Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCE627701DE411F184418A98DAE4EC9C.roa
File: DCE627701DE411F184418A98DAE4EC9C.roa (raw, json)
Hash identifier: yKZOCVQv3NuWlcudhUcpDP2O5JKvURhpb5LhdeLCYeU=
Subject key identifier: 1D:0A:D4:F1:41:94:B9:FC:A4:5D:17:BA:CC:24:E4:53:91:E1:58:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BEFA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCE627701DE411F184418A98DAE4EC9C.roa
Signing time: Thu 12 Mar 2026 07:27:02 +0000
ROA not before: Thu 12 Mar 2026 07:26:58 +0000
ROA not after: Sun 19 Apr 2026 07:26:58 +0000
asID: 63199
IP address blocks: 154.81.62.0/24 maxlen: 24
154.81.63.0/24 maxlen: 24
154.89.2.0/24 maxlen: 24
154.89.3.0/24 maxlen: 24
154.89.134.0/24 maxlen: 24
154.89.135.0/24 maxlen: 24
154.92.1.0/24 maxlen: 24
154.92.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114426 (0x1befa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 07:26:58 2026 GMT
Not After : Apr 19 07:26:58 2026 GMT
Subject: CN=69b26ac6-f93f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fa:64:19:55:98:76:ea:3c:28:6b:59:ae:e2:
f6:68:2d:18:29:f8:f8:2c:13:a3:fd:04:1e:0b:65:
51:ff:11:9f:a6:29:c4:d7:d7:81:bf:df:87:d3:e6:
52:5a:ea:fb:70:05:56:41:0e:bc:68:d0:52:6f:72:
bf:24:67:43:aa:89:7e:89:53:eb:4f:23:4a:29:d9:
36:b0:19:e4:de:a5:0c:ba:4c:02:10:68:ea:c2:be:
94:c1:17:96:2c:49:fa:9c:36:84:41:7a:c8:5e:37:
01:ab:1f:39:0f:ff:7b:58:9f:9b:1e:7d:a0:ff:4d:
02:1a:39:6a:12:b6:2f:a1:a8:c4:a3:9e:52:5f:43:
65:a3:f0:ec:28:aa:03:cc:96:c7:c8:45:da:e5:60:
8e:48:9d:c3:0d:dc:da:3d:1d:fb:46:95:37:93:6f:
65:71:31:56:92:3c:ab:8d:03:b9:f5:f2:d8:45:e0:
0f:ba:b4:ee:68:37:dc:76:f4:e2:5a:f0:39:41:ac:
2e:a2:1c:db:86:8f:5c:0c:3a:35:7c:26:cf:6c:93:
08:72:87:b5:19:59:03:35:fe:65:59:07:09:34:be:
24:17:d0:9f:19:51:b0:61:b5:dc:e0:6c:a2:ba:d8:
7a:a6:24:17:e4:f5:10:de:10:d1:c6:f0:f4:9e:a4:
6b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0A:D4:F1:41:94:B9:FC:A4:5D:17:BA:CC:24:E4:53:91:E1:58:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCE627701DE411F184418A98DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.62.0/23
154.89.2.0/23
154.89.134.0/23
154.92.1.0/24
154.92.21.0/24
Signature Algorithm: sha256WithRSAEncryption
69:2a:30:e6:df:76:78:0c:88:5b:58:b4:6e:92:47:16:73:51:
58:e6:3e:ad:7b:f7:7b:28:91:ed:95:93:8f:82:ae:f6:7c:2f:
cc:21:5d:84:f2:75:db:84:a5:31:16:48:35:bb:b1:3c:39:51:
34:3e:51:d8:f9:14:71:15:b3:07:96:7f:13:ed:6a:06:1f:e5:
c4:b3:20:5a:7a:4f:cf:d5:75:e3:79:71:b6:26:4d:65:7a:1e:
27:61:69:bf:57:f2:48:cf:ba:89:b1:f4:06:82:22:d7:b2:6a:
e7:1c:5b:01:b9:3f:39:35:fd:3a:31:cf:7b:33:ac:43:c2:02:
54:5c:e4:31:85:44:71:25:eb:84:c9:02:fc:81:d8:8c:64:44:
52:eb:c3:75:df:99:db:36:ee:28:95:2f:fa:cb:72:62:ae:4d:
97:15:c2:59:ef:0b:87:fb:00:0e:93:b4:64:17:08:66:39:cc:
41:89:03:3e:5e:de:5c:28:05:b0:f6:e5:de:db:56:97:b8:47:
98:19:fb:50:56:06:49:1f:b1:f7:7b:5f:e3:97:e6:ca:57:49:
ab:75:ea:f1:aa:a6:23:47:a7:25:55:e4:33:d7:cf:76:36:8b:
79:f1:cc:2e:bd:4c:81:18:51:03:f3:da:fd:3e:f6:60:9b:c8:
0f:10:55:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:47 2026 by rpki-client