Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE12F50A163A11F1878C8CA6DAE4EC9C.roa
File: BE12F50A163A11F1878C8CA6DAE4EC9C.roa (raw, json)
Hash identifier: 0co2E9j1ujvirkNquesBJRnJu066FjP3j7UMyGe/Ttg=
Subject key identifier: F6:E0:9C:4F:09:7D:34:05:B1:A9:78:A2:C6:6E:2C:6A:3C:D5:EA:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BD0B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE12F50A163A11F1878C8CA6DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 13:21:38 +0000
ROA not before: Mon 02 Mar 2026 13:21:34 +0000
ROA not after: Thu 09 Apr 2026 13:21:34 +0000
asID: 138915
IP address blocks: 154.95.78.0/24 maxlen: 24
154.95.79.0/24 maxlen: 24
154.95.80.0/24 maxlen: 24
154.95.81.0/24 maxlen: 24
154.95.82.0/24 maxlen: 24
154.95.83.0/24 maxlen: 24
154.95.84.0/24 maxlen: 24
154.95.85.0/24 maxlen: 24
154.95.86.0/23 maxlen: 24
154.95.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Mar 2026 00:06:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113931 (0x1bd0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 13:21:34 2026 GMT
Not After : Apr 9 13:21:34 2026 GMT
Subject: CN=69a58ee2-da09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d8:0f:7e:ae:0e:1a:c4:92:e6:01:90:9b:b6:
93:9f:2e:64:63:5e:64:d5:ec:44:f3:9b:4f:93:1f:
81:82:52:c2:08:1c:77:88:70:62:9e:2c:b9:a5:20:
fe:13:23:60:d0:08:fb:79:fd:fb:0f:42:81:23:0d:
74:ab:39:4d:1d:24:27:77:59:0d:4c:8e:ab:64:df:
92:5c:5a:68:7c:32:18:0f:5f:33:39:14:c7:02:8e:
b9:b1:d5:8e:fa:7c:b1:55:55:d0:26:8e:d2:33:4d:
5c:c9:25:18:dd:76:c7:be:07:e8:80:a8:cc:46:95:
41:b2:63:32:c8:22:1f:1a:f1:05:41:71:4f:c0:c7:
0c:91:65:33:53:42:54:0f:6b:f9:cf:77:58:f7:89:
33:e3:22:ec:08:f2:ea:1a:19:6b:17:06:c6:0d:94:
b3:74:2d:58:fd:45:84:66:2c:55:0d:be:2c:40:d5:
a2:68:4e:8c:c2:b3:0c:74:d6:df:d8:67:61:a8:ee:
b6:69:2d:fd:2c:c7:63:e3:ea:3d:21:ad:4c:12:d6:
8b:03:5d:54:5c:e9:9b:9f:2a:f8:b0:e2:c6:0a:bb:
ba:9a:5f:8e:bf:36:86:e7:bd:1a:bc:25:a8:51:85:
e6:0f:af:c9:6d:f7:98:0e:d7:d3:48:94:65:39:74:
f6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E0:9C:4F:09:7D:34:05:B1:A9:78:A2:C6:6E:2C:6A:3C:D5:EA:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE12F50A163A11F1878C8CA6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.78.0-154.95.88.255
Signature Algorithm: sha256WithRSAEncryption
a2:93:e7:75:3f:8d:29:f0:4b:12:57:b4:42:a3:9b:89:0d:33:
1e:2e:b6:49:fe:f1:67:6d:cd:8f:72:9b:d8:d8:98:44:8c:a8:
15:56:5c:e9:d7:31:d1:be:2d:9c:8b:67:2d:73:98:72:62:19:
a4:58:16:60:4f:86:49:57:ef:c1:b2:f7:7c:4b:a7:0a:67:1a:
5c:94:36:7f:97:98:f3:13:07:d3:49:cf:9b:c9:b5:1a:9f:17:
17:12:c4:21:e7:e9:67:07:8c:d4:a7:db:39:02:66:53:b8:c1:
b2:37:df:9f:b5:70:6a:95:f7:e0:7c:40:4f:06:30:a3:f0:ff:
ad:3e:97:03:9f:c4:fb:c5:f2:ca:4c:89:7c:d3:f3:c3:c3:27:
04:c0:12:73:35:b0:59:33:0a:c6:f4:bd:3e:74:04:a8:70:c8:
e7:9a:5e:0e:28:ee:76:15:fa:78:ff:69:aa:c8:c4:17:93:2f:
12:8a:87:78:57:e3:27:71:3b:10:de:c3:96:af:47:12:6f:1d:
3d:84:59:75:77:ac:93:92:4e:86:87:57:38:2f:c9:a3:66:09:
94:9e:9f:7d:27:07:e6:1a:0a:eb:97:e4:11:ce:db:0e:fd:54:
59:46:9b:ca:60:32:ee:af:da:df:e2:fc:71:a4:4a:18:25:ec:
9b:bb:92:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 22:23:04 2026 by rpki-client