Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68AF2006279D11F1BB132EBFDAE4EC9C.roa
File: 68AF2006279D11F1BB132EBFDAE4EC9C.roa (raw, json)
Hash identifier: ZI7h5La3h7P4GSG3UPmN7rX3LmhVIwJiPB82B5F+zcs=
Subject key identifier: 0A:D2:D6:E4:22:77:79:A7:C1:55:BF:70:72:EE:B3:59:00:C8:34:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68AF2006279D11F1BB132EBFDAE4EC9C.roa
Signing time: Tue 24 Mar 2026 16:20:45 +0000
ROA not before: Tue 24 Mar 2026 16:20:40 +0000
ROA not after: Fri 01 May 2026 16:20:40 +0000
asID: 62240
IP address blocks: 154.194.76.0/24 maxlen: 24
154.194.77.0/24 maxlen: 24
154.195.100.0/24 maxlen: 24
154.195.126.0/24 maxlen: 24
154.196.16.0/24 maxlen: 24
154.196.17.0/24 maxlen: 24
154.196.19.0/24 maxlen: 24
154.196.47.0/24 maxlen: 24
154.196.48.0/24 maxlen: 24
154.196.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114865 (0x1c0b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 16:20:40 2026 GMT
Not After : May 1 16:20:40 2026 GMT
Subject: CN=69c2b9dd-0381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:35:bd:ff:bf:7c:67:34:63:08:3a:09:49:1f:
2c:e5:74:30:a8:d3:1b:81:e9:85:49:10:e4:07:f9:
30:a9:49:6e:2c:49:86:42:f9:4d:a7:1b:8f:06:79:
75:55:8d:3e:dc:a6:2c:f0:1b:fb:60:97:da:a3:06:
db:a9:1a:5c:d8:f0:a8:c3:7e:29:d0:ce:aa:45:ea:
11:7b:d9:00:37:9d:f6:72:a3:94:da:46:5c:3c:06:
37:ed:57:e1:82:31:08:a0:1c:0f:b9:83:7c:2b:7a:
dd:97:ec:04:56:d0:3a:d8:37:1e:fe:d6:f0:ae:79:
97:c3:e9:96:63:4f:d7:d5:e6:a8:2d:42:20:ee:6e:
a1:d9:1a:dd:37:bf:fd:a3:ce:92:09:df:46:ee:2d:
ea:b5:d8:02:f6:29:6f:c7:fc:23:33:33:a4:25:36:
a3:ae:22:2a:6e:d9:9d:aa:1f:14:9a:33:57:59:6f:
95:b1:f8:65:b1:60:77:96:88:59:3d:b6:f6:34:bf:
ec:96:37:c6:16:14:51:03:b8:93:d7:d6:c5:b6:c0:
9d:b6:2f:ca:da:9b:fa:83:3c:33:fe:4e:6c:73:d5:
ff:0a:85:dd:82:d3:0f:e5:12:f6:2f:6d:58:9f:77:
0d:60:c9:73:df:af:72:6d:01:77:6d:02:c2:b2:35:
fa:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D2:D6:E4:22:77:79:A7:C1:55:BF:70:72:EE:B3:59:00:C8:34:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68AF2006279D11F1BB132EBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.76.0/23
154.195.100.0/24
154.195.126.0/24
154.196.16.0/23
154.196.19.0/24
154.196.47.0-154.196.49.255
Signature Algorithm: sha256WithRSAEncryption
3e:94:45:41:fd:39:0b:dc:04:8e:89:72:90:37:08:9e:73:f5:
df:b9:71:60:9b:70:25:23:dc:65:e9:b9:06:91:69:e9:89:0f:
bb:a3:8f:84:3a:b4:3c:ab:38:f9:70:14:5e:8a:fc:81:9b:ee:
89:06:6d:27:31:26:01:ee:97:64:e8:c7:04:6d:9c:07:8b:43:
ce:91:bc:31:ea:ed:39:4a:b4:cd:4d:90:a9:58:9e:03:29:d0:
95:02:74:ce:02:40:14:51:44:29:a7:c3:fe:7d:e2:df:85:a6:
a6:53:23:be:2f:ce:9d:49:c1:a3:4e:57:cd:d3:ec:8e:af:f2:
b0:1a:31:fc:a2:c9:2d:4b:41:ae:59:c9:f5:13:2a:9f:20:74:
15:74:80:e7:d8:cb:41:85:42:45:aa:5a:34:dc:42:66:83:3f:
66:db:56:d9:a7:e6:49:3f:5a:18:c3:dc:70:11:01:48:73:7a:
0d:dc:fc:15:f5:a6:5c:5d:4f:4c:6c:d8:f2:8f:8d:56:6a:3e:
77:da:bd:a9:46:9a:2b:d3:df:77:12:f5:84:90:0c:9b:b9:e0:
de:26:bf:ca:17:05:0c:1b:59:86:e7:c0:63:12:88:92:f9:66:
d4:90:37:4b:c0:8d:99:29:09:46:50:7b:d7:f8:22:ba:e6:1c:
51:f4:67:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:25:25 2026 by rpki-client