Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63B0F13E281E11F1B2103CBCDAE4EC9C.roa
File: 63B0F13E281E11F1B2103CBCDAE4EC9C.roa (raw, json)
Hash identifier: m4lx/5IhSrZRnPX0c1vCY0but/kCNV88T9ugfAsm1ik=
Subject key identifier: 0B:F6:47:A9:5D:BA:11:1D:D3:CC:41:BE:66:8E:C0:BC:0F:7D:82:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0EA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63B0F13E281E11F1B2103CBCDAE4EC9C.roa
Signing time: Wed 25 Mar 2026 07:44:02 +0000
ROA not before: Wed 25 Mar 2026 07:43:56 +0000
ROA not after: Sat 02 May 2026 07:43:56 +0000
asID: 984
IP address blocks: 154.82.132.0/24 maxlen: 24
154.82.135.0/24 maxlen: 24
154.90.133.0/24 maxlen: 24
154.95.2.0/24 maxlen: 24
154.95.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114922 (0x1c0ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 25 07:43:56 2026 GMT
Not After : May 2 07:43:56 2026 GMT
Subject: CN=69c39242-e9bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:70:05:b3:75:d8:32:9e:f0:a9:8e:3c:39:93:
cc:a4:b7:a6:ea:d0:91:b9:56:23:14:a3:59:68:d2:
db:b2:23:0e:dc:7e:fd:8c:5b:00:d4:f5:8a:4b:51:
5f:42:54:99:cb:29:f2:5d:c8:e7:49:ee:e1:26:6f:
cc:26:7d:b9:44:b2:c1:a3:20:ac:20:fc:eb:3b:a8:
a2:0c:32:d6:0f:e2:a4:ad:8a:4f:3e:37:5d:b7:8a:
69:7f:3a:c6:7d:70:18:49:20:31:23:0b:8c:ed:23:
9f:4d:1d:70:62:8d:86:5d:f7:36:48:ce:a3:60:d4:
23:54:60:2f:d8:e0:f2:41:9c:6c:8c:d4:23:07:00:
89:25:e7:46:d2:2f:16:2a:43:4e:8a:b1:a3:a9:2e:
a4:9c:9b:c8:04:cc:43:5f:59:d8:6d:f0:19:8e:c7:
af:22:f4:8b:8a:ec:fe:40:27:85:66:39:32:20:23:
46:b9:86:49:55:0c:57:78:13:4c:20:70:33:46:45:
8d:3b:69:91:97:4f:b8:07:ce:99:1c:98:1e:9a:3a:
e9:bd:61:04:21:7a:57:36:81:e4:45:f5:de:86:76:
ee:f5:96:cd:f3:0f:58:93:27:95:8c:0e:27:cf:2b:
17:f4:58:20:61:6d:32:2a:1f:a0:8c:76:e5:28:1b:
c7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F6:47:A9:5D:BA:11:1D:D3:CC:41:BE:66:8E:C0:BC:0F:7D:82:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63B0F13E281E11F1B2103CBCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.132.0/24
154.82.135.0/24
154.90.133.0/24
154.95.2.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:c5:e1:6b:df:73:d8:3b:92:78:5b:ad:3f:8d:fd:11:b9:e6:
e9:53:0b:bd:24:de:89:97:5c:4d:90:ca:f8:d4:67:51:12:e9:
95:90:5a:cc:01:94:68:53:c9:6a:53:53:c1:ad:7a:f4:e8:b0:
89:b5:00:47:5d:dc:82:61:8c:8f:ca:1a:31:bf:89:8e:61:83:
ca:f0:93:9f:5f:9e:3d:16:33:6c:c7:e6:f0:bc:79:37:43:e6:
c3:d8:8f:45:f3:75:52:c4:9d:8c:79:ab:db:5a:65:0f:97:05:
33:6c:79:c8:49:aa:09:9f:4c:78:f9:57:ef:dd:84:9f:29:60:
5c:db:65:ea:91:1e:78:f5:19:ea:10:0a:03:98:95:56:08:c4:
8b:ee:53:af:61:69:15:3d:aa:82:dd:da:eb:68:be:55:c3:d1:
2e:86:41:67:7c:88:d7:7c:eb:55:ab:13:1b:19:2a:9a:e7:3a:
1e:14:a2:4b:ce:e0:ba:4f:45:31:67:cf:bd:ae:c0:38:c3:6a:
4a:c3:f3:ae:ea:94:7a:79:e3:2b:a2:9a:9a:87:2f:8f:fd:da:
00:fb:a9:30:e3:cd:ed:78:c7:1a:a6:32:f5:11:b3:7e:7a:64:
b0:f9:6c:5b:e3:da:47:78:e6:ce:fb:92:eb:60:04:64:88:6c:
55:ed:42:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:11:51 2026 by rpki-client