5d:1b:33:5a:2b:12:25:09:bb:1b:94:cc:e1:25:6e:ae:b6:69:
9f:e5:66:56:36:59:2d:8a:69:40:34:b2:02:bd:5a:63:ab:13:
dd:44:44:7e:af:47:fc:4b:ec:d1:3f:60:18:18:2b:22:34:bb:
7b:82:36:15:c8:d2:91:e0:67:72:dd:03:b7:f6:ef:65:3f:6d:
82:fa:5a:48:21:41:74:e6:77:92:5a:e4:f5:b3:3b:aa:2d:57:
94:90:bb:0a:2b:bf:64:ab:82:d0:af:24:ea:65:20:41:85:4d:
1e:f0:1c:76:54:4a:eb:bf:3d:07:4c:a9:db:0c:9e:c4:7a:4c:
fc:f9:37:3e:99:5a:e6:9a:75:f7:4c:db:0b:28:dc:9b:95:a6:
e0:9d:b8:70:65:96:e1:c9:86:f0:fd:30:3c:cb:75:3e:30:6e:
02:6b:0a:aa:70:56:21:3e:fa:a1:a6:5e:5c:c3:d4:13:e9:69:
92:f6:cc:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:15:45 2026 by rpki-client