Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C869F64372711F1BD4A8EC9CE1D38B0.roa
File: 4C869F64372711F1BD4A8EC9CE1D38B0.roa (raw, json)
Hash identifier: AayLP1M1ydI9O95BBJTO9KWUPALrcoZvvZSenR95DK0=
Subject key identifier: 1F:D0:19:4C:CF:79:22:57:FC:98:13:DE:8C:60:9F:C7:84:19:DE:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C508
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C869F64372711F1BD4A8EC9CE1D38B0.roa
Signing time: Mon 13 Apr 2026 10:55:36 +0000
ROA not before: Mon 13 Apr 2026 10:55:31 +0000
ROA not after: Sat 16 May 2026 10:55:31 +0000
asID: 22773
IP address blocks: 154.198.29.0/24 maxlen: 24
154.202.78.0/24 maxlen: 24
154.202.79.0/24 maxlen: 24
154.202.80.0/24 maxlen: 24
154.202.81.0/24 maxlen: 24
154.202.82.0/24 maxlen: 24
154.202.83.0/24 maxlen: 24
154.202.84.0/24 maxlen: 24
154.202.85.0/24 maxlen: 24
154.202.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115976 (0x1c508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 10:55:31 2026 GMT
Not After : May 16 10:55:31 2026 GMT
Subject: CN=69dccba7-5195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:b0:3e:a9:23:86:c1:78:56:ed:1d:59:9d:36:
0d:f8:e3:a1:7e:4a:e0:8a:80:47:eb:db:ac:68:ec:
6c:92:82:ce:94:1e:6b:c2:c7:ad:95:67:eb:49:2d:
63:7b:25:14:e6:5e:4f:5e:fe:d0:03:c8:e1:88:6f:
c9:ab:84:49:dc:bd:27:ec:c6:92:af:6e:a2:9c:2a:
c1:93:51:80:b9:9e:71:25:4e:35:4e:6a:b5:19:c7:
94:2d:f9:00:17:d7:b3:bd:3a:17:1c:50:9b:74:03:
f5:7c:02:3a:a8:56:b9:1b:4c:cb:8d:63:4a:cc:26:
10:0e:98:ad:1b:6c:52:64:b2:51:98:2d:bb:90:3d:
22:fe:63:49:39:2b:70:30:df:3c:ab:f2:ac:a3:89:
71:d8:a3:cf:da:01:d9:1a:b7:07:28:71:f0:1b:62:
20:50:c1:d6:b4:1a:18:87:24:8a:35:66:88:68:42:
80:5e:3e:af:41:b3:28:06:95:6c:6b:c7:8a:c0:77:
00:75:49:6a:73:2b:3a:be:67:c5:95:eb:ce:01:88:
ef:3a:6b:a1:0b:ae:48:39:85:d6:55:b3:6b:ac:4d:
b4:2f:ba:3c:5d:fa:53:c9:86:02:36:f9:4c:e0:e5:
2b:51:a7:9e:f3:7d:ce:94:9f:12:83:32:68:ec:ef:
00:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D0:19:4C:CF:79:22:57:FC:98:13:DE:8C:60:9F:C7:84:19:DE:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C869F64372711F1BD4A8EC9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.29.0/24
154.202.78.0-154.202.85.255
154.202.88.0/24
Signature Algorithm: sha256WithRSAEncryption
14:5a:05:ad:f1:b4:6c:fe:0a:63:e9:3b:62:3c:9c:fa:5e:84:
b6:00:f8:d1:06:61:3f:31:67:17:2b:5e:30:36:ab:52:e6:5c:
61:f8:af:6a:d1:21:1b:58:43:b9:10:d9:b0:33:34:9b:bf:da:
f5:59:43:39:c8:0c:f1:d2:f8:c5:ec:2f:6d:73:85:38:0f:ac:
28:c3:c3:6d:37:b8:f7:49:9a:8a:71:12:34:03:e7:94:9a:42:
7d:9d:2f:e6:02:30:37:4d:63:f3:9e:97:fd:59:71:3f:9f:d2:
6a:96:fc:35:fa:df:a9:f1:66:50:10:d0:d6:95:06:de:c9:91:
38:7b:28:17:d0:84:8f:f8:41:1e:29:64:54:7c:7f:41:c1:44:
9e:9e:56:f1:dd:81:d3:0f:14:9a:8f:66:e9:2b:91:75:a6:a5:
77:b1:03:48:4f:b2:51:49:ba:0c:71:3b:0c:ef:73:ea:98:62:
74:c4:ce:95:63:28:32:f9:78:6a:b5:3d:36:7a:8e:b9:55:80:
cd:87:f4:88:d0:c1:a0:17:a7:a1:23:b6:c9:28:b0:88:65:55:
cc:ac:bb:39:db:f8:6d:f4:6d:20:4e:c6:8b:8f:35:db:52:4a:
c4:65:32:20:71:0e:88:35:13:4a:6d:60:82:a7:2e:a4:f3:d0:
89:2c:78:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:22:59 2026 by rpki-client