Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB9C5CF4194B11F1BAE28A86DAE4EC9C.roa
File: AB9C5CF4194B11F1BAE28A86DAE4EC9C.roa (raw, json)
Hash identifier: qMxk64obUdJcEZgSoqw79pVwX9MNL/yuD0pwzb6/48k=
Subject key identifier: 75:74:E5:53:50:C4:49:76:E6:26:5B:72:AC:CF:52:1D:8B:E1:C1:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BDFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB9C5CF4194B11F1BAE28A86DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 11:00:22 +0000
ROA not before: Fri 06 Mar 2026 11:00:17 +0000
ROA not after: Sun 05 Apr 2026 11:00:17 +0000
asID: 273937
IP address blocks: 154.88.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 16 Mar 2026 00:07:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114175 (0x1bdff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 6 11:00:17 2026 GMT
Not After : Apr 5 11:00:17 2026 GMT
Subject: CN=69aab3c6-11e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ec:8a:1b:d3:7a:43:33:da:21:00:6b:80:50:
c7:dd:45:e2:c4:f8:27:95:db:9e:a1:2f:e2:04:de:
75:67:6f:58:1f:63:db:4d:a8:16:d7:91:cd:ab:85:
27:a9:2d:e6:6b:88:a0:34:72:1b:c9:0a:7a:54:81:
34:db:91:d6:a5:2d:74:62:63:3f:17:2c:c7:31:f4:
a5:6a:a4:93:d7:ec:bf:64:87:eb:87:7e:88:bf:3c:
2c:70:e5:58:53:b3:84:f0:69:53:a8:d9:84:87:ee:
b8:ff:6f:66:0b:8c:6e:ee:47:67:47:4a:00:88:29:
9b:d0:3a:36:4a:ce:de:e2:f8:66:fa:14:61:9c:de:
d8:36:13:6d:6d:cb:bb:91:01:fc:3d:e7:e4:30:18:
05:c4:14:20:e1:69:c9:d0:b2:fc:91:8d:34:c3:e8:
f0:d4:e1:dc:12:77:0a:9b:4e:bc:c7:be:78:06:b3:
51:5f:fd:e4:d8:95:66:16:17:b6:9c:a4:c8:51:f2:
23:5b:99:98:4a:b7:fa:6c:c4:57:ef:9b:c1:24:8d:
c3:e6:6b:61:98:3c:56:32:e9:b7:2a:7a:99:2f:56:
44:7f:2b:a1:3d:44:39:72:4d:20:a6:07:10:2b:42:
f3:88:d9:57:43:4a:9c:4e:2b:55:ce:27:67:d7:39:
87:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:74:E5:53:50:C4:49:76:E6:26:5B:72:AC:CF:52:1D:8B:E1:C1:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB9C5CF4194B11F1BAE28A86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.186.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:a1:7d:31:9c:9d:38:e1:bf:af:1c:2e:ac:5a:5e:ad:41:dd:
21:e1:d8:1e:f5:31:7c:63:f3:aa:86:6a:6f:16:19:89:58:38:
b0:78:92:a9:d1:ba:56:20:0c:03:d0:cf:ec:62:a8:0b:9f:41:
c6:49:64:53:85:e0:15:5c:27:d8:c1:ed:be:56:43:6b:58:3a:
dd:c0:89:37:cc:e3:f9:fc:46:91:0b:4a:59:50:df:2b:e1:d1:
a8:3c:d0:e5:51:ad:7d:a0:4c:3a:6b:ae:02:81:c2:6a:bb:91:
01:0b:e2:91:72:a1:1c:37:6c:e9:3b:23:ef:af:0c:49:27:5f:
f2:f1:90:16:23:73:4f:7b:1b:2b:7a:0c:b8:08:fc:d2:00:76:
eb:3d:0f:17:bc:7e:2a:67:db:fe:c9:53:3e:ea:5d:48:63:44:
c1:59:0b:aa:8c:7f:61:a5:da:b8:a3:4e:cb:46:af:f9:33:fb:
75:a9:d3:52:c7:37:2a:b1:cb:26:37:de:79:31:fd:a2:c9:65:
77:a6:6e:a6:7e:4e:1e:37:b0:c8:34:e9:10:b9:0c:4f:f9:fb:
ea:06:6f:e2:6d:11:ea:46:50:dc:67:6b:6f:93:ef:63:25:29:
36:98:03:e9:83:8e:f7:c6:24:28:37:ef:3c:d1:f1:ab:09:40:
40:34:a6:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 20:42:44 2026 by rpki-client