Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A04FC998160E11F188C21D9CDAE4EC9C.roa
File: A04FC998160E11F188C21D9CDAE4EC9C.roa (raw, json)
Hash identifier: oTcFNPAPK98zVE1SJLD9nN6QNRqQJun2GF02R7Mjj5U=
Subject key identifier: FC:58:1D:17:1B:36:D4:58:49:61:AE:3B:F0:12:19:C8:B4:22:C8:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCBE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A04FC998160E11F188C21D9CDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 08:05:51 +0000
ROA not before: Mon 02 Mar 2026 08:05:45 +0000
ROA not after: Fri 02 Mar 2029 08:05:45 +0000
asID: 17561
IP address blocks: 154.80.92.0/24 maxlen: 24
154.80.93.0/24 maxlen: 24
154.80.94.0/24 maxlen: 24
154.80.95.0/24 maxlen: 24
154.80.96.0/24 maxlen: 24
154.80.97.0/24 maxlen: 24
154.80.98.0/24 maxlen: 24
154.80.99.0/24 maxlen: 24
154.80.100.0/24 maxlen: 24
154.80.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113854 (0x1bcbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 08:05:45 2026 GMT
Not After : Mar 2 08:05:45 2029 GMT
Subject: CN=69a544df-7b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:d5:17:c6:33:5f:58:c4:88:5b:c3:b1:72:
0c:c7:3a:79:98:aa:95:0d:31:ce:c5:4a:ff:ac:2c:
a3:2c:68:58:a9:5d:32:69:b4:7e:6c:cf:0a:82:5b:
0a:91:c7:31:52:c4:92:d2:30:89:83:e2:82:6e:0f:
86:f1:5e:92:2a:a2:af:1d:7d:f6:17:15:87:a9:47:
bc:ef:a8:cc:b4:d7:ac:d4:b4:b5:c7:af:2d:70:2a:
61:66:6c:04:e6:8e:cd:42:5b:67:21:b7:23:9a:c2:
d7:7d:5b:4a:33:44:19:9b:7a:33:9b:b9:82:bc:61:
da:b0:ee:a3:76:76:62:3f:a8:a1:06:dc:c4:4e:d4:
41:dd:34:2c:7b:d1:e8:f1:17:9b:46:64:09:e4:9c:
35:08:56:de:a2:86:2c:19:3b:87:a9:9d:0e:97:d7:
04:2b:29:eb:74:59:d4:36:d9:ac:38:c4:8f:55:fb:
11:4c:41:a5:72:f0:d6:82:6f:4f:c3:c6:5d:ec:69:
60:17:4f:90:f4:d2:46:e2:1e:e3:4f:92:df:ec:91:
ce:61:72:6e:6e:6f:7e:1a:d5:86:cb:8a:da:52:76:
43:93:d3:a2:f7:bc:e6:5d:26:22:f9:02:7d:aa:1d:
dc:d7:88:41:8c:dc:25:98:33:0b:21:1e:8b:1a:68:
62:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:58:1D:17:1B:36:D4:58:49:61:AE:3B:F0:12:19:C8:B4:22:C8:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A04FC998160E11F188C21D9CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.92.0-154.80.101.255
Signature Algorithm: sha256WithRSAEncryption
08:c4:f6:c4:cc:fb:25:b9:0a:75:dd:1c:f4:e9:a1:52:79:a2:
a3:5b:e2:46:d2:02:dd:d1:93:cb:58:b6:6f:66:6e:3d:8a:f0:
ac:02:78:47:9a:b2:27:54:d3:f1:a5:a4:98:f5:e2:65:f9:69:
69:94:b0:56:e2:c4:7d:2e:36:c4:33:46:f9:ef:45:e9:02:f4:
0c:cd:47:ca:88:05:67:93:0b:6b:8a:e2:79:30:9c:68:4b:3c:
72:c1:12:10:19:7b:75:9e:01:ed:bf:9b:73:5e:cf:ae:ac:98:
6d:89:c9:b4:ca:2c:36:e6:b3:ab:fc:d5:e1:08:8e:ee:47:5b:
5e:f5:a6:db:b7:ed:bd:88:cf:b2:71:fd:6d:42:4b:f6:4a:73:
7f:11:9d:45:b6:b9:79:62:93:96:a1:ef:ee:1b:6e:60:b6:fe:
cf:50:a2:70:e2:12:82:7d:e7:c3:28:58:a6:29:78:ff:06:b9:
54:93:0a:a2:e5:d3:12:67:6b:88:01:5b:3b:e0:bc:99:9c:8b:
ec:7a:b3:ab:51:fa:51:0b:69:2a:6d:9f:5c:4e:86:a7:b7:fb:
9d:41:de:e0:67:b7:92:58:56:10:ff:8a:df:c6:0b:3a:15:e9:
0b:0d:71:a7:42:d0:b0:4c:38:64:11:26:e3:ec:8b:e8:f8:e1:
fe:8a:74:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:16:08 2026 by rpki-client