Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/290E3A50372311F1B62E0BB1CE1D38B0.roa
File: 290E3A50372311F1B62E0BB1CE1D38B0.roa (raw, json)
Hash identifier: zwVaf/967KnXHeDVujFEQYlufOjdqQR+VZe/T7bTMbE=
Subject key identifier: 5C:2D:57:0A:87:A3:F9:3D:65:6A:A9:EE:D5:6C:1F:54:89:D9:68:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/290E3A50372311F1B62E0BB1CE1D38B0.roa
Signing time: Mon 13 Apr 2026 10:25:58 +0000
ROA not before: Mon 13 Apr 2026 10:25:54 +0000
ROA not after: Sun 17 May 2026 10:25:54 +0000
asID: 22773
IP address blocks: 154.85.121.0/24 maxlen: 24
154.85.122.0/24 maxlen: 24
154.94.32.0/24 maxlen: 24
154.94.36.0/23 maxlen: 24
154.94.40.0/24 maxlen: 24
154.94.43.0/24 maxlen: 24
154.94.44.0/24 maxlen: 24
154.94.47.0/24 maxlen: 24
154.94.51.0/24 maxlen: 24
154.94.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115966 (0x1c4fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 10:25:54 2026 GMT
Not After : May 17 10:25:54 2026 GMT
Subject: CN=69dcc4b6-6a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b1:60:58:80:d9:c6:ba:47:95:31:df:a3:90:
a1:8c:c2:d7:bd:2e:41:43:72:2c:08:de:e6:b6:2e:
28:fd:c6:fa:04:48:b7:af:6c:2c:03:55:e8:4b:1e:
9b:4f:55:47:ef:30:9b:58:23:2a:b8:eb:a6:b0:76:
26:c1:1d:53:69:e2:51:10:43:09:c3:eb:97:d6:20:
95:a9:58:71:14:92:68:58:f1:50:4c:6d:77:1a:e2:
ce:d9:d9:07:72:ed:49:e4:c1:2c:86:55:95:52:4d:
f9:97:39:e2:f6:49:f9:ff:18:00:eb:53:e0:40:92:
5f:d3:22:f7:7b:e8:40:8a:b0:02:cd:b1:54:d0:d3:
b1:a7:cb:85:6f:f2:8e:9d:e3:12:c3:b1:4e:b6:41:
49:8f:c9:f2:67:9c:64:00:cf:b4:9a:4a:2a:c3:b5:
ca:da:c7:4e:36:c7:99:f6:bd:77:af:7d:b8:94:fa:
b9:0f:37:76:07:d2:bd:28:e9:c2:cb:c1:78:e8:20:
0b:95:b7:77:be:e4:9d:32:7c:8d:28:78:29:77:6b:
5f:cb:66:71:1d:3d:7c:2b:e0:0d:e9:7c:37:8a:dd:
6d:43:08:5d:2a:5b:3d:55:c6:86:94:7e:44:7e:12:
21:f6:51:61:96:4f:18:86:18:45:0e:b1:09:23:a1:
8f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2D:57:0A:87:A3:F9:3D:65:6A:A9:EE:D5:6C:1F:54:89:D9:68:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/290E3A50372311F1B62E0BB1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.121.0-154.85.122.255
154.94.32.0/24
154.94.36.0/23
154.94.40.0/24
154.94.43.0-154.94.44.255
154.94.47.0/24
154.94.51.0-154.94.53.255
Signature Algorithm: sha256WithRSAEncryption
53:d2:89:49:a5:8f:8b:0a:37:a9:7a:df:c2:a3:f0:c2:3b:4b:
ea:26:67:5f:95:75:bb:43:83:5e:cf:83:f9:08:74:7b:25:3f:
0c:de:6a:49:65:7b:78:a2:65:f5:79:8e:39:a2:0f:b9:dd:59:
60:5d:af:82:b6:b2:17:ce:d7:62:70:0b:d0:da:21:ea:ae:d6:
10:36:22:42:b4:53:e7:99:02:96:c5:f8:c9:e7:84:76:eb:f5:
cf:9f:0c:72:b0:9a:9e:61:67:b9:23:d8:31:22:79:36:de:55:
0e:25:d7:73:22:37:08:07:aa:62:bf:11:53:13:90:42:eb:03:
55:59:c1:f8:1f:4b:54:a0:da:04:8b:97:69:37:4c:94:0a:05:
06:ea:40:ba:09:0b:a3:6d:06:8f:a8:6b:f8:7f:bd:3b:16:0d:
b7:c8:e5:34:5e:67:05:56:6b:51:94:18:42:07:8a:23:e0:c5:
78:c8:95:6f:b4:6c:0a:43:b0:3f:be:7f:ab:2f:c0:a5:0b:e8:
37:48:f3:e7:f5:02:9e:57:1b:55:88:fb:1b:e8:85:fc:4c:86:
a1:65:db:87:bf:59:6a:34:0c:b6:b5:35:cf:1f:b7:29:af:86:
f7:61:aa:c0:63:26:52:16:b1:39:ea:04:ea:a5:9a:5d:a3:99:
d2:43:30:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:53:34 2026 by rpki-client