Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1599ED522EE511F1AB18D7E9DAE4EC9C.roa
File: 1599ED522EE511F1AB18D7E9DAE4EC9C.roa (raw, json)
Hash identifier: p9qrbGUSneYhlkgcgMMsVD4LZdpggHtrurYtXPjiEKw=
Subject key identifier: A8:FB:95:08:20:C0:B9:8B:27:57:8C:4A:00:B2:25:61:85:AD:EA:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C291
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1599ED522EE511F1AB18D7E9DAE4EC9C.roa
Signing time: Thu 02 Apr 2026 22:41:27 +0000
ROA not before: Fri 03 Apr 2026 22:41:21 +0000
ROA not after: Fri 15 May 2026 22:41:21 +0000
asID: 272854
IP address blocks: 154.197.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115345 (0x1c291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 22:41:21 2026 GMT
Not After : May 15 22:41:21 2026 GMT
Subject: CN=69cef097-0a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:36:e7:6e:5a:73:ae:ac:cb:18:cf:da:2b:27:
bb:0b:4c:47:9a:22:33:dd:cb:fc:33:f9:6a:61:e8:
b5:75:eb:8b:ba:2d:31:85:9f:8c:d3:8b:b1:e2:fd:
1c:c4:7a:66:ca:a1:a8:09:c3:90:09:b5:57:e9:3c:
98:89:da:2c:f9:98:44:99:2c:5e:83:6a:b1:2c:d3:
01:d0:be:97:c6:d2:b1:79:82:e2:50:b2:f8:ac:2b:
02:f5:4a:bc:0f:12:68:93:55:54:2e:eb:7b:7f:76:
6c:cd:1d:b5:cc:d1:b3:36:5a:f0:3c:c0:89:8f:56:
d6:23:29:dd:95:e1:bc:84:e0:1c:a1:16:e7:10:df:
51:ec:e9:e4:ee:5e:c8:9c:79:36:06:a7:ec:3b:6f:
2b:1b:d0:7c:cd:a5:38:a3:68:f8:b8:6d:95:27:e9:
7d:66:73:96:94:f0:7a:f8:8f:4c:6b:b8:1d:90:b9:
cb:85:24:89:77:09:a1:4f:92:2f:44:b0:16:67:6c:
18:7c:65:f7:ac:92:81:67:a8:c4:cf:07:e3:a2:ba:
8d:2e:b7:29:12:49:b1:90:7a:1b:6d:dd:d8:02:08:
80:73:36:96:13:c2:9b:70:2c:12:9b:c6:59:46:55:
4a:f0:54:e9:11:49:e7:98:eb:2e:a4:07:bb:7a:1f:
b4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FB:95:08:20:C0:B9:8B:27:57:8C:4A:00:B2:25:61:85:AD:EA:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1599ED522EE511F1AB18D7E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.1.0/24
Signature Algorithm: sha256WithRSAEncryption
23:82:50:04:fa:94:94:fa:1f:65:4a:8e:18:4a:dd:38:e0:68:
7a:1b:34:c6:8b:48:d5:ba:ff:75:25:b7:27:e5:95:da:dd:c5:
9c:f1:78:1f:fb:ee:00:4a:a5:f5:c7:ef:4e:fe:d9:92:b5:7f:
45:92:7e:d2:31:fc:f2:ac:2a:9b:71:3a:e0:3c:84:f0:be:0a:
2a:48:b2:5f:ca:d0:6b:0a:f5:3b:c5:48:1f:e1:c2:c4:f3:33:
42:0a:d1:42:f4:92:48:7a:ff:41:8e:6b:7c:a3:3d:e9:24:41:
41:82:f1:39:17:cd:f8:8e:8f:33:94:d8:b9:15:8b:bd:c3:5d:
c4:6e:6c:a8:f2:97:29:2b:f8:38:31:20:33:f6:69:76:d3:c4:
3d:d2:e0:ea:b3:5f:a0:2f:34:fd:c2:e1:0c:70:19:90:92:4a:
9d:23:0f:f1:84:33:5c:35:ad:e7:20:89:49:5e:10:89:2e:65:
2c:5f:19:54:45:dc:57:c8:41:12:1c:d8:7c:09:05:31:c0:fe:
19:9b:a9:2a:09:48:13:95:25:68:d5:5c:da:dd:bb:e5:0c:db:
a1:42:d4:77:fa:94:b6:a7:a4:5c:d8:95:0a:fb:f8:12:a7:a4:
0a:bc:48:07:58:cf:17:e7:4d:8e:94:e5:31:b1:b4:d0:08:7e:
b5:3d:3f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:19:25 2026 by rpki-client