Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24B15C0C2E7811F1853BBE7DDAE4EC9C.roa
File: 24B15C0C2E7811F1853BBE7DDAE4EC9C.roa (raw, json)
Hash identifier: zu7I1uF6lE4CfFnV5vSYWpm3kn3yQljO8BTblDiQr/g=
Subject key identifier: 60:EC:11:5B:7A:20:E3:4F:3E:1A:13:39:F1:62:FE:F7:B3:D6:6E:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C221
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24B15C0C2E7811F1853BBE7DDAE4EC9C.roa
Signing time: Thu 02 Apr 2026 09:41:37 +0000
ROA not before: Thu 02 Apr 2026 09:41:32 +0000
ROA not after: Wed 06 May 2026 09:41:32 +0000
asID: 202656
IP address blocks: 154.218.30.0/24 maxlen: 24
154.219.16.0/24 maxlen: 24
154.219.24.0/24 maxlen: 24
154.219.28.0/24 maxlen: 24
154.219.207.0/24 maxlen: 24
154.219.211.0/24 maxlen: 24
154.219.222.0/24 maxlen: 24
154.219.230.0/24 maxlen: 24
154.219.232.0/24 maxlen: 24
154.219.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115233 (0x1c221)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 09:41:32 2026 GMT
Not After : May 6 09:41:32 2026 GMT
Subject: CN=69ce39d1-5bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:30:bb:b6:7c:04:53:dc:aa:89:67:23:a9:82:
03:48:90:a9:f3:fa:db:3c:fa:e6:08:ae:f1:06:c3:
75:78:95:3d:53:00:0a:df:91:95:87:4b:0a:37:42:
84:8f:c4:45:81:a2:2e:0d:c7:df:dd:07:b4:81:9b:
ce:eb:fa:87:0d:5d:14:00:d6:b8:04:b7:83:b5:7e:
81:2a:bd:2f:3f:ed:86:72:7f:8a:1a:90:38:49:83:
ed:09:f3:78:d6:d9:37:2e:5d:6a:34:0d:04:6f:ca:
5d:0a:09:72:fd:79:f3:76:65:cc:62:44:51:ca:44:
d5:a3:d3:b7:20:2c:f1:f6:22:7d:d9:27:5a:4b:8b:
3a:3c:66:5e:87:d1:39:77:9d:04:0c:4d:71:af:57:
b5:3e:22:ea:eb:12:03:64:dc:8e:74:56:0d:0f:96:
74:ce:a8:0a:46:df:9c:56:33:01:76:06:82:65:67:
fa:9b:76:f5:b3:7a:b7:74:72:d6:5c:ef:39:65:fc:
0b:c5:92:d8:34:df:7d:fa:44:c5:1c:38:19:03:f4:
b9:53:ee:1d:be:bb:9d:03:d8:5e:02:f4:da:63:65:
47:2f:75:67:44:4b:d4:3b:b7:50:73:38:42:17:f4:
b8:0b:6e:0e:b2:b7:7e:09:b8:33:57:f0:4b:4b:45:
fc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:EC:11:5B:7A:20:E3:4F:3E:1A:13:39:F1:62:FE:F7:B3:D6:6E:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24B15C0C2E7811F1853BBE7DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.30.0/24
154.219.16.0/24
154.219.24.0/24
154.219.28.0/24
154.219.207.0/24
154.219.211.0/24
154.219.222.0/24
154.219.230.0/24
154.219.232.0/24
154.219.245.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:d9:05:a8:b2:c8:db:50:2b:11:bd:2a:46:24:d4:86:33:5f:
c3:f3:0a:c6:a4:80:4e:f4:95:e4:d8:c2:57:df:7e:34:49:fa:
be:34:d6:8c:87:0c:42:44:9e:81:9b:20:f7:f5:ac:f8:b3:d7:
a1:03:24:86:4a:0f:26:85:45:65:2f:2d:8b:10:ca:0b:7c:08:
07:b9:ad:1b:97:19:9b:03:ee:a3:a8:40:27:b2:b9:64:18:6f:
20:b0:39:d8:a0:40:42:fc:37:fd:26:f0:d0:bb:aa:b5:16:9f:
2d:19:d7:3a:55:26:51:d2:43:1f:39:44:d1:a1:23:80:b8:2f:
41:be:ca:86:8e:64:76:22:de:a2:d2:ec:59:70:64:58:7e:5d:
7b:ae:5b:2b:1d:b3:44:4e:20:ee:a9:ef:77:23:81:ab:04:25:
df:d3:01:fe:46:f4:fa:15:ca:5e:06:de:81:7f:86:d6:5f:b2:
0c:5a:31:a9:68:ab:24:ec:85:bf:05:f8:82:d1:15:42:54:9e:
4f:2f:11:6c:47:73:56:d5:5a:61:50:af:69:c4:1f:1e:bd:ab:
5d:b9:6e:25:b7:71:39:01:d6:c7:f9:5b:9a:70:d2:ba:07:12:
fb:d3:9b:ec:e8:50:c7:9f:4f:c4:eb:c6:9e:fb:d1:33:3c:0d:
7a:bd:84:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:23:51 2026 by rpki-client