Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FD83C98371E11F1B4558F10CF1D38B0.roa
File: 0FD83C98371E11F1B4558F10CF1D38B0.roa (raw, json)
Hash identifier: Wvqcqx+202f9WzmEM/Uu1u3e87xsIizyzdOPZ/eq2P8=
Subject key identifier: 2B:5B:4B:35:83:F4:7B:95:51:89:3A:A3:A0:66:C1:61:04:58:80:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FD83C98371E11F1B4558F10CF1D38B0.roa
Signing time: Mon 13 Apr 2026 09:49:28 +0000
ROA not before: Mon 13 Apr 2026 09:49:24 +0000
ROA not after: Sat 16 May 2026 09:49:24 +0000
asID: 22773
IP address blocks: 154.82.2.0/24 maxlen: 24
154.90.141.0/24 maxlen: 24
154.90.144.0/24 maxlen: 24
154.90.145.0/24 maxlen: 24
154.90.146.0/24 maxlen: 24
154.90.147.0/24 maxlen: 24
154.90.148.0/24 maxlen: 24
154.90.149.0/24 maxlen: 24
154.90.150.0/24 maxlen: 24
154.90.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115954 (0x1c4f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 09:49:24 2026 GMT
Not After : May 16 09:49:24 2026 GMT
Subject: CN=69dcbc28-4ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d9:bb:4b:01:83:32:b5:a7:3b:2b:7c:1e:84:
26:c5:c2:b4:3e:bf:27:27:44:9f:23:b1:16:5d:20:
8e:94:56:7a:b4:b9:a6:04:30:5c:2a:b6:74:59:ed:
43:5c:1f:ec:83:32:d2:8f:d3:41:49:2c:d6:f5:44:
64:78:ec:53:5c:cc:71:56:54:3d:ab:07:5b:60:ec:
83:fd:c7:68:f6:f1:83:15:30:a3:dd:3c:3e:cc:4b:
f9:c8:4c:79:df:88:b1:a8:ab:42:04:d8:97:a9:64:
d5:73:a3:4b:7a:2d:dd:d9:0c:aa:29:3f:1a:0f:9d:
08:c6:54:75:72:5b:f8:21:f7:28:48:90:8d:3c:ca:
d5:8c:65:d7:33:47:06:14:a2:53:ad:26:1b:a4:09:
4d:c2:2e:e5:68:75:2b:76:b1:d8:89:46:cc:da:2e:
dc:62:fc:e8:db:28:47:b9:91:de:05:42:34:a9:96:
9c:60:b6:11:e7:4c:a2:03:10:ab:7a:24:d5:15:4c:
c7:3e:0b:d2:43:4a:5d:93:72:ea:53:df:50:a0:68:
fd:e3:a2:4b:35:57:c5:e8:f7:a1:62:63:5a:f6:aa:
03:53:62:d8:04:d9:93:27:3e:f2:44:ad:89:80:0b:
77:d8:90:76:c3:b2:40:6d:fa:98:f7:8b:6a:ad:bc:
c1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:5B:4B:35:83:F4:7B:95:51:89:3A:A3:A0:66:C1:61:04:58:80:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FD83C98371E11F1B4558F10CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.2.0/24
154.90.141.0/24
154.90.144.0/21
Signature Algorithm: sha256WithRSAEncryption
40:02:ab:85:66:dc:f4:44:cf:30:e2:1f:ad:d0:9c:aa:59:b1:
af:cb:be:73:6a:a1:73:8e:b0:3a:fa:49:ca:fc:b5:84:6b:dc:
3c:4c:b8:35:2b:7e:1f:fd:40:ef:ce:4b:bf:9e:5b:6e:cf:54:
33:fe:4d:81:0e:ef:c4:e4:7d:87:68:d5:d1:07:a7:61:ae:ce:
6c:50:c2:09:40:1e:ae:f9:8b:7d:0e:7b:f7:ef:23:5a:ae:73:
91:c1:61:fe:8a:4b:5e:10:0b:65:cc:87:b8:eb:bd:12:ce:b2:
36:c3:d3:1a:83:7f:35:bd:eb:d5:73:2c:88:a8:a4:a8:33:de:
41:78:0a:ca:d1:e4:eb:78:be:cb:cc:a2:02:13:19:3b:55:c7:
ae:56:be:75:22:58:e0:e8:2e:dc:f9:ac:9c:56:e6:d1:1c:e5:
5e:f7:f1:c4:fa:70:2b:9c:ea:24:a2:d1:75:ce:9c:19:8e:e2:
9b:9a:36:6c:46:9f:d6:ee:98:49:ab:eb:6a:40:24:e1:6b:00:
cd:7e:44:52:e6:fb:af:e9:30:1e:cc:e0:f6:35:39:cd:74:ab:
d3:3a:33:b7:4b:50:96:7d:c0:fe:33:08:41:3d:f1:65:f1:58:
b0:8c:63:53:52:97:04:3f:4d:81:b3:ae:4a:89:fd:8c:b0:9c:
36:32:a2:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:54:30 2026 by rpki-client