Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90E95D121B8511F19E3B95B9DAE4EC9C.roa
File: 90E95D121B8511F19E3B95B9DAE4EC9C.roa (raw, json)
Hash identifier: DaNuzs5r9kfEgUBUpSEKJIBRY4LGP6HWpjkbaTTlWlE=
Subject key identifier: 5E:15:CB:A5:EA:96:0E:03:A0:C9:14:6D:17:D8:25:9E:E3:89:00:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90E95D121B8511F19E3B95B9DAE4EC9C.roa
Signing time: Mon 09 Mar 2026 06:59:50 +0000
ROA not before: Mon 09 Mar 2026 06:59:46 +0000
ROA not after: Thu 16 Apr 2026 06:59:46 +0000
asID: 17497
IP address blocks: 154.196.140.0/23 maxlen: 24
154.196.140.0/24 maxlen: 24
154.196.141.0/24 maxlen: 24
154.196.164.0/22 maxlen: 24
154.196.164.0/24 maxlen: 24
154.196.165.0/24 maxlen: 24
154.196.166.0/24 maxlen: 24
154.196.167.0/24 maxlen: 24
154.196.222.0/24 maxlen: 24
154.196.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114278 (0x1be66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 9 06:59:46 2026 GMT
Not After : Apr 16 06:59:46 2026 GMT
Subject: CN=69ae6fe6-ce77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d1:2c:3e:84:d2:ce:d3:75:d8:58:88:be:67:
3a:a7:a3:79:cd:df:c4:5c:6b:67:3e:51:30:16:85:
d5:b5:fa:53:4e:3e:40:bf:6c:0d:1f:34:82:ee:13:
66:0a:b7:a0:e8:58:3d:a7:10:0f:81:a8:56:93:e7:
73:05:bd:1e:6a:94:5b:95:e5:81:70:df:05:80:86:
c5:8d:d5:6c:e1:2c:e4:76:ab:2f:f5:e6:1f:45:45:
f7:0e:2e:12:8f:54:e0:53:75:af:ba:e3:1a:26:fe:
91:f9:33:6b:8b:bb:7d:8c:d9:4c:5d:55:93:d1:49:
26:83:75:fc:72:2a:cd:eb:55:e1:61:37:da:e6:2b:
ca:02:59:a2:1e:2e:a4:90:45:a8:e1:54:10:b7:ad:
f9:d5:25:44:29:2b:7c:57:b3:2e:94:b8:36:83:1f:
62:29:9d:09:fd:e3:3e:98:53:19:03:8c:d0:55:28:
61:e2:66:5a:f8:36:dd:4c:8f:f7:0f:56:a5:07:bd:
02:1f:91:b8:08:0c:e9:25:23:3d:5d:0e:24:0f:f2:
63:d4:45:2e:29:1f:c7:67:06:f8:df:76:8c:bb:fb:
ea:73:e3:42:61:5e:fd:5e:40:7b:9e:8d:db:be:8b:
31:ab:02:ab:b2:40:57:2e:3f:1f:ad:cb:bd:24:a9:
be:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:15:CB:A5:EA:96:0E:03:A0:C9:14:6D:17:D8:25:9E:E3:89:00:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90E95D121B8511F19E3B95B9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.140.0/23
154.196.164.0/22
154.196.222.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:b1:4c:c2:76:5a:87:0f:a3:07:6d:71:68:ae:03:e2:3b:4b:
61:03:1f:b9:af:90:0f:d1:1d:10:44:14:b3:64:b6:d3:54:48:
28:09:30:9b:1b:69:fc:26:a9:2f:63:01:e0:08:94:92:cb:53:
1a:9a:c4:1d:da:a0:10:1d:6b:55:23:1f:50:3c:cc:7c:33:c2:
98:78:e3:9d:f6:99:e3:9c:6c:98:c9:02:b4:16:04:1e:2c:03:
2b:27:bc:e4:96:a3:de:fc:a5:b6:28:9e:f9:af:0c:3f:4c:31:
c0:3d:78:d2:90:02:a8:4a:12:d4:14:cf:a8:39:c1:46:54:2c:
29:96:ce:74:3b:9a:2c:6e:24:bc:1a:b8:10:f2:a9:fa:b6:0a:
b4:53:15:5b:5a:ed:8b:25:4e:1a:29:71:39:bd:d5:f3:29:cf:
14:76:c2:d4:db:0f:a4:66:5f:af:d7:9c:44:1e:41:aa:5b:f9:
6b:ef:1d:ef:a7:b5:90:62:2d:ec:a2:55:26:51:a3:5a:cc:fc:
a6:0e:42:9d:85:51:6a:69:2f:af:8c:1d:6e:db:3a:4b:46:ab:
ce:f1:03:ab:86:5f:3a:00:2d:21:3f:9c:00:19:25:07:6a:9d:
e0:51:b9:4e:7f:fe:a6:cc:b7:77:f8:e8:dd:fa:89:54:65:89:
c9:53:c1:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 09:28:18 2026 by rpki-client