Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45C07914377411F18FA8E414CF1D38B0.roa
File: 45C07914377411F18FA8E414CF1D38B0.roa (raw, json)
Hash identifier: wHql45+yL1VVUMmqnVLxKHyi5i+FC2QhgI5VddsVAuU=
Subject key identifier: 29:03:C5:D9:83:0D:88:44:1E:86:1B:C3:F2:02:8D:05:A3:49:4C:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C526
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45C07914377411F18FA8E414CF1D38B0.roa
Signing time: Mon 13 Apr 2026 20:06:35 +0000
ROA not before: Mon 13 Apr 2026 20:06:31 +0000
ROA not after: Tue 19 May 2026 20:06:31 +0000
asID: 11404
IP address blocks: 154.193.112.0/20 maxlen: 24
154.196.192.0/20 maxlen: 24
154.199.80.0/20 maxlen: 24
154.200.112.0/20 maxlen: 24
154.205.48.0/20 maxlen: 24
154.206.32.0/20 maxlen: 24
154.207.144.0/20 maxlen: 24
154.207.160.0/20 maxlen: 24
154.208.96.0/20 maxlen: 24
154.222.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116006 (0x1c526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 20:06:31 2026 GMT
Not After : May 19 20:06:31 2026 GMT
Subject: CN=69dd4ccb-0dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6d:4d:9c:92:6f:07:58:1a:bc:3d:67:fc:46:
76:60:37:11:22:72:aa:a3:a5:18:25:7d:0d:ad:73:
45:40:2c:f5:65:da:b3:62:1c:5d:8f:a2:54:ec:58:
c9:0b:48:6d:08:99:f2:b9:c7:80:92:5c:9a:1c:55:
91:8b:e2:40:af:1f:a5:7f:71:86:5f:10:c6:b1:09:
59:33:46:37:e0:4c:c6:c8:44:52:f1:ad:6e:59:c3:
a3:ef:01:3c:82:54:5a:31:0a:57:15:56:24:da:6b:
fb:6c:ec:7d:35:46:7c:b1:42:3b:93:30:14:13:52:
2b:14:d0:7a:d5:7b:7c:ec:26:67:0b:99:59:11:16:
a3:e0:36:46:96:f7:03:60:ad:93:89:aa:a0:e9:09:
4e:0e:fb:f3:a9:7d:be:eb:16:be:d3:20:bb:34:3a:
04:2b:73:9d:34:38:d4:61:76:6c:cf:91:78:96:b6:
7b:ea:6f:ad:77:b1:63:9f:c4:85:ea:c1:2c:01:5b:
55:55:f5:87:5d:00:2a:37:ba:27:3f:20:ac:53:55:
f4:46:ce:f9:05:e2:4b:68:a7:10:e0:1d:b6:2c:6c:
4f:35:70:f2:44:cc:a9:a4:d9:bc:58:e3:fc:dc:26:
49:a6:f8:74:cf:1d:f1:2a:19:72:55:b9:a5:50:64:
c5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:03:C5:D9:83:0D:88:44:1E:86:1B:C3:F2:02:8D:05:A3:49:4C:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45C07914377411F18FA8E414CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.112.0/20
154.196.192.0/20
154.199.80.0/20
154.200.112.0/20
154.205.48.0/20
154.206.32.0/20
154.207.144.0-154.207.175.255
154.208.96.0/20
154.222.96.0/20
Signature Algorithm: sha256WithRSAEncryption
72:b0:97:20:65:e2:3e:45:14:36:d8:b6:3b:05:f4:5b:94:98:
2d:fe:8f:44:17:4e:af:d7:b0:a1:28:ef:ea:fb:93:2f:bb:c4:
61:91:9c:d9:2a:f8:63:d9:6b:f8:74:6f:6a:b0:01:c9:ce:db:
3d:0c:cd:84:13:3b:0f:b2:b5:30:3e:8b:a5:5a:3b:19:93:e9:
4f:ea:54:53:94:c9:d9:c4:f5:58:e9:aa:1b:fc:07:10:36:05:
a5:31:c4:c4:e2:21:3f:d8:7c:2e:f8:5a:b4:66:dd:41:15:17:
6e:37:68:86:2c:0a:da:d4:9c:0d:a0:91:56:af:f6:58:0f:48:
a4:ce:fd:d0:28:56:3b:ef:da:a9:63:a2:c6:d2:04:f1:bb:3f:
26:36:10:53:f2:41:e6:9b:7e:ce:a0:52:43:e5:7e:0f:f2:99:
36:af:30:30:c6:ec:fb:14:15:72:f7:de:cd:29:36:b5:59:ea:
b8:6f:9a:21:b3:24:f5:a1:01:02:cb:b3:97:21:ae:b2:78:83:
b4:d9:b9:91:ba:35:d1:ea:d2:f9:28:b6:ac:bb:1a:a2:47:66:
5d:08:52:73:f6:2e:88:b0:b5:84:b8:2f:8d:19:12:e7:c8:ad:
35:59:09:7d:6e:76:b3:8b:22:09:6b:98:4e:87:99:11:38:df:
9d:77:3a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:23:27 2026 by rpki-client