Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91AFA3CA162E11F19F627BDCDAE4EC9C.roa
File: 91AFA3CA162E11F19F627BDCDAE4EC9C.roa (raw, json)
Hash identifier: YdJZhaocjWFbLzymB1YP31AhPoy8+uLAA6dCXEp0STw=
Subject key identifier: E5:FB:D9:60:C7:DE:8A:A9:31:5B:0A:39:0E:B8:19:FE:7B:07:81:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCFD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91AFA3CA162E11F19F627BDCDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 11:54:29 +0000
ROA not before: Mon 02 Mar 2026 11:54:25 +0000
ROA not after: Fri 02 Mar 2029 11:54:25 +0000
asID: 17561
IP address blocks: 154.80.52.0/24 maxlen: 24
154.80.53.0/24 maxlen: 24
154.80.54.0/24 maxlen: 24
154.80.55.0/24 maxlen: 24
154.80.56.0/24 maxlen: 24
154.80.57.0/24 maxlen: 24
154.80.58.0/24 maxlen: 24
154.80.59.0/24 maxlen: 24
154.80.60.0/24 maxlen: 24
154.80.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113917 (0x1bcfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 11:54:25 2026 GMT
Not After : Mar 2 11:54:25 2029 GMT
Subject: CN=69a57a75-bffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:72:79:d3:2d:28:45:94:51:86:fa:75:08:3b:
5b:63:3d:7a:15:b3:1a:a2:d2:84:25:f9:93:ac:3f:
5e:a2:24:26:41:bd:b6:d3:a7:01:c0:fd:08:4e:ea:
54:ea:b3:c2:79:2c:05:03:5e:3d:0b:f2:7a:ed:2f:
67:48:72:46:33:f7:60:25:df:32:9f:79:09:4e:9e:
fa:91:69:cd:f3:08:52:5a:6b:a3:b3:fc:99:f6:d7:
f5:ce:94:6a:cc:a7:ab:5a:6b:fe:8b:02:a7:82:ac:
f6:bf:6f:1b:81:f6:5c:03:93:b4:dd:03:a8:23:b7:
67:3c:c0:cc:ce:99:74:8b:cd:47:cc:f8:3d:e0:8d:
6e:31:69:2d:f5:5b:28:1d:3a:b1:db:84:c3:0a:61:
23:6e:42:27:8d:f4:45:43:e5:a8:6f:cc:ac:37:a6:
ba:28:5b:ea:31:5d:8c:4d:5d:d1:12:e3:14:b9:c3:
7b:71:c1:36:ae:15:76:61:e8:93:d3:21:73:50:58:
22:89:d0:78:a5:20:9d:fc:22:8e:3c:c5:8b:b2:e8:
d4:e7:41:48:7e:e3:81:2c:6b:c4:d0:c7:f5:3c:a0:
b4:89:9d:e5:cc:be:d7:f7:d4:13:70:42:a5:0a:54:
03:61:5b:4c:a7:2b:c2:db:ff:b4:8a:19:2e:52:6f:
05:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FB:D9:60:C7:DE:8A:A9:31:5B:0A:39:0E:B8:19:FE:7B:07:81:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91AFA3CA162E11F19F627BDCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.52.0-154.80.61.255
Signature Algorithm: sha256WithRSAEncryption
3b:a7:8a:2a:68:b7:bb:ae:64:5e:de:ea:ed:5a:e8:ef:1d:82:
45:6d:02:ab:fd:77:47:0f:8a:73:3b:f6:ea:09:00:c5:05:59:
f2:e0:25:0b:8e:86:86:bf:d2:52:24:d5:18:23:90:21:f3:a9:
80:24:a4:44:1f:66:35:03:66:76:83:16:50:d3:fc:0c:e3:86:
33:9d:5e:ef:96:08:15:b4:09:51:db:d6:3a:43:47:50:d1:17:
69:4c:41:9f:b6:01:04:30:e8:81:16:ba:ed:e6:6f:1e:52:3f:
9a:34:1a:04:82:59:13:b3:59:62:c7:02:f7:e8:8d:44:96:66:
46:a2:3e:a4:1e:0c:45:46:91:30:c5:d9:7f:2e:75:32:a8:df:
66:1e:84:d4:7a:19:92:34:ea:7c:96:e2:39:16:24:3e:04:46:
3a:42:b5:97:8e:4f:24:de:69:cf:70:67:65:ac:ab:fb:cf:92:
35:3a:be:5d:38:ec:9b:2f:f4:be:76:9c:5c:f5:6c:ae:b3:a9:
a9:15:14:df:4f:95:8a:4b:9c:46:63:f9:51:eb:3c:44:e3:30:
66:54:b6:94:d2:92:f5:fa:61:03:97:8a:b6:d4:b3:d2:13:6c:
74:1d:46:ec:83:de:7a:79:85:83:d9:76:34:63:27:09:dd:15:
59:af:0e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:13 2026 by rpki-client