Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54DCD2F4318811F1BAB042CEDAE4EC9C.roa
File: 54DCD2F4318811F1BAB042CEDAE4EC9C.roa (raw, json)
Hash identifier: mE2LA4qOBZ3PCsNy6pt8Sgj/EVnoeW8adoPZvjeNnfI=
Subject key identifier: 55:FE:8F:CE:1B:86:24:BB:E9:3A:E5:45:CB:49:BE:CC:E2:23:D7:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C358
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54DCD2F4318811F1BAB042CEDAE4EC9C.roa
Signing time: Mon 06 Apr 2026 07:15:04 +0000
ROA not before: Mon 06 Apr 2026 07:14:59 +0000
ROA not after: Fri 06 Apr 2029 07:14:59 +0000
asID: 17561
IP address blocks: 154.85.98.0/24 maxlen: 24
154.85.123.0/24 maxlen: 24
154.91.139.0/24 maxlen: 24
154.94.33.0/24 maxlen: 24
154.94.38.0/24 maxlen: 24
154.94.41.0/24 maxlen: 24
154.94.46.0/24 maxlen: 24
154.94.50.0/24 maxlen: 24
154.94.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115544 (0x1c358)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 6 07:14:59 2026 GMT
Not After : Apr 6 07:14:59 2029 GMT
Subject: CN=69d35d78-0291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4f:0e:e3:4f:9c:f8:2a:ad:76:3c:30:76:d7:
28:fe:72:4d:fb:24:76:6e:77:20:d1:c7:94:ec:c8:
ef:51:7a:2c:da:b3:ac:42:cc:7a:83:90:80:28:3f:
22:c4:4e:01:bd:82:f6:79:fb:a7:fb:aa:12:ce:22:
5d:c5:61:ac:c0:53:62:ed:92:82:a7:5f:67:ce:04:
0b:7c:d0:ab:0d:65:56:b6:03:19:59:86:0e:19:4d:
e8:ca:35:18:72:27:6d:82:0c:4d:69:d7:02:73:84:
3f:61:46:af:97:cd:1e:00:ef:45:21:fa:ef:21:af:
db:61:40:9f:dc:5d:01:69:82:46:69:96:bd:ab:4f:
cd:9a:df:6a:47:3c:cd:55:35:78:f5:a2:ff:e6:90:
5d:83:a3:61:78:9f:e9:d2:78:ea:c9:1d:5d:42:a6:
6b:e4:7d:d3:24:c1:11:3c:b1:a5:86:6e:a6:16:c5:
93:19:b0:f6:9a:e0:e7:fa:e0:87:cb:e2:a3:04:00:
52:bc:51:7b:82:5e:79:fd:fd:df:d0:e6:7e:77:d6:
1f:e3:6e:64:af:9a:f2:9f:01:76:c9:8c:28:96:db:
90:c7:63:9f:13:e6:14:24:8d:13:09:c4:70:56:75:
91:5f:7d:92:cb:6f:cb:ae:50:4d:7f:81:51:0f:bc:
83:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FE:8F:CE:1B:86:24:BB:E9:3A:E5:45:CB:49:BE:CC:E2:23:D7:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54DCD2F4318811F1BAB042CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.98.0/24
154.85.123.0/24
154.91.139.0/24
154.94.33.0/24
154.94.38.0/24
154.94.41.0/24
154.94.46.0/24
154.94.50.0/24
154.94.60.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d2:51:92:9d:74:1d:59:40:0a:5d:c1:8c:86:94:3c:3e:41:
6c:2f:49:4b:a1:74:e5:b0:12:b2:26:f7:11:73:90:a6:22:28:
b3:85:a1:2e:70:ae:3b:95:fc:16:a5:ed:79:ed:78:de:68:5f:
8f:62:31:95:a4:df:c5:64:b1:8c:09:fa:7c:54:c1:aa:23:32:
dc:f9:bf:cf:11:ca:03:f9:7f:37:c3:af:b3:a1:86:0a:01:9b:
99:15:8e:15:63:01:9b:68:3d:14:44:cd:cb:f9:53:1e:c4:c0:
5e:4f:0b:ed:8b:ec:ac:f8:c7:10:9a:48:23:3a:43:cf:97:75:
63:9b:74:ee:08:7d:25:7b:5e:ea:15:41:fa:8c:f2:b6:6f:56:
a3:e8:36:07:99:8f:3f:f5:23:10:af:0e:85:49:12:e0:c0:2f:
c6:ed:6f:c2:f0:5d:24:20:22:92:d2:3e:fc:27:b8:25:48:c6:
51:42:4b:41:57:d7:82:be:4c:4c:b1:48:a6:ab:89:57:ea:b7:
eb:e0:69:50:fa:1d:64:1c:21:4b:73:bb:71:3b:aa:ee:91:bd:
43:59:5a:e9:0f:f6:d9:1a:8a:57:07:57:0a:7d:cd:ac:03:8e:
ca:52:3e:2d:83:32:6f:03:64:bd:29:b8:7a:21:a2:3f:1c:e5:
32:ae:d8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:54:00 2026 by rpki-client