Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/049EFB0C2ADD11F1BB47BDB0DAE4EC9C.roa
File: 049EFB0C2ADD11F1BB47BDB0DAE4EC9C.roa (raw, json)
Hash identifier: V96+r9IFCFOSTQEKYsBS36bvCVXBhRlvM5UF/0/DKPs=
Subject key identifier: 7A:AF:B1:10:CD:A0:95:5B:AD:61:DC:8D:85:B1:88:CD:27:4B:0C:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C181
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/049EFB0C2ADD11F1BB47BDB0DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 19:33:38 +0000
ROA not before: Sat 28 Mar 2026 19:33:34 +0000
ROA not after: Sat 16 May 2026 19:33:34 +0000
asID: 401701
IP address blocks: 154.222.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115073 (0x1c181)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 19:33:34 2026 GMT
Not After : May 16 19:33:34 2026 GMT
Subject: CN=69c82d12-0345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:3a:8a:3c:8d:27:15:7b:92:32:11:1e:f9:
29:c4:a4:cc:84:00:3b:17:da:89:f6:37:4e:5c:01:
92:2c:9c:14:1e:b6:f7:6e:62:13:5b:b7:3f:71:6c:
5a:d8:00:cd:2e:f4:96:ac:ee:9c:4d:b6:36:fa:dd:
1d:4c:83:7c:56:e5:f1:cd:24:ed:f6:51:43:33:0e:
b9:b2:06:02:ff:68:66:44:52:f2:2c:90:1a:b5:ba:
07:34:5c:42:c6:b0:1b:97:bf:a6:a3:19:97:d3:f7:
61:9c:23:14:d1:ee:b4:0e:2f:66:b0:03:ad:1b:51:
d3:29:3a:8a:1d:fd:d6:cc:2c:f4:12:09:d2:cb:e9:
cc:2e:93:d5:1b:77:51:6b:f4:8b:d0:b4:59:5a:be:
6d:2b:f6:b6:08:ac:89:88:11:d4:37:46:f9:68:8a:
8d:96:0d:b3:9f:9e:6a:e6:27:f4:34:7c:37:5a:95:
b2:45:d1:3e:9e:cb:ca:ee:26:26:d7:b7:18:1f:66:
31:1a:84:18:b1:03:8a:25:da:82:1b:b1:42:a3:8a:
d5:13:d3:74:f9:c1:ad:c4:7e:d4:91:a2:8c:3d:36:
85:9a:93:26:bd:e6:9c:5c:2f:07:2b:f7:9d:f7:80:
99:bd:08:ee:cf:fc:fd:1a:42:9a:e5:e3:31:af:44:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AF:B1:10:CD:A0:95:5B:AD:61:DC:8D:85:B1:88:CD:27:4B:0C:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/049EFB0C2ADD11F1BB47BDB0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.16.0/20
Signature Algorithm: sha256WithRSAEncryption
03:f3:b5:4c:e5:9f:8d:75:c0:9b:d0:bb:91:6d:c2:6f:a9:30:
9a:34:ef:bc:a9:8e:e4:2f:b1:83:b8:d8:4a:88:c3:b7:b2:94:
12:70:5a:6f:f3:70:71:15:d9:22:b3:36:61:25:7b:9c:b3:9b:
b4:88:67:e0:10:64:1a:51:be:77:3d:c1:de:cd:55:ec:72:0c:
12:ed:4a:94:0f:cb:5b:fe:aa:55:37:ab:08:95:3b:06:6c:41:
2c:dc:48:81:56:88:78:39:d0:ba:54:a1:4e:62:34:27:b7:73:
ff:c3:8a:c4:2c:80:04:e9:42:fc:4b:53:68:0d:4b:38:d0:63:
64:07:16:06:3f:51:fe:96:68:ec:f8:69:95:cf:7e:6f:45:f6:
45:d0:95:f9:7a:f9:a8:bb:bf:8f:8e:d5:d8:83:b8:cb:21:bc:
f6:35:9f:57:6e:98:04:5d:50:53:29:c8:6a:f9:af:01:54:7a:
2b:a8:94:38:0e:e5:70:54:d3:94:e1:3b:48:57:cc:f5:ff:53:
00:81:16:c5:e1:98:08:fb:d6:c5:d5:09:7c:58:65:c2:8e:c8:
df:88:ff:d9:ed:b6:91:31:a4:db:84:7f:25:c3:bb:b8:97:ec:
02:d6:49:e5:25:01:90:b8:86:86:2b:f3:1c:96:14:b0:38:76:
f4:9e:58:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:30 2026 by rpki-client