Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F8DA3EC356711F1BC45F719CF1D38B0.roa
File: 2F8DA3EC356711F1BC45F719CF1D38B0.roa (raw, json)
Hash identifier: t2XBXXk2+opIQvsmwU/8xcAZfP6CBDgT4byEPG+xaPU=
Subject key identifier: CD:30:5B:EC:E9:4A:7D:B9:9C:26:8F:5A:BE:F4:B4:31:3B:8C:F9:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C48B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F8DA3EC356711F1BC45F719CF1D38B0.roa
Signing time: Sat 11 Apr 2026 05:27:52 +0000
ROA not before: Sat 11 Apr 2026 05:27:47 +0000
ROA not after: Sun 10 May 2026 05:27:47 +0000
asID: 139646
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115851 (0x1c48b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:27:47 2026 GMT
Not After : May 10 05:27:47 2026 GMT
Subject: CN=69d9dbd8-72e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d6:77:45:4a:78:da:fd:85:83:46:0e:57:fb:
8e:45:24:19:52:65:2d:a6:7d:92:27:54:4b:57:9d:
38:b5:d1:58:14:a9:bf:ef:f0:36:52:2e:e9:e9:fb:
46:2c:9b:c2:f8:2d:16:df:e9:a8:68:ea:01:2c:0a:
5a:43:07:35:1b:9e:42:79:62:4a:eb:d0:47:17:b5:
e6:0e:e4:6b:3a:94:a7:b1:d7:a3:87:ac:3f:a6:f2:
88:47:43:2d:38:d4:84:02:4c:02:a6:0e:30:f6:5e:
f5:3d:3f:ce:a9:a0:aa:7a:fa:4d:a6:45:5b:fe:3d:
fa:97:bf:bf:35:21:c4:17:aa:88:71:21:85:21:42:
65:e3:87:ff:3c:38:b8:e2:48:76:10:4f:06:89:15:
b2:36:7e:eb:f0:0d:48:e6:d9:64:1b:6f:2d:56:21:
b9:e8:bb:5f:66:56:a6:f6:03:f3:94:79:c1:fe:94:
3a:ba:67:15:0e:35:04:ee:44:09:0d:cb:b0:b5:42:
0e:ef:82:9d:22:28:9b:d9:af:ea:8d:58:6e:22:7e:
3f:b9:59:26:a7:22:2a:ab:f1:c9:2d:ee:b2:14:f6:
15:fc:d9:6e:0c:5a:1b:c7:3b:45:d3:b6:f6:24:5f:
e2:dc:ee:20:29:51:12:14:d4:c5:31:5f:9e:8e:c6:
b2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:30:5B:EC:E9:4A:7D:B9:9C:26:8F:5A:BE:F4:B4:31:3B:8C:F9:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F8DA3EC356711F1BC45F719CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:0f:34:47:e5:f0:be:c6:44:37:f7:af:fb:72:ab:65:be:7e:
8f:23:52:57:21:ff:c5:7f:5c:d6:cd:11:08:93:46:43:51:2c:
39:31:7b:ee:9f:b7:02:0d:d1:c2:02:51:3d:45:ac:a7:9c:45:
ef:f3:94:72:4a:42:8c:29:94:8c:e2:cf:6e:85:db:0e:29:3c:
3e:1b:08:24:92:44:3a:11:18:f7:43:4a:d3:b3:05:02:17:2f:
25:05:bf:14:47:a4:37:cb:52:7d:69:63:96:95:98:37:d2:8b:
49:97:a5:50:51:73:61:53:83:21:e9:31:0e:43:d9:f0:26:91:
f8:af:e5:2b:ba:b5:8e:e2:e4:91:a6:7f:54:d9:62:ef:20:2b:
71:05:71:53:ac:36:04:4a:7c:af:07:ce:28:5f:ad:d4:8c:90:
16:89:ed:75:3f:1a:d6:4e:e3:78:5e:e3:83:36:99:bd:c5:56:
9d:4d:66:5e:70:29:7f:d0:8a:41:69:75:bc:b3:fe:e2:9c:a8:
0f:24:22:93:d4:ec:fc:1b:ea:8d:f9:ed:6c:a9:ce:10:03:39:
2c:29:e1:14:dd:30:83:94:b4:50:90:f6:50:be:f0:d8:c0:35:
fb:42:f4:b7:da:65:d8:92:28:65:3b:6e:a7:2a:8b:c2:94:f8:
95:56:20:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:23:34 2026 by rpki-client