Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4C69676245B11F1B19B4CC6DAE4EC9C.roa
File: B4C69676245B11F1B19B4CC6DAE4EC9C.roa (raw, json)
Hash identifier: OG9aHxtP21j51RU7sKUp1vfFVcwu2kQsY9W2uTgQziA=
Subject key identifier: 03:6A:63:D9:4E:09:3D:25:70:81:9F:D3:EC:F0:9A:89:37:CA:D9:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C03E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4C69676245B11F1B19B4CC6DAE4EC9C.roa
Signing time: Fri 20 Mar 2026 12:52:52 +0000
ROA not before: Fri 20 Mar 2026 12:52:47 +0000
ROA not after: Fri 23 Jul 2027 12:52:47 +0000
asID: 328608
IP address blocks: 154.201.48.0/22 maxlen: 24
154.201.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114750 (0x1c03e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 12:52:47 2026 GMT
Not After : Jul 23 12:52:47 2027 GMT
Subject: CN=69bd4324-affd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d3:3d:17:82:e6:4e:59:6a:9d:2e:dc:b4:28:
b8:83:c6:a3:69:22:bc:a3:e9:3e:5a:6e:f4:4e:25:
73:fd:a4:40:55:d6:80:f3:1a:7f:a0:07:f7:88:0c:
6e:af:a5:e4:f5:c1:55:4d:cf:6b:b6:2d:36:35:6d:
3d:ae:21:09:4a:ce:66:4f:27:9c:40:19:46:69:c0:
e3:24:d1:de:24:ee:83:2f:31:b0:a6:4d:59:11:1a:
71:7a:ba:3c:76:47:be:ce:27:18:56:b0:b8:70:29:
05:85:f7:d7:40:6c:89:05:c6:a1:c6:e1:57:8f:42:
d2:cf:ae:92:1c:c3:30:3b:c9:ce:28:c2:60:3f:63:
b2:31:0e:90:16:e5:69:5c:0d:a6:04:18:ee:8e:0a:
26:e5:af:57:2f:4c:9a:3e:1b:b2:1f:4c:9e:eb:82:
f5:a6:9b:69:44:7b:db:38:11:63:80:b2:6e:24:54:
08:d6:f2:3a:ab:5a:6d:51:97:72:e7:a1:43:d6:08:
6e:bc:0a:7e:d9:b4:1c:53:ad:80:95:ec:f2:d7:15:
34:4d:ec:fb:d6:dc:81:b7:69:b3:66:f2:e5:e4:51:
1f:57:7b:b4:b3:49:df:e8:2d:b5:6a:2c:16:2e:7a:
7c:d5:a3:e0:89:b9:97:a1:47:f3:50:98:a0:5e:8b:
d3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:6A:63:D9:4E:09:3D:25:70:81:9F:D3:EC:F0:9A:89:37:CA:D9:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4C69676245B11F1B19B4CC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.48.0-154.201.52.255
Signature Algorithm: sha256WithRSAEncryption
4a:dc:f6:ff:eb:92:07:40:f3:97:a8:d6:c7:f7:40:ca:ff:78:
fe:db:3c:e0:f6:31:57:d5:de:13:b5:1b:0a:3c:4b:46:cb:b2:
83:9d:7d:44:58:71:db:42:f9:8d:15:4e:f6:ac:d8:44:a4:2b:
f4:80:42:c9:00:72:7b:bc:c8:6c:0e:f5:fc:f0:6d:a8:55:c8:
ce:8c:04:ff:f6:56:a2:1f:91:f9:2e:28:76:9c:c8:95:8d:73:
bf:b2:97:1c:69:21:64:99:b7:95:9a:8e:46:0a:b8:df:f9:3f:
45:a6:50:36:81:b1:0d:a2:04:ae:c0:06:ac:d8:80:70:82:5d:
90:d4:23:60:9d:b8:50:c1:b7:2d:2e:fd:9a:f5:c4:03:ac:85:
37:1c:38:63:f4:3a:72:f9:82:60:72:9d:df:a6:e3:ee:5a:3e:
75:39:62:f4:fb:0d:4c:79:6e:33:e3:94:8e:38:30:39:5c:70:
46:41:51:2f:a9:f4:09:53:cd:36:ed:2b:ad:c5:29:62:8a:0a:
85:9e:34:a4:9c:53:00:d1:58:1a:11:7f:0f:ee:23:d2:a4:28:
1e:de:e4:30:eb:44:96:df:a2:e2:44:80:a2:36:91:3f:85:38:
ee:9f:db:24:f4:2c:4b:2e:04:83:c0:26:f9:95:16:4e:ba:4e:
f5:17:53:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:15:55 2026 by rpki-client