Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB1A39D21B9D11F1BFB76AC6DAE4EC9C.roa
File: FB1A39D21B9D11F1BFB76AC6DAE4EC9C.roa (raw, json)
Hash identifier: hPG5DFmD3p0WxLZiidEET4JK89Y7mre85jVZvq9z6HI=
Subject key identifier: 6B:EB:7E:07:3C:85:06:85:2B:6B:05:D4:A4:BA:4E:1E:BD:6F:03:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE82
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB1A39D21B9D11F1BFB76AC6DAE4EC9C.roa
Signing time: Mon 09 Mar 2026 09:54:36 +0000
ROA not before: Mon 09 Mar 2026 09:54:32 +0000
ROA not after: Thu 16 Apr 2026 09:54:32 +0000
asID: 17497
IP address blocks: 154.82.19.0/24 maxlen: 24
154.94.2.0/23 maxlen: 24
154.94.2.0/24 maxlen: 24
154.94.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114306 (0x1be82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 9 09:54:32 2026 GMT
Not After : Apr 16 09:54:32 2026 GMT
Subject: CN=69ae98dc-b609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d5:f9:0c:5f:63:5a:0c:25:fd:f5:13:d9:dd:
74:8b:9a:4e:7d:c7:bb:de:5f:69:cd:ba:a1:17:05:
04:af:d7:93:5b:f8:09:5b:3c:2b:bb:a0:63:96:d3:
aa:5b:48:cf:7a:be:30:84:5d:54:7f:6e:05:ba:6e:
45:ef:06:ad:f8:41:8d:ea:aa:26:6d:b6:7d:8f:c6:
1a:e5:e1:42:8b:d3:1f:d5:d5:48:72:29:ed:16:cb:
34:55:32:7e:dc:06:6f:de:f4:da:3a:a8:dc:bb:7d:
1e:23:38:ad:c0:99:8b:d8:13:5e:60:3e:43:76:6d:
71:0e:67:ed:fa:78:f2:bd:e8:33:46:84:d9:f4:c2:
bb:8f:b3:43:54:b3:1b:fa:fd:45:4d:91:ce:98:dc:
b7:8a:ff:b2:60:73:ad:a5:a7:63:01:ed:bd:d8:91:
25:b4:0f:4a:60:bb:e8:40:89:c8:0d:c9:39:3d:1d:
42:24:ad:e9:92:c0:bf:d1:fd:12:9e:b3:c9:af:ed:
27:ae:91:e0:e2:e5:75:3d:6c:10:d6:ba:c6:04:f0:
05:41:a8:c7:40:2e:fb:b2:40:42:06:c0:c5:73:ce:
91:a3:c3:53:76:af:55:07:72:2d:62:db:65:09:91:
6d:cd:72:4e:ef:3d:2c:36:54:a1:0d:03:dd:10:aa:
8c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EB:7E:07:3C:85:06:85:2B:6B:05:D4:A4:BA:4E:1E:BD:6F:03:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB1A39D21B9D11F1BFB76AC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.19.0/24
154.94.2.0/23
Signature Algorithm: sha256WithRSAEncryption
74:32:61:31:c3:93:ef:a7:c8:a9:57:fd:a8:a2:1d:48:24:60:
fe:eb:e3:95:a1:fb:e7:d2:c4:4e:79:13:d6:cf:0f:de:f2:8e:
59:7a:ec:7c:91:d2:f9:e2:38:b3:ea:87:d9:78:dc:f1:40:e8:
88:59:55:96:15:3c:2d:1b:94:23:b4:86:e2:a4:f8:0b:e3:90:
90:b7:a9:08:c4:4c:91:8a:e8:cf:b7:1c:31:38:1e:d6:d2:dc:
e5:6b:cf:30:b4:d4:af:ed:f4:56:ed:03:a0:74:5b:d9:56:ee:
91:38:65:ce:d4:77:f9:d0:26:50:f6:4c:b1:aa:d7:26:fd:5e:
4a:8f:a4:4a:c3:10:99:69:80:08:26:c4:e5:0e:30:95:86:7e:
77:96:23:66:a0:6b:63:82:62:01:22:0d:d8:fa:12:48:fc:85:
48:f5:3b:bb:a0:2d:5d:e3:09:15:4a:71:cb:f5:a5:bb:e9:8e:
97:2a:3c:5b:de:5f:8f:bf:89:a4:4f:0e:bb:48:be:30:e1:3f:
1e:3d:42:57:9e:a1:f6:74:38:e8:21:4a:78:11:86:cb:f9:8b:
d8:91:eb:7c:4d:15:42:cc:f1:d3:fb:d0:9d:e8:21:df:77:9e:
77:54:27:b9:45:2a:e8:55:81:ff:fd:9c:12:a4:99:85:4c:19:
9e:19:24:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 09:34:00 2026 by rpki-client