Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC61B1D6193411F1BED0BC7BDAE4EC9C.roa
File: BC61B1D6193411F1BED0BC7BDAE4EC9C.roa (raw, json)
Hash identifier: mjHHlozkayk5ZAXLH/6Zy87G8XLqw5zmwQSGmQqg7/g=
Subject key identifier: 10:A6:FF:83:35:62:87:34:99:86:1D:66:BB:49:4D:D8:6A:BF:C9:BF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BDED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC61B1D6193411F1BED0BC7BDAE4EC9C.roa
Signing time: Fri 06 Mar 2026 08:16:11 +0000
ROA not before: Fri 06 Mar 2026 08:16:07 +0000
ROA not after: Wed 08 Apr 2026 08:16:07 +0000
asID: 45194
IP address blocks: 154.84.193.0/24 maxlen: 24
154.84.209.0/24 maxlen: 24
154.84.210.0/24 maxlen: 24
154.84.211.0/24 maxlen: 24
154.84.212.0/24 maxlen: 24
154.84.225.0/24 maxlen: 24
154.84.226.0/24 maxlen: 24
154.84.227.0/24 maxlen: 24
154.84.228.0/24 maxlen: 24
154.84.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114157 (0x1bded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 6 08:16:07 2026 GMT
Not After : Apr 8 08:16:07 2026 GMT
Subject: CN=69aa8d4b-4aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a1:81:a8:7b:bf:84:5d:5c:07:05:e4:b1:ac:
2b:e1:10:0b:22:7f:16:45:cb:27:f9:f1:5c:23:43:
31:0d:d4:ac:12:d7:0f:7d:36:9d:c5:26:00:fd:ec:
4c:a1:48:87:fa:75:2c:9d:e0:99:2f:5c:ee:a8:05:
ce:ef:a6:b0:af:e6:7d:f6:51:ac:a6:ee:7f:b2:74:
b8:a8:4e:2e:2f:be:b6:38:48:f6:05:1f:66:ce:64:
f7:76:e8:17:9e:3d:70:0d:e7:58:6e:01:77:25:98:
f7:02:57:00:53:a0:b5:75:3d:be:28:0b:b6:a5:49:
dc:2c:4e:40:b1:ec:f2:02:c1:d6:d5:70:c4:93:15:
e8:92:c1:cb:cb:88:06:59:42:91:82:e2:6e:2b:bd:
67:c4:9e:13:e8:4e:12:b6:f2:39:c5:53:74:e6:8a:
ad:03:b4:26:98:72:5a:74:f5:b8:ac:f9:5a:fc:15:
9d:39:3d:65:e2:e2:38:05:ad:8a:3e:36:3a:e1:18:
bb:45:3e:90:2c:ee:3c:1a:84:4d:6f:d3:12:a5:f6:
ae:f0:34:b0:fc:44:cc:05:51:03:cb:d3:39:3b:04:
2f:86:42:7d:e9:63:98:8d:e0:67:e9:f2:a5:b7:fa:
0b:17:bd:ff:8d:f3:72:1e:f6:26:1a:b4:93:3f:ce:
e4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A6:FF:83:35:62:87:34:99:86:1D:66:BB:49:4D:D8:6A:BF:C9:BF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC61B1D6193411F1BED0BC7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.193.0/24
154.84.209.0-154.84.212.255
154.84.225.0-154.84.229.255
Signature Algorithm: sha256WithRSAEncryption
88:b2:5b:e8:1f:72:77:5f:52:29:1a:cf:5f:ce:fd:8a:f7:19:
3f:3a:41:2b:2d:34:9a:ab:29:b5:9b:c7:56:89:98:89:9a:8d:
6f:c8:32:b4:5f:f5:dd:05:84:ba:e2:4d:49:45:d5:fe:07:72:
10:54:ee:d3:f5:e5:68:36:e4:f2:d5:f4:07:2d:36:91:c5:69:
0c:08:8e:1b:d9:d8:42:00:56:b4:56:b7:6f:d6:48:fc:78:ce:
f9:bf:b2:63:78:9a:62:36:a7:19:f0:ad:27:07:6a:fb:61:68:
1f:ff:57:c3:cf:5a:60:ef:ef:5d:e3:6c:93:cd:65:82:96:55:
43:07:38:44:48:77:1d:d8:ec:5a:47:6c:e1:8a:9a:85:bd:b1:
34:59:69:e8:b6:a3:5c:36:31:c6:2b:33:2b:88:99:e2:c9:af:
bb:5f:05:46:c2:88:d2:5a:7f:2e:09:7f:f1:7d:8b:36:be:8f:
d7:95:2b:b3:22:62:00:9d:41:26:b1:95:94:87:90:4d:30:74:
6b:41:3c:e9:86:5d:44:ff:5b:c0:ba:b4:b3:af:14:56:d5:c7:
ec:f7:78:38:f2:c4:7e:b2:3c:cd:75:04:3a:54:d9:cb:5b:86:
a0:36:9f:b4:ba:e6:43:98:e5:24:74:1b:c5:d1:17:f2:75:3a:
73:0c:1d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 07:59:47 2026 by rpki-client