Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F94768EFC3811F093EA7DD9DAE4EC9C.roa
File: 8F94768EFC3811F093EA7DD9DAE4EC9C.roa (raw, json)
Hash identifier: LgO6u0N49kq37LTETB20S/CdE1u/tP9r23oTSxCrC2A=
Subject key identifier: 53:39:0F:B7:53:20:F8:C7:CB:78:04:F7:94:6C:07:BD:EE:FC:35:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B717
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F94768EFC3811F093EA7DD9DAE4EC9C.roa
Signing time: Wed 28 Jan 2026 11:00:31 +0000
ROA not before: Wed 28 Jan 2026 11:00:26 +0000
ROA not after: Sat 07 Mar 2026 11:00:26 +0000
asID: 151419
IP address blocks: 154.88.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Feb 2026 00:07:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112407 (0x1b717)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 11:00:26 2026 GMT
Not After : Mar 7 11:00:26 2026 GMT
Subject: CN=6979ec4f-599c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d1:9e:54:a0:96:4d:20:0c:75:0d:9e:8d:d2:
dd:5d:ca:5b:32:e9:5d:2a:f9:41:c3:e2:48:c7:3c:
d2:70:d5:2c:81:53:2d:85:63:99:51:72:90:93:ca:
e0:3e:23:08:d8:19:b9:52:8b:cd:09:2d:f7:bc:47:
40:40:6b:e1:8e:9d:ba:1a:07:48:d3:4b:53:47:0e:
df:a1:d9:09:4d:9c:09:96:69:ef:a4:c1:26:e2:79:
4f:c4:5c:3d:41:db:f9:be:78:88:15:0e:ef:ac:47:
89:70:0c:7d:59:26:af:2c:56:00:fa:97:43:d8:d9:
0a:67:08:20:78:c4:12:d3:dd:de:51:94:2a:c2:5f:
2d:2f:30:97:86:3a:67:0f:c7:de:fc:e8:d8:46:8f:
47:f0:f0:71:18:29:8a:75:dd:0a:25:9d:56:f6:b4:
4a:6c:01:d6:8e:3f:10:b6:08:c2:15:ec:f4:cf:a9:
62:79:75:a9:a4:b0:f7:b8:a1:67:11:b4:df:9f:fd:
d6:06:e5:44:fb:51:dc:ca:50:4c:41:eb:83:cd:10:
24:e4:2d:03:58:72:99:2e:24:3e:1f:40:5d:38:2e:
a2:1a:81:70:45:f3:a3:c5:8e:08:d3:09:05:2a:51:
33:90:47:a7:9f:af:08:f8:85:0f:d9:06:10:00:05:
e3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:39:0F:B7:53:20:F8:C7:CB:78:04:F7:94:6C:07:BD:EE:FC:35:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F94768EFC3811F093EA7DD9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.66.0/23
Signature Algorithm: sha256WithRSAEncryption
45:6f:ab:fa:6e:a3:5d:0b:57:0f:7e:07:5e:28:bc:e1:6f:cc:
e4:ec:07:59:30:8e:3a:3a:a8:e8:4c:64:24:1e:47:42:91:49:
ca:b7:ef:2e:5f:cd:51:44:f8:bd:09:78:bd:d6:37:66:5d:78:
5f:ec:fc:e5:fd:97:28:94:7c:b2:3c:d4:2c:33:9c:a7:1c:07:
42:0b:e7:04:cb:ab:ab:e6:6b:c6:2f:16:6d:aa:2d:ea:2d:8c:
f8:0a:83:db:30:d8:ca:95:20:67:d1:ee:f8:91:41:8c:09:b1:
bf:02:ec:e2:4a:61:f0:e6:ec:9c:d5:47:94:b6:d6:1e:ab:84:
89:8d:a0:c6:00:9d:7a:1e:5c:35:f3:66:f3:5d:53:8b:88:fe:
19:01:52:f8:24:ef:a2:09:8a:8f:79:78:8e:ea:9c:a6:99:0b:
a4:ce:ea:1c:e3:de:f1:32:16:73:cc:11:f1:4e:e2:7c:e9:7f:
89:3a:e8:13:62:22:1c:bc:15:46:f7:a5:92:f2:a0:ab:8e:55:
6b:a2:0f:9d:39:6d:dc:65:10:19:39:2a:c8:69:6a:3a:e5:48:
b7:ed:9d:6c:53:06:da:57:84:7f:89:f3:cf:01:39:f1:26:42:
46:cc:0f:f9:11:57:8d:cf:a3:98:93:6a:e0:ba:bd:35:8a:23:
1f:d1:4f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 01:33:11 2026 by rpki-client