Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D39D776C1C6E11F18AC02B8CDAE4EC9C.roa
File: D39D776C1C6E11F18AC02B8CDAE4EC9C.roa (raw, json)
Hash identifier: 0NGWa16wz+RCxxvoeDQDQNuqwm7gmZLZozf0ulrHD9o=
Subject key identifier: 79:10:9B:A8:B5:50:46:40:5C:2F:54:C4:1B:C6:20:C4:93:B9:34:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BEB7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D39D776C1C6E11F18AC02B8CDAE4EC9C.roa
Signing time: Tue 10 Mar 2026 10:49:35 +0000
ROA not before: Tue 10 Mar 2026 10:49:29 +0000
ROA not after: Thu 16 Apr 2026 10:49:29 +0000
asID: 151419
IP address blocks: 154.88.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114359 (0x1beb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 10 10:49:29 2026 GMT
Not After : Apr 16 10:49:29 2026 GMT
Subject: CN=69aff73f-bdc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:6e:f0:24:b1:cd:5d:52:18:70:e7:55:d3:
32:5e:1a:40:3d:77:a1:6d:e4:af:65:16:ed:4c:33:
9c:9b:f8:a2:94:86:42:e6:76:8a:f9:08:cf:b5:e5:
4e:b9:d2:4a:f1:c7:0f:24:76:ad:5a:97:a4:8f:4c:
5b:84:d6:42:31:de:3a:7e:e0:dc:41:2a:29:17:e2:
60:a2:fc:a6:28:80:e8:ab:de:51:18:ca:6d:82:1c:
cb:e5:e4:10:f5:e8:db:d9:e8:46:74:24:96:2f:19:
b0:58:31:cf:1a:44:eb:67:94:69:d6:e8:4d:f7:81:
f2:30:bb:fe:18:c4:ea:8d:4f:f1:1a:bb:a1:b9:cf:
7c:4f:1b:dc:0b:64:fa:4e:88:24:46:3f:d8:2b:aa:
41:20:2e:6e:05:f6:7a:60:e9:53:65:ae:35:37:9d:
18:5e:3f:2b:43:9e:d7:dd:4f:40:59:dd:57:81:88:
10:25:66:2e:53:3d:3c:ee:e5:fa:1f:65:8a:d4:6a:
76:15:0a:30:ad:47:74:d4:39:ea:05:24:c8:50:3a:
e9:fb:80:37:88:d0:08:cd:6a:31:76:c8:79:c4:0e:
af:99:72:d8:74:30:27:4b:dc:bb:2f:a6:37:64:b8:
b2:cd:2c:17:67:ad:30:1c:2e:8f:e0:cf:79:05:af:
25:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:10:9B:A8:B5:50:46:40:5C:2F:54:C4:1B:C6:20:C4:93:B9:34:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D39D776C1C6E11F18AC02B8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.66.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:f0:7f:bc:4d:6f:97:98:83:81:46:65:41:53:40:57:09:d6:
8e:a0:80:30:aa:ef:b7:79:e4:37:3f:b3:14:f8:c9:ab:f8:72:
68:d7:ea:8d:e4:52:cb:db:19:fa:96:30:19:fc:e2:41:e9:c5:
9e:c3:76:a8:d9:86:74:5f:08:57:26:16:92:de:a0:77:fe:0d:
3b:3e:da:96:b3:7e:ef:15:63:16:79:b5:a7:fa:3b:b9:e4:07:
1e:bd:72:3f:52:f5:a0:2d:34:42:c7:c9:2d:64:1f:66:b1:0c:
23:fa:32:3d:e5:4f:69:07:3c:00:9f:17:51:e1:4b:b1:b0:41:
2d:6f:7d:0d:71:84:5f:46:fc:f7:57:bc:90:20:93:e3:db:1f:
78:7b:fa:d8:2e:c4:60:3b:ac:ee:92:8f:36:47:30:67:29:f8:
73:83:0b:40:de:2e:49:d1:5d:7c:7d:08:d7:a9:66:cd:4d:e8:
ac:55:cb:28:6d:8a:b5:6f:59:e6:4e:77:b4:c0:b1:a1:67:9f:
a3:27:c6:71:76:90:76:fc:6f:a5:1d:69:70:83:8f:b0:de:49:
b6:c0:51:a1:25:34:72:2b:ec:82:29:c1:52:2b:c4:fb:1f:f4:
98:14:b0:18:8a:81:aa:a3:e8:af:54:73:e6:a4:ae:d7:c6:88:
fc:60:66:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:15:46 2026 by rpki-client