Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D4A79A1C6811F1AA3B33E9DAE4EC9C.roa
File: E4D4A79A1C6811F1AA3B33E9DAE4EC9C.roa (raw, json)
Hash identifier: id/kJsgLI6PCBaFmE9DKT8h0MPrQ1TLVS5kFGs2lB/0=
Subject key identifier: 11:3F:52:31:32:66:9C:26:A9:8E:27:00:D0:B2:F7:4D:BB:10:6D:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BEB1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D4A79A1C6811F1AA3B33E9DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 10:07:07 +0000
ROA not before: Tue 10 Mar 2026 10:07:02 +0000
ROA not after: Thu 16 Apr 2026 10:07:02 +0000
asID: 61112
IP address blocks: 154.82.138.0/23 maxlen: 24
154.83.83.0/24 maxlen: 24
154.83.84.0/22 maxlen: 24
154.83.88.0/21 maxlen: 24
154.83.90.0/24 maxlen: 24
154.83.91.0/24 maxlen: 24
154.83.92.0/22 maxlen: 24
154.83.96.0/23 maxlen: 24
154.83.98.0/24 maxlen: 24
154.88.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114353 (0x1beb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 10 10:07:02 2026 GMT
Not After : Apr 16 10:07:02 2026 GMT
Subject: CN=69afed4b-c717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3b:08:0d:37:93:43:a2:e7:59:77:fa:92:e6:
64:9a:30:c9:cd:b2:e4:3c:d6:5b:e8:81:73:5c:32:
82:90:ae:d8:1a:68:b8:05:71:be:2f:a7:06:c2:95:
65:fd:c6:3c:50:24:f7:77:fe:2b:cd:72:15:57:a4:
3d:1a:33:77:1b:22:e4:b7:17:07:22:73:6f:c4:71:
18:35:07:1c:a9:c8:ac:de:53:dd:0f:11:9d:fd:e9:
f5:1a:5b:da:eb:6b:bc:a1:39:f3:bc:db:0c:9e:ff:
d8:c7:5d:28:4f:7b:ff:42:d1:7e:38:dd:74:21:d9:
4d:28:8d:7d:02:96:df:83:8b:cb:65:bf:63:9f:ff:
35:61:9a:12:c8:bd:3c:8c:e3:0d:d7:fb:16:ca:72:
4a:0a:b7:96:cf:0d:b7:34:d5:b3:e3:f8:7f:75:13:
d4:8f:7f:07:dc:5a:d5:d2:e5:7e:fe:92:95:50:72:
4d:97:69:a1:e6:be:99:45:a8:76:5c:bd:cb:6c:7e:
98:98:b7:6a:07:0a:02:02:1b:a0:15:c4:8e:a9:f7:
6e:f8:e4:b4:b9:e8:8a:7a:3e:96:4b:f7:cf:46:2b:
e6:14:24:73:f9:a6:65:3c:0c:bf:24:8c:51:e4:f1:
d3:c8:ef:6c:cd:04:e3:1e:9d:92:98:e2:1d:43:1c:
74:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3F:52:31:32:66:9C:26:A9:8E:27:00:D0:B2:F7:4D:BB:10:6D:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D4A79A1C6811F1AA3B33E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.138.0/23
154.83.83.0-154.83.98.255
154.88.66.0/23
Signature Algorithm: sha256WithRSAEncryption
13:3a:a0:58:8e:d9:78:5f:39:e2:80:85:8b:49:ca:e5:2f:93:
f8:a1:cb:42:48:87:05:3c:ec:03:21:56:1b:ba:8a:ce:3d:1b:
fe:30:08:47:78:de:dc:7d:9e:b7:8a:82:65:62:78:39:a7:7c:
64:2f:d5:94:fc:19:59:03:ce:3f:ce:b7:ef:c4:81:ef:5b:64:
42:af:d2:45:f4:7e:ab:fc:0d:66:de:06:6b:68:13:34:91:7d:
b6:23:fd:58:1a:dd:42:e1:e3:6f:7c:e2:3b:ef:77:e0:cf:d0:
a9:b8:48:13:c4:01:ec:9f:d3:95:10:09:8c:f8:f0:14:7c:83:
f8:46:d7:dd:70:25:07:c7:c3:0e:47:35:a5:b8:fe:14:0e:13:
b8:32:bd:95:99:b7:c2:ab:c9:68:f2:ca:d0:e3:fb:fe:8e:1e:
a4:59:6c:27:13:b2:c5:68:fb:ae:10:09:34:a3:0f:93:ea:b9:
96:6d:9a:7c:22:69:31:50:2f:8d:66:c6:70:20:fd:cc:05:f4:
13:9e:dc:f2:53:75:87:0b:bf:e8:9c:b0:e0:7b:7f:f9:8d:7f:
a5:6a:7d:ea:b3:7f:84:31:c0:a8:d3:9e:2c:7c:1c:5c:9e:ff:
62:04:17:69:17:c1:c5:e6:04:c4:c6:07:55:46:d6:60:38:bd:
f5:79:66:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:23 2026 by rpki-client