Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06C701E1E5211F18EDAD28DDAE4EC9C.roa
File: B06C701E1E5211F18EDAD28DDAE4EC9C.roa (raw, json)
Hash identifier: 4z7U9/bbywq4LYHGMTMFtgeiEEfr6pIdMOlbJsxbesE=
Subject key identifier: 93:4B:18:C9:E0:F3:73:FB:4D:3C:0F:19:E9:B3:44:90:62:26:1F:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF38
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06C701E1E5211F18EDAD28DDAE4EC9C.roa
Signing time: Thu 12 Mar 2026 20:33:12 +0000
ROA not before: Thu 12 Mar 2026 20:33:07 +0000
ROA not after: Thu 16 Apr 2026 20:33:07 +0000
asID: 22773
IP address blocks: 154.202.13.0/24 maxlen: 24
154.202.14.0/24 maxlen: 24
154.202.15.0/24 maxlen: 24
154.202.16.0/24 maxlen: 24
154.202.17.0/24 maxlen: 24
154.202.18.0/24 maxlen: 24
154.202.19.0/24 maxlen: 24
154.202.20.0/24 maxlen: 24
154.202.21.0/24 maxlen: 24
154.202.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114488 (0x1bf38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 20:33:07 2026 GMT
Not After : Apr 16 20:33:07 2026 GMT
Subject: CN=69b32308-1cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ac:82:45:e8:10:ee:2f:0a:45:14:a3:fa:0d:
bc:e1:a8:d6:05:fa:aa:9d:08:4e:92:1b:54:52:28:
e3:b4:04:9a:41:6c:7c:15:fb:ea:79:5f:b0:fb:c4:
20:d3:6a:4c:c7:ec:55:73:90:16:6a:ec:be:d3:92:
07:56:93:90:88:55:11:c8:db:8e:49:46:a8:f3:dc:
79:8e:d3:25:29:35:78:d4:2b:84:12:e1:f9:ce:cf:
f1:c6:91:a7:cc:15:bd:4e:66:8f:33:68:6d:3d:c7:
05:aa:36:a4:6a:93:85:81:e3:02:e4:c5:8e:15:3c:
9c:3d:e6:2b:af:35:61:31:b2:21:db:02:52:a8:d4:
bd:11:25:1b:9a:51:25:c1:56:33:d1:ef:2a:6b:2b:
92:38:46:57:05:55:97:df:3c:a6:46:06:1e:c7:97:
56:15:ee:a0:02:e1:a0:a2:4d:78:5e:99:ae:40:3a:
40:19:02:81:f7:85:32:50:d2:b8:79:2c:ec:bd:71:
38:c5:6c:a7:76:70:b2:54:52:37:60:8e:a4:e1:e8:
0b:59:2f:27:97:b6:ff:1c:02:da:64:c7:c1:63:91:
6e:9b:c4:13:a2:08:59:af:8e:12:87:4c:e7:03:2c:
05:a5:bb:68:ac:65:16:eb:ba:f6:2e:e1:ea:a1:0f:
d1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4B:18:C9:E0:F3:73:FB:4D:3C:0F:19:E9:B3:44:90:62:26:1F:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06C701E1E5211F18EDAD28DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.13.0-154.202.22.255
Signature Algorithm: sha256WithRSAEncryption
23:aa:fb:59:78:d3:ad:df:8a:d8:0a:8b:36:b6:95:c6:f7:17:
2b:21:11:da:f0:1d:5e:a4:87:57:22:77:69:f7:ce:87:a2:82:
b3:d5:5b:6b:fb:37:82:01:31:c1:0c:41:de:e7:0a:c4:f7:53:
85:0e:16:61:bd:4e:4c:11:41:6f:77:37:f8:c4:36:a8:69:b0:
57:64:ca:36:71:40:b5:df:29:41:de:a3:22:25:06:f3:43:a2:
c7:09:79:b6:8c:d4:f1:a7:03:0c:59:3b:0a:c0:dd:87:1d:64:
19:a0:ed:7e:5d:79:eb:80:23:b7:35:e5:6b:11:ef:75:19:3f:
91:8d:ea:71:e7:98:7e:3e:df:c9:63:40:ef:59:3d:1f:51:bf:
07:64:b1:55:61:71:11:f1:a1:37:7f:bb:37:00:07:f0:01:d3:
55:42:37:8d:a1:8a:15:7b:ac:18:52:b5:e3:63:06:f3:ff:64:
c7:3e:63:d1:f3:f2:49:ed:e8:ab:32:72:ea:71:a1:6c:95:23:
2e:7e:95:c0:c8:37:5c:52:2c:fb:ed:72:a7:27:19:9f:58:2e:
35:b1:3c:01:ed:a6:82:50:86:1e:e2:d3:9b:7b:e8:2b:52:8d:
58:36:1c:70:67:71:66:11:d9:39:22:dd:53:53:64:b6:4f:3f:
d0:be:c3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:14 2026 by rpki-client