Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14A0B79E283411F1AE159EB7DAE4EC9C.roa
File: 14A0B79E283411F1AE159EB7DAE4EC9C.roa (raw, json)
Hash identifier: ejtPkbyH4J5dQrc1qevVOJGBQ7LnmtJizEJDuPilHgo=
Subject key identifier: 7F:2C:44:77:CD:D5:BB:C6:5D:20:60:4E:38:5D:B2:E3:45:72:83:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14A0B79E283411F1AE159EB7DAE4EC9C.roa
Signing time: Wed 25 Mar 2026 10:19:18 +0000
ROA not before: Wed 25 Mar 2026 10:19:13 +0000
ROA not after: Thu 25 Mar 2027 10:19:13 +0000
asID: 328608
IP address blocks: 154.198.2.0/24 maxlen: 24
154.198.170.0/24 maxlen: 24
154.198.171.0/24 maxlen: 24
154.201.48.0/24 maxlen: 24
154.201.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114930 (0x1c0f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 25 10:19:13 2026 GMT
Not After : Mar 25 10:19:13 2027 GMT
Subject: CN=69c3b6a6-ea8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:49:da:fc:c9:09:d5:2e:7e:b1:88:cc:da:b3:
ec:29:50:24:c7:db:a3:ee:96:6b:80:9d:68:68:8e:
ae:a2:b7:60:46:8a:d4:2a:dc:5b:51:0e:66:8d:fd:
f1:d3:6f:1a:3d:2b:9e:1f:13:76:70:74:01:c7:4e:
a5:25:9b:aa:5a:b0:eb:c5:83:db:96:2d:fc:70:fa:
11:c9:1c:99:5d:c0:13:e2:b8:d5:66:7f:c8:4a:b4:
d3:f9:11:5e:b1:55:00:7b:82:2d:71:34:b6:78:e0:
03:f5:16:c4:6a:74:d5:d4:2a:fe:48:a8:0b:9d:ab:
84:a5:71:65:f5:02:7b:15:10:3e:71:c5:a3:a6:f2:
e7:89:ba:09:df:9b:69:5e:32:5a:ab:a8:81:dc:99:
0c:a4:0e:01:6f:92:6b:5c:b7:72:c8:8a:0c:89:e9:
f0:c2:a4:f9:bf:ff:86:a4:8a:f9:da:ce:23:a2:d2:
f5:42:dc:49:87:08:89:e5:52:be:79:99:05:da:79:
7e:f7:b5:55:4e:7b:06:7b:1c:cd:8c:71:af:a5:b7:
4d:ba:7a:6a:72:46:41:21:7a:9d:94:05:01:95:07:
98:13:71:72:2b:40:c6:a4:1a:c2:d9:b2:8d:dd:b8:
47:8f:0b:97:68:00:7c:7f:20:ea:d7:5e:e2:12:57:
97:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2C:44:77:CD:D5:BB:C6:5D:20:60:4E:38:5D:B2:E3:45:72:83:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14A0B79E283411F1AE159EB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.2.0/24
154.198.170.0/23
154.201.48.0/23
Signature Algorithm: sha256WithRSAEncryption
d3:d1:49:2c:20:04:58:15:d9:17:8e:25:b3:3b:1d:43:e3:99:
a4:5e:be:65:ef:5a:31:92:2f:02:e4:f2:fc:9e:fd:23:d2:a8:
12:0b:23:97:b4:73:57:8f:e9:00:5d:24:6f:b4:f1:2c:b2:a2:
c7:d5:3a:4a:23:bc:5c:d4:cd:98:56:7e:42:bf:39:17:68:39:
25:1e:24:a8:3b:ab:db:1c:54:2d:08:f2:75:56:e2:08:31:34:
f6:6a:2c:53:cd:31:c9:9f:c6:1d:27:c7:e3:80:0c:6d:14:93:
b1:ef:bd:7a:46:69:e4:c2:3e:12:df:a8:e4:6d:81:69:aa:69:
9f:65:18:7a:1f:b1:5f:0f:22:80:d7:1e:17:88:45:70:3a:34:
b7:fa:dc:20:5d:88:b9:75:99:aa:f2:b1:57:c4:da:b4:3d:ea:
10:f0:20:c4:06:02:be:ad:8b:91:bd:3b:9e:b5:26:bf:b8:37:
aa:41:76:9d:4b:27:68:c6:1b:54:a6:da:4a:c7:c6:2c:3b:b4:
41:ac:75:0b:0a:7a:5e:42:b6:d7:1c:5b:70:90:ac:98:24:23:
4f:2c:3c:78:3b:8c:10:5c:92:6b:45:67:4e:be:63:5f:c5:eb:
6b:0d:bd:db:9a:23:98:f7:47:41:ce:40:59:17:a6:53:0a:a3:
79:51:06:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:02:06 2026 by rpki-client