Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58A73164318C11F18F2862E6DAE4EC9C.roa
File: 58A73164318C11F18F2862E6DAE4EC9C.roa (raw, json)
Hash identifier: QXT4dNobe1AB7XwXnZ4HXUkxE+0nkRMpPrtMSprVSbY=
Subject key identifier: 7B:27:43:7B:0B:6A:03:1C:9C:DB:BB:1C:0C:62:D1:E0:7F:EF:6B:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C35E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58A73164318C11F18F2862E6DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 07:43:48 +0000
ROA not before: Mon 06 Apr 2026 07:43:43 +0000
ROA not after: Mon 11 May 2026 07:43:43 +0000
asID: 401664
IP address blocks: 154.81.8.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115550 (0x1c35e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 6 07:43:43 2026 GMT
Not After : May 11 07:43:43 2026 GMT
Subject: CN=69d36434-b932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:94:ac:09:25:46:1d:f1:c8:29:91:fe:d1:da:
af:02:5c:c4:a5:00:46:26:19:fb:2b:0b:1a:7e:90:
55:27:34:0e:00:c5:ae:0d:a4:0e:b5:d6:a5:8c:32:
c6:78:68:89:73:2d:5c:92:98:94:6f:5a:75:81:de:
03:6b:a5:01:14:c0:54:9e:f8:bd:84:dc:42:de:3a:
97:fb:86:23:91:18:0a:44:5b:5c:f8:a9:44:7a:49:
4c:f9:9a:28:5d:88:62:6e:4d:7d:ca:a8:14:f4:4d:
a7:ba:6a:4f:f4:09:aa:3a:92:e1:02:37:ac:d0:63:
37:5e:a5:64:ec:e8:2b:6f:60:b1:2e:5b:dc:62:1d:
5b:27:90:37:d9:24:02:5a:3e:29:e7:f3:92:47:c5:
58:b4:c2:01:0b:8c:b5:db:90:4f:92:2a:13:23:78:
dd:15:44:d2:3b:75:aa:cd:b5:20:ca:5d:5d:0c:58:
c3:e1:10:f9:21:82:9e:51:9c:51:16:78:6b:27:4c:
71:d6:03:2a:e8:f0:ed:1f:70:b1:5e:5e:d7:ee:ad:
be:ee:6e:48:28:c0:6b:35:0d:89:9d:fe:69:c7:ce:
db:b6:6c:c0:04:dd:09:e4:3d:5d:58:fb:96:e3:5e:
50:15:e0:47:a7:2c:85:35:33:8a:70:5a:6b:6c:d6:
8d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:27:43:7B:0B:6A:03:1C:9C:DB:BB:1C:0C:62:D1:E0:7F:EF:6B:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58A73164318C11F18F2862E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.8.0/23
Signature Algorithm: sha256WithRSAEncryption
98:5a:ea:cf:98:5c:28:8f:c7:23:1d:5c:6d:d2:65:03:de:c6:
b9:f4:ae:4f:3c:f9:c3:63:e2:cd:4b:31:74:cb:d4:5b:e7:0e:
24:df:6a:17:c2:2f:55:0d:36:63:92:e0:86:43:02:ea:68:54:
d9:9d:3c:74:96:f8:8e:3f:b4:c5:15:bf:94:0b:86:0d:af:b5:
a6:31:49:7a:5e:2a:36:dd:ca:ef:b7:0f:95:68:3c:29:38:b6:
81:86:7e:91:a8:32:08:fe:be:f1:bd:ec:f4:4c:a2:30:2b:2e:
8b:0d:2a:0d:e3:3c:30:7b:cb:d6:3f:b2:38:5c:70:00:4d:09:
70:79:9e:05:55:08:a9:18:b4:a6:91:34:8a:9c:e2:a0:90:f7:
be:9d:74:b9:73:66:62:e8:8b:fb:4e:24:b9:8d:cc:fd:d0:d3:
8c:d8:95:5d:28:74:3e:75:37:a7:36:6f:ef:c0:0b:d2:68:06:
8b:e8:ad:2e:ad:cc:ff:18:cf:2e:61:69:54:37:9e:d9:af:02:
5e:b7:78:a0:f4:8e:42:45:29:a2:f8:6e:13:35:cd:5c:8f:a0:
fd:07:b6:af:15:40:45:bc:6c:f5:70:3c:93:91:4e:94:54:c7:
c5:3b:e1:1c:1d:de:15:e7:f2:a8:73:22:4d:7d:b0:a3:2d:cd:
4e:bf:cc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:39 2026 by rpki-client