Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B401E2D01C7311F184C673A7DAE4EC9C.roa
File: B401E2D01C7311F184C673A7DAE4EC9C.roa (raw, json)
Hash identifier: 0Avs09Z9DNj+whNm976T2COg2WINYa7jJD3x516Vq/E=
Subject key identifier: CC:8E:E5:D7:90:A8:30:C9:FB:11:C2:B1:C5:02:82:4E:A9:86:B9:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BEBD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B401E2D01C7311F184C673A7DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 11:24:30 +0000
ROA not before: Tue 10 Mar 2026 11:24:24 +0000
ROA not after: Fri 17 Apr 2026 11:24:24 +0000
asID: 139613
IP address blocks: 154.81.181.0/24 maxlen: 24
154.81.191.0/24 maxlen: 24
154.82.18.0/24 maxlen: 24
154.82.20.0/24 maxlen: 24
154.83.158.0/24 maxlen: 24
154.83.187.0/24 maxlen: 24
154.83.190.0/24 maxlen: 24
154.83.191.0/24 maxlen: 24
154.83.209.0/24 maxlen: 24
154.83.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114365 (0x1bebd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 10 11:24:24 2026 GMT
Not After : Apr 17 11:24:24 2026 GMT
Subject: CN=69afff6e-7fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2a:71:5c:71:69:9b:cb:fb:1c:d0:6e:ea:ab:
d3:38:7c:63:d9:7c:6b:1c:be:cc:c7:d9:6e:f5:e5:
25:b0:1a:bf:be:b2:07:35:25:db:83:0d:05:df:f4:
aa:1a:3d:85:b5:91:51:a2:d0:04:ea:a1:b1:c4:ac:
c3:ea:27:cf:3b:03:27:d1:13:6a:56:e8:6b:0a:52:
f0:f1:35:ba:da:b7:b5:81:ff:25:75:36:18:4f:c3:
93:3d:06:d3:b5:73:6d:99:b9:86:2c:5d:4a:f8:76:
29:cb:c7:db:05:4a:30:41:e9:f6:5e:77:64:1c:d5:
64:0d:19:f9:01:bb:bd:85:d1:ab:e9:c6:a5:cf:8f:
99:62:4d:5c:3b:28:2e:25:24:5c:84:2b:3c:fa:dc:
ef:55:e7:bb:70:c7:5b:29:da:8b:b9:8d:0a:8a:c1:
22:82:12:ec:79:fe:33:13:ee:67:cd:b8:b4:59:fa:
af:a5:ea:5b:a9:3a:14:79:63:71:72:e4:85:10:8b:
1e:00:c9:62:ed:92:8b:7f:ce:8f:76:0b:83:32:cb:
93:bd:47:d5:d1:e6:d5:a7:d3:6a:b9:74:b4:07:d9:
e9:7f:25:72:78:cc:da:bc:93:d8:87:cf:b2:95:e5:
b1:74:1c:40:0d:69:4f:3f:5a:2f:d0:53:ef:92:a5:
99:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8E:E5:D7:90:A8:30:C9:FB:11:C2:B1:C5:02:82:4E:A9:86:B9:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B401E2D01C7311F184C673A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.181.0/24
154.81.191.0/24
154.82.18.0/24
154.82.20.0/24
154.83.158.0/24
154.83.187.0/24
154.83.190.0/23
154.83.209.0/24
154.83.211.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:7a:c1:2d:da:05:ad:c4:86:ea:7b:49:45:af:f2:09:cc:94:
ca:73:7b:29:65:79:55:75:dd:72:37:64:b7:8e:88:1b:69:50:
af:c4:08:f3:4e:0f:8b:02:f5:72:f4:36:39:9c:ea:bf:38:e4:
b4:6a:c2:5f:d6:5f:d6:34:43:4e:f3:69:7b:71:09:99:1f:cf:
ab:a8:3c:82:bc:50:7a:07:06:2c:b5:a5:0e:09:df:bb:48:57:
c0:d8:e3:58:5e:4e:22:d4:3c:89:b5:09:e1:e7:9b:db:1d:89:
68:c5:e0:aa:49:64:09:ba:f3:4a:12:a1:6d:47:5d:f4:27:31:
2a:3e:e9:f5:93:d0:af:0f:02:6e:6c:f1:a3:c6:40:5c:64:87:
e2:80:d7:8d:68:49:04:df:d0:13:c1:09:30:59:16:14:a3:1f:
30:06:a9:d4:64:f6:4c:79:15:5e:d6:dc:cb:f0:20:68:95:db:
cc:77:05:b0:9b:f9:a7:a7:60:f5:63:ed:2e:20:65:1e:6e:1f:
21:2b:16:50:4e:4a:ea:27:c9:2f:8f:08:70:40:ef:1f:2e:c3:
9f:df:5e:00:e7:bc:cb:26:de:61:57:e4:37:fa:47:30:e9:c9:
24:a5:8b:5a:04:e4:11:c2:e3:69:0a:91:37:c7:55:2f:25:88:
bf:72:ba:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:48 2026 by rpki-client