Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE3698BA1E0011F18BE099B8DAE4EC9C.roa
File: CE3698BA1E0011F18BE099B8DAE4EC9C.roa (raw, json)
Hash identifier: 2PfXd4/FW4LhN7faU/pwgj7PkCiLMzXYeP6IeL0JivY=
Subject key identifier: 10:02:3A:2B:4B:90:DD:D2:92:56:3C:DD:0D:A1:43:7E:BE:6F:19:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF04
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE3698BA1E0011F18BE099B8DAE4EC9C.roa
Signing time: Thu 12 Mar 2026 10:47:04 +0000
ROA not before: Thu 12 Mar 2026 10:46:58 +0000
ROA not after: Thu 16 Apr 2026 10:46:58 +0000
asID: 22773
IP address blocks: 154.90.19.0/24 maxlen: 24
154.90.20.0/24 maxlen: 24
154.90.21.0/24 maxlen: 24
154.90.22.0/24 maxlen: 24
154.90.23.0/24 maxlen: 24
154.90.24.0/24 maxlen: 24
154.90.25.0/24 maxlen: 24
154.90.26.0/24 maxlen: 24
154.90.27.0/24 maxlen: 24
154.90.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114436 (0x1bf04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 10:46:58 2026 GMT
Not After : Apr 16 10:46:58 2026 GMT
Subject: CN=69b299a8-4c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7f:3e:24:5c:9e:40:50:8b:24:a7:99:23:a4:
4c:46:27:e7:c0:b4:eb:50:cf:58:66:db:99:aa:95:
79:42:15:7b:62:74:f1:79:0a:36:4d:74:3d:66:ba:
9a:6a:7a:81:3b:45:c7:5b:06:2d:98:68:2e:c7:e9:
da:25:f3:44:c1:89:80:c9:fb:82:2b:6b:36:b0:6f:
ea:1c:fd:8f:29:6d:9f:19:26:50:87:5e:67:d4:63:
39:b7:fd:40:91:39:d2:5d:e5:8a:18:02:ad:5c:a4:
2d:50:8c:b8:9b:cb:9a:b6:c1:76:7c:1c:eb:23:2c:
84:9a:bf:54:0e:e3:83:fe:9e:dc:25:fd:ee:c7:38:
d0:75:fc:24:c4:e1:4d:8d:bf:e0:bc:68:54:aa:58:
d4:0d:1e:63:0f:49:7f:c8:e6:3b:89:bd:3d:6e:f8:
4d:60:2a:54:f7:b8:c4:a6:a0:f9:29:7f:91:bd:c6:
41:6a:25:c3:25:fb:32:c9:eb:b8:dd:07:bd:62:f6:
2a:45:e8:35:2c:51:12:93:d9:a1:7b:87:28:73:94:
89:42:88:1b:99:b7:ce:c1:d8:92:7c:73:9c:82:66:
d2:2c:76:bf:c9:c1:b7:3b:15:0e:4e:7e:77:4e:dc:
6f:a3:34:f5:f0:e9:8e:8c:47:6d:8a:6e:c8:f4:66:
f2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:02:3A:2B:4B:90:DD:D2:92:56:3C:DD:0D:A1:43:7E:BE:6F:19:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE3698BA1E0011F18BE099B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.19.0-154.90.27.255
154.90.132.0/24
Signature Algorithm: sha256WithRSAEncryption
31:d9:9c:cd:45:69:61:34:89:d8:f1:b0:77:62:a5:7f:35:de:
35:e8:e9:ce:c0:79:1f:28:3a:c5:70:00:4e:00:24:a0:df:69:
7b:41:aa:4d:7b:06:d5:b5:c3:7f:63:f1:d6:b3:36:d5:91:a1:
fe:40:53:8b:6d:6f:2e:39:60:dd:ca:9a:69:95:89:9e:81:1a:
00:a1:2e:6a:96:d9:9b:05:ab:35:43:1f:05:84:53:87:81:21:
5e:5e:a7:40:15:ce:a0:a8:5b:61:8b:e9:39:76:6b:dd:45:de:
23:d3:bb:ca:58:89:9c:09:ae:f2:18:da:fb:e9:c7:60:a0:79:
e0:16:9b:ec:9c:47:b1:32:73:6f:f0:85:f6:35:41:da:e1:9c:
de:e9:bc:9f:b7:be:03:30:98:fb:b9:22:73:8c:a9:c4:f8:24:
d0:0b:c4:b7:5d:ae:f3:17:a7:2c:8c:c1:93:d0:8b:39:89:72:
fa:fd:27:61:5d:71:23:58:0b:b9:d7:95:f2:a6:ff:ac:fd:cc:
d9:27:04:6c:87:a1:3f:e6:7c:d9:5d:92:5b:cf:ba:02:4b:57:
96:ef:30:c2:66:fe:be:7f:27:0e:67:e2:84:ed:8a:df:3c:ef:
4a:d9:c2:be:79:b5:22:d4:ee:e4:5b:3f:9b:3f:a8:b1:9e:48:
0a:dc:61:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:13:54 2026 by rpki-client