Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F31FCDC341511F1B9EC05A3CE1D38B0.roa
File: 4F31FCDC341511F1B9EC05A3CE1D38B0.roa (raw, json)
Hash identifier: cDe6B6re/b0YdfqyIQELrrXWhV6J6jiNrQ6nEObh7go=
Subject key identifier: 39:D5:EF:6A:A2:45:A6:60:BC:86:07:EB:BE:9A:65:65:19:7E:6E:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C3F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F31FCDC341511F1B9EC05A3CE1D38B0.roa
Signing time: Thu 09 Apr 2026 13:09:16 +0000
ROA not before: Thu 09 Apr 2026 13:09:11 +0000
ROA not after: Sun 19 Apr 2026 13:09:11 +0000
asID: 401783
IP address blocks: 154.200.130.0/24 maxlen: 24
154.200.131.0/24 maxlen: 24
154.200.140.0/24 maxlen: 24
154.200.142.0/24 maxlen: 24
154.200.154.0/24 maxlen: 24
154.200.156.0/24 maxlen: 24
154.200.157.0/24 maxlen: 24
154.200.158.0/24 maxlen: 24
154.200.159.0/24 maxlen: 24
154.200.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115704 (0x1c3f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 13:09:11 2026 GMT
Not After : Apr 19 13:09:11 2026 GMT
Subject: CN=69d7a4fb-35d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c2:6c:49:7d:7d:65:36:7c:94:f1:d4:13:e4:
13:7e:c4:74:4c:f4:f8:22:d2:14:ec:88:d9:76:9a:
be:6c:da:f0:2b:f0:e0:33:c4:fe:c3:78:d9:65:88:
70:ec:2c:03:78:8b:19:4d:bc:48:0c:94:e8:4d:ed:
2f:81:78:f7:0b:38:f7:a3:75:d2:46:1d:45:da:af:
dd:0e:51:78:f4:dd:fc:c9:32:65:2a:34:ea:13:1d:
ce:ef:9e:82:9a:06:d9:da:58:2e:ca:ef:29:52:a9:
0b:0f:9f:d9:10:83:5f:46:9f:bb:7b:c3:af:4a:98:
55:11:c8:81:5d:18:e3:61:80:77:e3:0b:f6:ab:ab:
fc:97:ed:50:b1:9a:f3:c5:46:c3:3f:23:1a:3d:b1:
68:f8:3d:77:ba:1e:e2:65:54:cc:fc:5c:a1:57:b7:
e5:01:6d:26:33:89:f7:1b:71:21:aa:98:fc:af:f6:
85:57:5a:40:1a:93:69:d1:3f:34:3c:9b:29:c0:ce:
eb:8c:a2:a1:14:2c:ad:f5:84:91:cf:24:27:15:f2:
85:68:99:eb:52:59:6f:36:16:ae:aa:1e:74:60:23:
25:ac:ab:ef:61:8e:29:4e:a1:ef:21:ad:10:8a:5d:
cf:4e:bc:4c:73:f6:96:b4:a0:be:8f:e8:45:bf:21:
eb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D5:EF:6A:A2:45:A6:60:BC:86:07:EB:BE:9A:65:65:19:7E:6E:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F31FCDC341511F1B9EC05A3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.130.0/23
154.200.140.0/24
154.200.142.0/24
154.200.154.0/24
154.200.156.0-154.200.160.255
Signature Algorithm: sha256WithRSAEncryption
91:30:13:75:5e:d1:b3:23:f8:d9:d9:91:6a:12:58:b1:d4:48:
64:ba:62:e9:62:5e:69:97:af:14:98:a9:e6:47:d7:5c:46:db:
0d:08:23:e7:4b:d2:e3:73:b7:07:ba:99:20:9c:65:4f:10:24:
be:01:a4:5b:67:6f:fb:6a:43:ec:81:7d:15:30:34:37:d9:98:
49:c8:01:fd:f5:77:12:84:d0:e4:10:72:b3:53:fd:2c:4c:3a:
59:9c:95:41:af:04:9e:7f:4b:12:7f:1b:a8:a0:6b:04:a3:c7:
0d:02:73:97:95:35:53:e4:5e:7c:8f:13:9b:07:e5:6d:0e:2d:
b6:22:b7:e8:02:23:81:74:50:54:00:c4:be:78:30:f3:0c:b6:
f1:40:82:50:99:58:33:25:80:b0:70:e2:f8:c6:45:da:4d:e3:
89:23:62:47:8a:b6:23:bb:d4:14:ac:5b:32:23:45:a3:af:d2:
d4:a0:1f:b8:fc:ea:32:cc:b2:72:e8:d9:78:8c:dc:d3:a2:fd:
c1:0e:9e:ef:9c:21:ef:7f:fe:dd:6c:6c:fe:0c:9a:c5:f6:92:
40:77:06:b9:51:c3:67:9b:1c:0e:d5:95:87:14:9c:5a:34:0d:
b5:6f:cb:b4:ca:ca:1b:c5:0b:d1:78:9f:88:f4:a2:91:f4:e4:
ad:73:4c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:45:18 2026 by rpki-client