Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96A8D2B0163911F19485899EDAE4EC9C.roa
File: 96A8D2B0163911F19485899EDAE4EC9C.roa (raw, json)
Hash identifier: T9tPXbOCcOgUYXV63euKmccZNQhHJm/r8ca0LQJFZe8=
Subject key identifier: 1E:DE:88:E7:E6:5A:0F:FF:CD:F7:82:43:5D:F1:68:94:31:B8:3C:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BD09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96A8D2B0163911F19485899EDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 13:13:22 +0000
ROA not before: Mon 02 Mar 2026 13:13:18 +0000
ROA not after: Thu 09 Apr 2026 13:13:18 +0000
asID: 138915
IP address blocks: 154.95.64.0/24 maxlen: 24
154.95.65.0/24 maxlen: 24
154.95.66.0/23 maxlen: 24
154.95.66.0/24 maxlen: 24
154.95.67.0/24 maxlen: 24
154.95.68.0/24 maxlen: 24
154.95.69.0/24 maxlen: 24
154.95.70.0/23 maxlen: 24
154.95.76.0/24 maxlen: 24
154.95.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Mar 2026 00:06:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113929 (0x1bd09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 13:13:18 2026 GMT
Not After : Apr 9 13:13:18 2026 GMT
Subject: CN=69a58cf2-ce5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:a2:e8:76:80:0c:d0:0a:ca:93:ee:ce:3c:
77:87:42:8e:49:57:6a:66:f4:84:8a:ec:2b:fe:80:
de:62:68:cd:b5:eb:2a:00:ce:ac:a7:e0:11:39:7a:
80:92:29:7d:dc:4e:85:a4:c1:8f:7a:79:12:80:e5:
20:27:20:e7:37:d7:90:33:26:7a:e5:2d:5e:38:23:
f5:08:65:b3:e6:56:e9:f3:86:a8:5a:c7:01:03:92:
f9:ab:00:9f:47:91:5e:ae:19:d2:f6:5a:bb:93:c6:
28:a5:4f:82:d8:1d:20:fb:6f:55:40:66:db:a8:ed:
ba:f5:42:b2:7f:12:7b:c3:62:ae:20:f2:94:e5:01:
65:bc:54:68:1a:35:85:9d:09:28:5a:34:d3:86:1d:
11:ee:00:f7:13:1d:d9:af:35:95:34:fc:50:8e:01:
3b:15:93:90:c3:9a:13:a2:c0:f5:2d:5f:1f:d1:ae:
0f:b7:52:29:2f:b3:40:a9:dd:56:f7:ed:86:46:55:
f2:bb:46:93:b8:e3:b1:42:42:d0:50:fb:7a:15:77:
c8:31:9c:53:6a:a7:ee:33:3e:0e:42:8c:ed:b4:00:
62:bb:be:cd:88:4d:52:e1:34:9b:f7:e5:b8:f9:ed:
e9:3e:bd:98:3f:3e:65:0b:b6:3f:51:87:db:2c:7e:
0a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DE:88:E7:E6:5A:0F:FF:CD:F7:82:43:5D:F1:68:94:31:B8:3C:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96A8D2B0163911F19485899EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.64.0/21
154.95.76.0/23
Signature Algorithm: sha256WithRSAEncryption
64:05:ce:d1:af:e4:fd:e7:f5:26:7b:23:0a:65:03:eb:26:8d:
af:d1:ee:b7:dc:95:f7:85:a2:b2:1b:11:a2:8f:88:af:d0:72:
5e:ea:7d:f7:d1:5b:22:9c:cc:41:c8:0d:db:0f:55:2e:33:4b:
10:dc:51:ce:87:e8:d4:93:f5:3b:2c:07:9d:69:fe:b3:1d:68:
1b:18:fb:41:48:39:37:1f:3d:6e:63:04:fe:66:82:f3:62:6a:
8b:4b:ca:2f:dd:86:cb:9b:2b:66:63:ec:27:32:76:69:f3:47:
20:bb:9e:f6:0a:1e:f9:75:0d:04:bc:f2:c6:49:c3:d4:42:5d:
e1:1a:68:25:74:b8:cf:6e:29:b4:8d:39:26:d5:83:47:e9:8f:
ba:42:c5:e4:33:24:a7:58:64:bb:cb:18:b9:22:19:62:ef:07:
a1:19:be:6d:23:70:8d:25:69:3d:f5:70:29:ae:4e:b5:8a:45:
0e:4e:b6:f0:15:db:10:04:7f:98:50:e4:43:d7:6f:da:93:67:
bb:05:ae:a7:36:14:cf:a2:3d:f8:79:5a:c0:c6:b6:82:1b:74:
ef:00:74:e4:55:93:11:1a:0b:a2:6a:68:f5:ee:36:67:39:a5:
94:5c:b7:6e:f1:a1:09:a6:a3:09:e7:8a:12:4e:66:22:1e:e4:
3f:48:00:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 22:17:34 2026 by rpki-client