Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE8051F2160611F1BE481CEDDAE4EC9C.roa
File: FE8051F2160611F1BE481CEDDAE4EC9C.roa (raw, json)
Hash identifier: 7vsUiAIZIna+FzTlNjVGkfO3z3gVK5JQNeL4Ab7Xch8=
Subject key identifier: 1E:35:E6:C7:83:49:9B:DF:36:15:C8:97:C4:FA:7A:31:87:FE:64:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCB6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE8051F2160611F1BE481CEDDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 07:11:12 +0000
ROA not before: Mon 02 Mar 2026 07:11:08 +0000
ROA not after: Fri 02 Mar 2029 07:11:08 +0000
asID: 17561
IP address blocks: 154.80.0.0/24 maxlen: 24
154.80.1.0/24 maxlen: 24
154.81.248.0/24 maxlen: 24
154.81.249.0/24 maxlen: 24
154.81.250.0/24 maxlen: 24
154.81.251.0/24 maxlen: 24
154.81.252.0/24 maxlen: 24
154.81.253.0/24 maxlen: 24
154.81.254.0/24 maxlen: 24
154.81.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113846 (0x1bcb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 07:11:08 2026 GMT
Not After : Mar 2 07:11:08 2029 GMT
Subject: CN=69a53810-9176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bd:9f:ee:98:af:d2:d3:2a:43:ef:e9:26:46:
37:31:bc:0b:5e:0b:09:50:a5:ed:af:f3:b6:a1:27:
ed:03:0f:2e:a5:f3:62:39:64:37:e5:67:04:37:21:
11:63:01:28:79:bf:d7:a8:f6:c5:15:71:50:32:e4:
6a:3f:e3:a6:21:de:d1:bc:82:2c:a9:0b:77:19:15:
5c:b7:f7:19:d7:2a:77:13:30:5f:6a:8e:03:37:4c:
bc:e8:d8:43:e9:d2:9d:2d:49:31:eb:d3:f9:c0:ea:
6b:d5:f4:05:d9:10:74:62:81:44:32:0c:a0:14:90:
0f:0a:15:b0:47:0c:a1:6a:5d:ca:3b:0f:51:30:a3:
8d:02:2e:cd:15:57:d0:66:04:18:f3:f2:83:f4:5e:
c9:b6:8c:ae:dc:60:49:9c:64:d1:43:64:87:be:a3:
31:a4:4e:3a:3a:05:59:7e:3d:24:38:7d:5f:bf:78:
58:cc:66:b7:78:20:5d:c1:d4:d2:17:88:62:5f:d7:
a0:d8:61:5f:11:80:45:e5:37:83:d5:a3:03:31:76:
92:e8:19:ed:6e:8b:de:14:17:b4:c1:38:a5:55:a0:
ae:3c:4a:9c:c2:3d:67:86:ed:ff:87:75:cc:6a:7e:
46:1a:67:75:7e:fe:a6:56:f4:4d:61:31:4e:d8:3b:
79:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:35:E6:C7:83:49:9B:DF:36:15:C8:97:C4:FA:7A:31:87:FE:64:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE8051F2160611F1BE481CEDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.0.0/23
154.81.248.0/21
Signature Algorithm: sha256WithRSAEncryption
45:e4:7b:c5:e9:7e:b6:e2:44:e5:23:eb:2a:77:f1:0c:0b:c5:
ff:a1:49:8e:16:48:01:87:91:da:54:10:ff:2c:55:88:21:f8:
42:06:e3:b1:67:2d:52:ab:e9:1f:fc:0a:fd:ed:f2:6a:16:78:
81:91:b9:6c:2c:4e:ce:96:06:5d:f2:23:33:38:a4:8b:61:4c:
2f:9e:0c:42:4b:98:ec:e5:fd:33:ca:30:f1:09:ff:e7:49:a0:
23:7c:b2:dd:b4:92:5d:ac:d7:19:81:92:13:28:98:62:9f:b3:
06:4d:b4:bd:15:62:e8:94:df:09:3d:82:28:2d:4d:a7:22:19:
62:5d:c8:5f:7e:f2:bd:df:16:df:b6:20:bf:1d:ac:08:bf:5a:
ec:1a:24:69:8a:e2:55:b3:ee:2a:19:03:25:39:80:9f:4f:3c:
85:52:ed:43:d1:d0:16:d4:32:1b:93:04:09:55:f9:6c:95:9e:
68:d3:83:31:98:26:38:73:51:01:a0:c9:e2:47:e5:04:f4:5f:
55:0b:c7:77:7c:98:c1:59:bc:3d:dc:81:ab:87:89:74:60:7e:
01:1c:46:b9:06:ab:9f:a9:f5:59:06:9f:c9:4f:fb:e1:a0:00:
42:47:33:bf:6f:3e:ef:7e:93:6e:8f:c1:23:39:71:be:2f:52:
e9:8c:a4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:50 2026 by rpki-client