Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE08038E19F711F1A45AB1ADDAE4EC9C.roa
File: EE08038E19F711F1A45AB1ADDAE4EC9C.roa (raw, json)
Hash identifier: +1ZdHrWFPEtGFjC+KluWf/UGRjX2Aqkw0bu06tMOXXs=
Subject key identifier: C9:2B:AC:64:94:47:72:EE:EB:98:88:22:D5:D2:B3:AA:EB:F4:30:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE26
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE08038E19F711F1A45AB1ADDAE4EC9C.roa
Signing time: Sat 07 Mar 2026 07:33:27 +0000
ROA not before: Sat 07 Mar 2026 07:33:22 +0000
ROA not after: Thu 04 Jun 2026 07:33:22 +0000
asID: 142403
IP address blocks: 154.221.21.0/24 maxlen: 24
154.221.22.0/24 maxlen: 24
154.221.23.0/24 maxlen: 24
154.221.24.0/24 maxlen: 24
154.221.25.0/24 maxlen: 24
154.221.26.0/24 maxlen: 24
154.221.27.0/24 maxlen: 24
154.221.28.0/24 maxlen: 24
154.221.29.0/24 maxlen: 24
154.221.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114214 (0x1be26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 7 07:33:22 2026 GMT
Not After : Jun 4 07:33:22 2026 GMT
Subject: CN=69abd4c7-b472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:31:14:0c:1a:15:9f:7d:3c:07:8f:fd:10:b6:
9b:5c:ad:8f:d5:f1:2e:bb:99:ad:d9:36:31:53:5d:
1e:a1:b5:c5:94:7a:43:71:04:dc:78:19:7d:72:da:
c4:6c:69:58:62:82:dc:4c:0d:59:cf:89:69:c0:af:
8b:23:87:21:1f:73:ed:fb:37:5b:5b:fe:4b:c4:aa:
cc:58:9e:48:26:1d:0c:47:27:37:de:18:90:7f:60:
e9:da:55:9d:98:80:d1:b9:04:6d:32:b2:91:4c:c7:
a0:af:40:d4:b3:9e:03:d5:46:a1:0c:65:76:da:ad:
66:ae:bf:42:17:99:9d:b2:a0:63:ac:0a:c0:0a:8d:
04:fd:53:46:d5:3d:ec:76:85:35:4e:b3:9f:01:85:
62:4c:a7:09:9e:f9:85:20:97:82:6c:4b:ca:33:d4:
8f:9d:6a:75:1f:16:af:93:43:76:e3:0d:e2:cd:c8:
d2:b6:66:ec:70:43:0e:af:f1:0a:71:e4:11:dd:95:
be:ac:8f:af:96:f3:13:75:8a:7f:d0:9b:d6:48:ec:
a4:87:fd:84:90:9d:9a:f5:28:9c:55:a3:95:ef:eb:
0c:9b:a0:9f:80:f2:27:95:96:18:1f:d5:8f:33:13:
7b:e0:26:40:59:35:c2:78:ce:df:e4:4c:5e:97:ea:
35:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2B:AC:64:94:47:72:EE:EB:98:88:22:D5:D2:B3:AA:EB:F4:30:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE08038E19F711F1A45AB1ADDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.21.0-154.221.30.255
Signature Algorithm: sha256WithRSAEncryption
d4:ba:62:45:dc:94:b8:9c:f4:12:83:87:87:ab:e9:cd:70:91:
23:39:7c:30:46:64:ee:15:f7:23:a9:ea:e6:03:0a:4a:1c:f0:
02:63:e7:dd:7d:fc:49:94:8e:2a:d1:39:28:64:20:93:1c:02:
8e:52:13:21:e8:9b:2e:84:03:1f:16:c1:78:b5:be:4b:b3:ee:
66:4f:4b:c5:b3:c3:5a:26:1d:e2:58:20:6c:4e:fc:85:40:cb:
64:c4:b1:b7:7a:ab:75:dd:59:5c:22:5c:39:69:63:4d:55:9d:
32:5a:43:e6:f8:62:0e:32:91:ff:e3:bd:f5:9a:52:25:81:90:
16:0f:92:69:46:1d:cb:25:11:27:2b:69:b7:f3:e1:fb:bb:e1:
56:f0:20:ea:e1:72:3e:78:9f:5a:1f:bb:05:7b:e2:07:25:df:
46:62:13:eb:f8:87:7b:89:b8:3d:99:10:65:0a:a3:4e:ad:34:
c6:41:01:38:90:00:d6:3a:83:bc:02:07:13:e1:3b:05:15:20:
ba:97:3c:bf:a5:e5:35:b2:21:98:7d:4c:e8:e2:a7:5c:b8:05:
33:0f:56:37:85:1e:7b:27:57:a2:a6:57:dc:80:b0:eb:83:34:
44:73:95:e1:85:53:3a:9c:3f:9c:df:5c:49:1a:e6:90:a8:69:
1f:f9:95:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:20 2026 by rpki-client