Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34F5C3A0281F11F19DC423C0DAE4EC9C.roa
File: 34F5C3A0281F11F19DC423C0DAE4EC9C.roa (raw, json)
Hash identifier: Q2uybk9PXXq7MVzJ/CTpmugaMWNXvIwOyuFg1hxIsXk=
Subject key identifier: 01:5A:7D:03:D4:0A:C9:3A:CD:38:91:35:22:B2:1A:1E:2B:E1:15:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0EC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34F5C3A0281F11F19DC423C0DAE4EC9C.roa
Signing time: Wed 25 Mar 2026 07:49:53 +0000
ROA not before: Wed 25 Mar 2026 07:49:48 +0000
ROA not after: Sat 02 May 2026 07:49:48 +0000
asID: 984
IP address blocks: 154.193.62.0/24 maxlen: 24
154.193.84.0/24 maxlen: 24
154.193.85.0/24 maxlen: 24
154.196.133.0/24 maxlen: 24
154.196.161.0/24 maxlen: 24
154.200.155.0/24 maxlen: 24
154.202.136.0/24 maxlen: 24
154.213.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114924 (0x1c0ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 25 07:49:48 2026 GMT
Not After : May 2 07:49:48 2026 GMT
Subject: CN=69c393a1-cad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f8:c5:51:8a:9a:8a:da:95:12:f7:6e:94:e0:
52:19:9f:03:17:fb:a0:24:1f:c1:95:1c:aa:8a:63:
f2:ef:3c:a6:0e:74:25:50:71:8f:df:f4:27:5d:fe:
f4:3f:65:36:cc:db:d7:e6:98:52:4b:1a:63:80:40:
4d:75:54:30:9f:a3:8f:9c:98:df:a1:a9:c5:95:7d:
ef:28:67:a5:0e:cc:30:f6:30:a7:37:72:08:90:64:
e4:ea:3f:63:71:a7:53:4d:37:5a:9e:a7:9c:61:6c:
f5:9f:97:cd:b9:db:7e:a3:5f:e7:5e:34:85:1d:88:
e2:6a:62:84:a3:ce:5d:9e:86:71:07:84:41:fc:82:
a0:db:88:a9:b3:c1:d7:e3:46:79:1e:87:c4:31:70:
9f:7a:a4:fc:6b:97:89:ef:2c:12:c5:1b:cb:26:3a:
89:3c:6f:07:0d:4e:6f:68:e8:ea:71:fb:27:25:b3:
19:d7:17:0f:2d:ed:f0:42:a7:4d:6f:c6:5b:e1:f2:
8b:91:52:ed:7f:9c:18:f9:01:19:e1:5a:d6:1c:dc:
b7:0c:22:95:2a:65:bf:60:03:7f:d6:60:f5:44:1a:
e8:eb:e6:b6:13:ad:62:d3:d0:0d:97:3b:0b:65:1a:
65:04:e8:22:c6:05:42:74:87:78:db:b3:64:0e:9e:
76:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5A:7D:03:D4:0A:C9:3A:CD:38:91:35:22:B2:1A:1E:2B:E1:15:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34F5C3A0281F11F19DC423C0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.62.0/24
154.193.84.0/23
154.196.133.0/24
154.196.161.0/24
154.200.155.0/24
154.202.136.0/24
154.213.220.0/24
Signature Algorithm: sha256WithRSAEncryption
57:e4:dd:7c:bd:3b:7d:04:e9:c1:d3:9c:f3:bd:be:55:63:e6:
25:c1:3a:94:9e:17:80:24:ce:b9:b2:9b:2e:72:ac:7b:fe:55:
48:28:f6:96:8d:55:0d:03:c5:22:ed:61:80:11:eb:15:74:5c:
94:ae:31:cf:ac:e5:d7:cc:7c:08:56:e1:b3:66:c1:2a:fd:4b:
96:e9:ec:55:10:bc:4f:15:b9:cc:ef:6e:b6:ca:08:f2:51:93:
45:2f:eb:c4:5c:f2:0f:73:42:77:6e:bc:6e:dd:b2:48:9b:46:
6c:77:6f:90:7c:4f:f3:b9:2d:fc:c1:e8:99:23:0a:2a:7d:45:
28:af:09:7d:f5:c6:24:8c:e6:20:7a:92:74:f2:31:98:66:16:
08:1d:8a:95:19:b2:b7:97:15:45:c7:2f:de:8c:45:1b:eb:72:
73:d7:83:da:13:d8:a5:69:5c:b3:0c:6e:4a:db:af:8b:93:b5:
d1:5e:9b:23:1f:05:0e:b4:6d:34:b2:87:50:ca:ce:c8:85:2b:
5e:61:cf:a7:0a:c9:47:b8:14:29:04:4c:85:73:11:72:ce:91:
5b:78:d1:81:34:bf:74:28:4e:7a:d3:34:96:fd:d1:72:2a:03:
fb:15:73:26:02:b4:71:8d:74:06:76:97:45:94:5b:7a:d7:a3:
19:00:15:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:12:46 2026 by rpki-client