Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F026540A17BC11F1B481FFEDDAE4EC9C.roa
File: F026540A17BC11F1B481FFEDDAE4EC9C.roa (raw, json)
Hash identifier: rTYoqyR0/qTLejpn77qCdKYLOVPCgzzO1DZGGPSktJg=
Subject key identifier: 06:64:8D:A7:61:B2:48:1A:29:4E:8C:BC:16:8B:F4:44:13:6F:46:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BD69
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F026540A17BC11F1B481FFEDDAE4EC9C.roa
Signing time: Wed 04 Mar 2026 11:26:07 +0000
ROA not before: Wed 04 Mar 2026 11:26:04 +0000
ROA not after: Thu 02 Apr 2026 11:26:04 +0000
asID: 140869
IP address blocks: 154.81.32.0/24 maxlen: 24
154.81.33.0/24 maxlen: 24
154.81.34.0/24 maxlen: 24
154.81.35.0/24 maxlen: 24
154.81.36.0/24 maxlen: 24
154.81.37.0/24 maxlen: 24
154.81.38.0/24 maxlen: 24
154.81.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114025 (0x1bd69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 4 11:26:04 2026 GMT
Not After : Apr 2 11:26:04 2026 GMT
Subject: CN=69a816cf-a5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:72:2e:94:05:a2:01:a2:35:ff:99:99:b9:d8:
45:d9:be:89:78:6e:15:51:28:c2:94:f2:72:35:cb:
68:8a:8a:9c:5a:49:61:c9:24:68:67:77:b4:b0:99:
5a:15:c9:1d:bc:f5:99:e2:7e:2c:ac:54:4a:16:fd:
ff:f7:f9:2b:dc:e7:ff:5e:87:3d:38:68:7a:ce:d2:
93:fd:25:da:23:95:c1:10:7c:18:ca:c0:63:5f:87:
77:55:fd:fd:4c:47:48:94:c7:4a:b5:6d:89:be:af:
e5:1b:05:76:66:ca:72:84:d2:8a:ba:e6:5a:09:29:
af:47:14:ff:6e:33:01:ea:c1:16:9a:60:29:1e:aa:
dc:ef:db:1a:5e:df:7d:34:92:bd:91:b8:1c:7d:19:
62:76:ed:f0:53:da:d9:86:66:2c:59:8d:bd:f3:d8:
a5:06:37:c8:06:05:21:05:21:80:35:78:dc:b6:8c:
c5:d1:fc:6b:42:0b:3f:d0:f3:53:a3:3c:7f:6d:b2:
0a:74:47:52:79:9d:96:15:c2:3f:36:f9:6b:52:50:
24:9c:32:50:dc:0b:27:74:14:61:cb:ef:77:d8:4b:
94:5c:0c:41:9b:e5:32:8c:86:a4:bb:2f:43:23:89:
4a:61:97:b0:6a:95:cf:f3:a6:13:d0:3a:0e:fb:aa:
97:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:64:8D:A7:61:B2:48:1A:29:4E:8C:BC:16:8B:F4:44:13:6F:46:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F026540A17BC11F1B481FFEDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.32.0/21
Signature Algorithm: sha256WithRSAEncryption
63:be:d0:88:7a:7a:14:b9:43:bf:82:9e:7c:70:aa:eb:6d:e3:
76:09:e0:e8:aa:64:2a:9d:60:67:69:eb:a8:c2:fb:53:04:84:
bf:30:d7:b0:8c:48:f8:5e:dd:18:8a:ff:da:0f:9d:de:87:e1:
2f:33:34:02:07:88:42:ab:81:69:e7:bd:ae:01:f2:27:ff:58:
2f:02:aa:11:c7:71:8a:13:26:11:59:1d:3a:ee:ce:8e:8d:46:
49:94:52:02:86:67:ff:04:71:01:dd:e0:27:70:f1:22:ca:97:
bc:a9:6b:e4:d0:d8:7e:3f:df:c8:0d:ef:68:02:4e:24:64:78:
67:93:1e:cf:92:37:9f:27:9a:ba:e5:e0:cf:6e:3c:93:7a:1a:
9d:ed:a7:d8:20:89:3e:0c:d9:2b:70:e4:f6:6a:2f:3e:2f:e5:
40:a9:dd:50:18:e1:6c:ec:d7:25:fc:7b:92:8c:69:b6:7e:f6:
d3:ff:29:47:2b:b8:9d:b5:9f:c6:b2:c9:18:57:2a:37:5c:3e:
63:64:4e:49:3e:5e:a9:0b:eb:a0:b8:4b:d5:ab:b0:78:bd:48:
14:d4:60:2d:d7:f3:3d:d3:40:d5:23:37:1f:43:c9:d7:45:52:
29:41:7d:b7:2f:da:c4:06:4e:49:f6:cb:8f:10:fe:af:6b:17:
02:9a:ca:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:15:47 2026 by rpki-client