Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/502B4E922E7D11F1AAD7AD9CDAE4EC9C.roa
File: 502B4E922E7D11F1AAD7AD9CDAE4EC9C.roa (raw, json)
Hash identifier: /GGKBw03cMp713uRLVIFqkEwCaNcpnrFQt2RGS4oljI=
Subject key identifier: 87:3A:F4:46:73:DF:14:A3:B1:20:E9:85:24:B2:C5:1A:90:00:7E:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C22D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/502B4E922E7D11F1AAD7AD9CDAE4EC9C.roa
Signing time: Thu 02 Apr 2026 10:18:38 +0000
ROA not before: Thu 02 Apr 2026 10:18:32 +0000
ROA not after: Wed 06 May 2026 10:18:32 +0000
asID: 202656
IP address blocks: 154.219.192.0/24 maxlen: 24
154.219.195.0/24 maxlen: 24
154.219.201.0/24 maxlen: 24
154.219.202.0/24 maxlen: 24
154.219.203.0/24 maxlen: 24
154.219.208.0/24 maxlen: 24
154.219.209.0/24 maxlen: 24
154.219.210.0/24 maxlen: 24
154.219.212.0/24 maxlen: 24
154.219.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115245 (0x1c22d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 10:18:32 2026 GMT
Not After : May 6 10:18:32 2026 GMT
Subject: CN=69ce427e-e9c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:e3:bb:69:c3:e1:2b:80:3d:f4:a7:7c:ba:
41:c3:7c:c1:69:62:9d:2a:8c:b8:71:f7:cb:32:68:
2b:dd:bb:dc:34:e5:27:73:c3:7b:57:38:9a:eb:8a:
e3:15:74:cd:a3:56:ae:09:18:7a:3a:e6:84:c8:0e:
8d:41:1f:de:e3:fd:42:2c:ef:37:0d:2e:10:eb:32:
99:8c:43:b2:d7:f6:2e:a3:a3:71:78:49:c6:d1:c1:
65:f4:74:7f:e4:71:d7:15:e3:71:61:29:9e:11:f5:
72:6a:7f:98:51:82:0d:1e:99:9f:f5:e0:ad:fd:d0:
e2:83:29:ac:fc:33:34:93:a8:5d:e3:09:93:7c:5d:
e5:be:fb:1d:8b:51:4d:e0:62:ee:16:17:ad:4e:1a:
3a:2b:52:ac:dd:7c:be:de:20:b5:c3:f9:77:2c:37:
cc:a8:52:a5:b0:1f:2a:18:67:5d:0c:64:62:b5:11:
93:df:b7:f0:23:da:52:61:71:07:61:57:a1:b8:48:
3c:e5:4b:4b:19:62:a9:67:3f:f1:e1:e9:a4:7d:11:
46:8e:54:f9:41:98:db:89:40:ce:ff:ca:1b:6b:89:
51:63:e9:c7:13:6d:96:96:7e:a5:2c:39:ee:5c:30:
d3:4c:0b:aa:a4:41:ae:f4:52:9a:72:22:51:11:7e:
f5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3A:F4:46:73:DF:14:A3:B1:20:E9:85:24:B2:C5:1A:90:00:7E:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/502B4E922E7D11F1AAD7AD9CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.192.0/24
154.219.195.0/24
154.219.201.0-154.219.203.255
154.219.208.0-154.219.210.255
154.219.212.0/23
Signature Algorithm: sha256WithRSAEncryption
75:f0:b3:cd:45:95:6d:88:7e:33:69:83:aa:e6:07:2e:31:4e:
46:1b:9e:02:71:89:11:00:95:f8:17:05:0e:2a:15:18:5e:96:
4a:f9:c4:8a:a7:8d:10:4b:d7:0a:83:bc:52:e1:b6:a5:87:e1:
b2:ff:9d:fe:20:63:58:e0:0c:bf:a7:41:9b:ba:2b:f5:61:01:
f7:aa:6b:0a:97:f8:94:d2:fb:93:3f:0c:ad:6f:e1:1c:6d:5d:
9d:0e:1d:8a:5b:93:77:c6:0f:06:78:91:8a:80:eb:2a:32:0f:
f6:1c:6a:1a:75:01:70:3c:1c:ca:ae:04:d1:ae:f1:ba:d4:b9:
27:27:5b:19:53:f0:1f:14:4f:37:18:7b:c5:ae:9f:23:db:78:
96:9c:a0:79:a8:48:4a:f7:0d:17:3e:25:d4:eb:d4:59:ae:7a:
59:a1:ce:9a:82:26:c1:1b:de:b3:0a:8f:74:1f:da:8a:ae:81:
70:b7:cf:7c:6b:54:6e:a6:aa:de:ad:1d:e5:45:ee:0a:e4:3f:
76:a5:5b:44:47:a2:a8:2b:2b:38:04:aa:46:ba:62:1d:8d:28:
5e:d1:0e:08:99:13:ab:63:76:b5:4c:69:34:81:56:e5:65:76:
8e:2d:11:15:b3:2d:bc:a2:75:77:f3:4c:a2:1f:bf:30:97:9c:
38:ad:f8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:01:57 2026 by rpki-client