Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C2987501B9F11F19D2456D0DAE4EC9C.roa
File: 9C2987501B9F11F19D2456D0DAE4EC9C.roa (raw, json)
Hash identifier: bOkPY/Y2TmG+5sy+/grFjW+4hEZBiuVavHs2noO1PjA=
Subject key identifier: 73:05:6B:0A:48:39:AD:D9:86:D4:81:74:04:8B:D1:EA:26:D2:EF:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE84
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C2987501B9F11F19D2456D0DAE4EC9C.roa
Signing time: Mon 09 Mar 2026 10:06:16 +0000
ROA not before: Mon 09 Mar 2026 10:06:11 +0000
ROA not after: Tue 17 Mar 2026 10:06:11 +0000
asID: 139613
IP address blocks: 154.81.61.0/24 maxlen: 24
154.81.140.0/24 maxlen: 24
154.81.161.0/24 maxlen: 24
154.81.164.0/24 maxlen: 24
154.81.178.0/24 maxlen: 24
154.83.128.0/24 maxlen: 24
154.83.135.0/24 maxlen: 24
154.83.137.0/24 maxlen: 24
154.83.141.0/24 maxlen: 24
154.83.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 11 Mar 2026 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114308 (0x1be84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 9 10:06:11 2026 GMT
Not After : Mar 17 10:06:11 2026 GMT
Subject: CN=69ae9b98-f0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:51:52:1a:8c:95:10:ca:c1:94:e4:10:31:dc:
88:7b:88:e5:d2:65:17:bd:0d:30:9d:56:a9:f7:ec:
02:2d:46:3d:fa:4a:eb:51:6e:42:7b:58:30:62:13:
6a:41:40:a9:19:51:77:fb:2b:76:6b:18:53:14:e1:
16:bc:5a:27:80:2b:58:de:39:a4:f7:58:dc:38:9a:
ce:71:16:f6:fb:2f:df:99:fe:f8:a3:6b:d0:6a:2f:
7c:c0:bf:08:46:e9:98:84:b2:02:e5:66:80:49:07:
b0:33:4b:40:8f:7d:a1:f3:ca:70:00:6a:18:1f:fc:
0e:dd:ad:bb:8f:11:bd:c1:f9:6e:90:93:9d:8b:4d:
5b:86:a4:9c:aa:89:00:c6:03:1f:2a:4f:38:37:56:
eb:85:12:24:92:3d:de:ca:89:b6:2e:42:8e:06:87:
ed:01:1e:ee:f0:04:cb:b2:51:00:b5:47:2b:d8:bc:
14:e1:89:82:db:cb:bc:20:c6:de:17:62:67:07:83:
1c:40:c6:f8:72:6d:9c:6e:22:80:9a:6f:14:6e:c3:
3a:67:e9:ee:cb:69:be:46:ab:e2:bc:81:85:b1:83:
d2:02:cd:a2:54:70:96:4e:2f:92:4f:f5:49:f1:f5:
6f:10:18:33:ea:7c:38:8a:55:eb:b8:b0:df:8a:c3:
e8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:05:6B:0A:48:39:AD:D9:86:D4:81:74:04:8B:D1:EA:26:D2:EF:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C2987501B9F11F19D2456D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.61.0/24
154.81.140.0/24
154.81.161.0/24
154.81.164.0/24
154.81.178.0/24
154.83.128.0/24
154.83.135.0/24
154.83.137.0/24
154.83.141.0/24
154.83.247.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:f6:24:cb:78:3c:0b:47:db:92:27:5a:a3:5b:ad:e3:f6:dc:
b7:5d:66:fa:32:5b:eb:de:4d:f0:40:9d:61:65:40:08:17:1b:
ce:05:cc:ee:67:9a:e4:25:50:77:74:f1:fa:6c:40:38:fc:8a:
8a:5d:c8:bc:6a:f3:e7:38:c1:b3:a5:6d:54:0c:e5:30:23:63:
73:de:0a:57:73:51:79:6a:30:37:8d:16:fc:ae:90:fb:41:75:
7e:d2:4f:cc:d9:e7:ac:af:2d:ad:1c:66:8e:41:05:5e:94:31:
fa:23:a2:64:97:72:47:96:30:11:01:2e:e0:23:2f:34:dd:22:
e6:5e:5a:1b:64:b0:0b:4e:e5:c0:db:83:d3:ab:67:8b:76:12:
cb:16:ce:ba:78:1e:bc:86:35:60:0e:a9:9b:3f:85:e7:a0:17:
a3:3d:25:51:6d:18:f4:fe:26:4d:3b:ca:39:5c:a1:ce:ad:bb:
99:00:4a:9b:ba:a1:ad:cc:0a:eb:f5:5e:ef:2c:d1:67:6d:44:
70:c1:bb:13:a3:44:13:4b:57:2a:f7:aa:17:22:66:d8:39:48:
0a:a4:95:2e:28:d4:ee:69:89:8a:be:bc:c7:ce:06:de:75:82:
90:84:6d:89:50:e3:18:80:91:9c:7a:a4:27:c4:8a:bb:fe:a9:
9a:f4:ce:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 9 14:05:27 2026 by rpki-client