Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B11D6FE21A1D11F1951E2291DAE4EC9C.roa
File: B11D6FE21A1D11F1951E2291DAE4EC9C.roa (raw, json)
Hash identifier: fgiBYbIjhQ56yxoKQheRNMHQK8I4plzEaO9GXHLzy5Q=
Subject key identifier: 28:86:7E:22:AA:01:77:39:16:D8:02:CF:76:68:FF:15:2F:83:93:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE3A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B11D6FE21A1D11F1951E2291DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 12:03:46 +0000
ROA not before: Sat 07 Mar 2026 12:03:41 +0000
ROA not after: Wed 07 Mar 2029 12:03:41 +0000
asID: 17561
IP address blocks: 154.194.45.0/24 maxlen: 24
154.194.57.0/24 maxlen: 24
154.194.194.0/24 maxlen: 24
154.194.204.0/24 maxlen: 24
154.194.205.0/24 maxlen: 24
154.199.16.0/24 maxlen: 24
154.199.19.0/24 maxlen: 24
154.199.20.0/24 maxlen: 24
154.199.21.0/24 maxlen: 24
154.199.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114234 (0x1be3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 7 12:03:41 2026 GMT
Not After : Mar 7 12:03:41 2029 GMT
Subject: CN=69ac1422-d843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b2:bf:e1:60:c1:14:06:6e:59:10:55:92:c5:
f7:36:cc:97:d1:cc:9b:41:d3:18:f3:ff:bc:d7:c8:
ee:2a:b5:67:48:07:1e:3d:b6:19:5b:fa:28:0b:3a:
f3:b6:35:a3:d5:b9:46:e5:9c:31:ea:fe:a5:cb:03:
94:9e:3d:9d:f7:b1:85:9a:5d:99:b0:dd:bc:32:4b:
e0:d0:67:53:b2:6e:20:fa:e5:13:28:2a:0f:24:23:
60:e8:4e:70:4a:9b:48:80:a0:72:50:e5:07:b2:44:
1b:b8:c7:34:b9:a1:47:8d:e1:4b:d6:43:1c:72:76:
f0:71:b5:e6:b6:bc:f8:ec:b7:50:b0:16:02:e2:c1:
5b:e6:9c:9b:42:c6:3d:03:33:45:13:84:dc:55:e7:
fe:1b:e9:fc:e0:58:b9:ff:5b:d8:c2:33:54:25:6d:
68:bc:50:19:46:10:a8:6d:4e:ff:11:07:2d:c7:75:
13:ba:09:5b:b8:65:be:f1:76:91:d4:29:b7:d4:d9:
75:2a:b6:21:a2:1d:04:5c:86:4c:27:38:8f:dd:f7:
f8:1e:b3:28:e2:e7:10:c6:39:34:de:28:cd:ec:e9:
59:a3:eb:27:31:63:fa:be:3d:f2:23:ee:0e:b6:2e:
e9:60:bb:fb:dc:bc:df:f3:cb:3c:d3:9b:57:76:23:
9b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:86:7E:22:AA:01:77:39:16:D8:02:CF:76:68:FF:15:2F:83:93:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B11D6FE21A1D11F1951E2291DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.45.0/24
154.194.57.0/24
154.194.194.0/24
154.194.204.0/23
154.199.16.0/24
154.199.19.0-154.199.22.255
Signature Algorithm: sha256WithRSAEncryption
6e:ec:65:2d:67:d9:5a:9e:16:63:00:55:c2:d7:0e:28:90:9c:
87:11:a5:5a:d3:df:3b:74:78:89:a1:50:2f:7f:0d:ae:1b:74:
93:ca:86:f8:2e:5d:b3:fe:98:1a:d1:9b:75:21:fb:28:2e:1a:
22:9f:de:f3:7d:55:ee:e8:de:6b:9c:47:81:94:ff:ba:0d:24:
00:66:61:73:86:54:ed:2a:d2:5d:77:a6:42:a4:e0:a5:cd:e7:
67:fc:07:56:06:28:f1:90:0b:a4:97:9a:67:f6:19:32:b1:d7:
56:2b:61:02:1b:57:76:78:27:35:36:8c:a2:f5:07:2d:8c:f6:
81:54:8b:64:e0:4c:7e:31:d7:04:31:f6:b5:c2:a8:07:e4:fc:
32:47:b2:0b:0f:21:c6:ca:82:bb:4e:fe:4b:37:80:57:c7:97:
d8:d0:81:ec:71:1e:9d:f7:90:f6:ed:3d:8c:e1:ad:63:bb:68:
e4:37:04:75:c1:25:3d:90:f6:a9:ad:bb:7e:e6:ec:1d:0b:9f:
2b:23:b9:36:50:ae:e0:8c:6c:14:23:29:62:1b:ed:2f:4b:06:
95:24:0c:2e:91:4f:aa:3f:ce:bb:14:78:22:b7:00:f6:11:4c:
85:af:da:bb:0c:cc:40:f3:ed:7b:63:37:84:18:bc:5a:7b:4e:
72:3a:e4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:16:38 2026 by rpki-client