Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ADFF432550B11F1AB6CC507CF1D38B0.roa
File: 5ADFF432550B11F1AB6CC507CF1D38B0.roa (raw, json)
Hash identifier: KNbNuMaSVT74h8d26c9jT68IjVH84XoKfCy30qEpJhI=
Subject key identifier: CE:4F:E3:49:09:98:40:02:5F:46:83:47:DF:AF:FA:CF:73:8C:A2:EA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD4D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ADFF432550B11F1AB6CC507CF1D38B0.roa
Signing time: Thu 21 May 2026 11:51:09 +0000
ROA not before: Thu 21 May 2026 11:49:43 +0000
ROA not after: Tue 20 Jul 2027 11:49:43 +0000
asID: 328888
IP address blocks: 154.200.228.0/24 maxlen: 24
154.200.229.0/24 maxlen: 24
154.200.230.0/24 maxlen: 24
154.200.231.0/24 maxlen: 24
154.200.232.0/24 maxlen: 24
154.200.233.0/24 maxlen: 24
154.200.234.0/24 maxlen: 24
154.200.235.0/24 maxlen: 24
154.200.240.0/24 maxlen: 24
154.200.243.0/24 maxlen: 24
154.200.244.0/24 maxlen: 24
154.200.245.0/24 maxlen: 24
154.200.246.0/24 maxlen: 24
154.200.247.0/24 maxlen: 24
154.200.250.0/24 maxlen: 24
154.200.251.0/24 maxlen: 24
154.200.252.0/24 maxlen: 24
154.200.253.0/24 maxlen: 24
154.200.254.0/24 maxlen: 24
154.200.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118093 (0x1cd4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 11:49:43 2026 GMT
Not After : Jul 20 11:49:43 2027 GMT
Subject: CN=6a0ef1ac-3497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:65:c5:e3:e1:f6:86:2a:7f:72:42:f4:d8:15:
c0:48:74:58:f4:dc:34:db:03:09:8a:09:c9:db:df:
cc:5b:5f:6f:ce:13:fb:c7:4d:6d:c7:ec:db:e8:00:
e9:ea:27:8b:ec:cc:18:26:5c:b7:29:bd:4b:28:2a:
68:34:32:03:10:85:71:6f:7d:19:fd:e6:a1:a6:b3:
c5:87:01:f6:43:73:ce:88:91:c6:02:db:e4:85:19:
70:0a:95:06:78:c4:10:11:58:a4:49:c7:33:f2:e6:
8c:fc:8a:da:b8:50:8c:3b:76:7c:8f:57:1d:44:12:
83:ff:c4:80:23:5c:9b:90:07:29:18:5c:b8:57:46:
74:56:b9:1d:85:09:f4:54:1a:ee:8e:88:57:44:2d:
bf:dc:59:16:1e:06:5c:98:fd:eb:8d:16:db:54:89:
e8:1a:d2:d7:67:af:44:91:df:69:99:54:fe:28:52:
ed:d7:c6:76:47:7d:f8:b4:6b:9e:ee:37:90:7a:57:
04:4d:21:d8:f2:ab:0a:b7:11:77:3e:63:3f:72:72:
fc:5c:78:a0:68:90:a1:c7:e3:54:25:5b:85:19:c2:
f9:f9:5d:11:25:b3:a0:32:ec:70:23:f2:38:af:8e:
63:5d:9f:0c:f9:a4:39:47:13:db:74:21:55:ad:1f:
a6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4F:E3:49:09:98:40:02:5F:46:83:47:DF:AF:FA:CF:73:8C:A2:EA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ADFF432550B11F1AB6CC507CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.228.0-154.200.235.255
154.200.240.0/24
154.200.243.0-154.200.247.255
154.200.250.0-154.200.255.255
Signature Algorithm: sha256WithRSAEncryption
a2:2e:31:3c:0c:42:3c:57:24:9c:b8:d3:6c:86:b2:68:3c:33:
be:28:de:21:c1:4f:87:2e:13:66:04:66:07:7b:d3:3d:85:18:
71:51:07:c8:f5:ce:69:01:ef:b3:3c:df:06:cd:be:7b:30:54:
95:e7:8f:73:d3:e1:58:08:da:01:45:7c:25:5b:2f:d7:5b:81:
19:6c:8e:7c:ca:e7:af:44:89:35:e3:df:1a:8d:61:b6:00:80:
f4:8e:98:8b:d4:e9:f7:c4:46:2d:88:ea:5e:fc:29:b3:6c:ed:
73:0e:82:04:41:5f:bf:eb:29:d5:35:3e:4c:30:e1:8d:f3:2d:
ff:57:af:7a:04:12:1d:cb:de:dd:92:be:a1:15:ba:d6:3f:e0:
16:4b:cd:7d:5b:2a:64:40:24:86:3f:d7:0f:8b:0d:74:3a:dd:
7b:bb:38:76:d1:33:38:81:49:87:f5:a8:3d:88:c9:6e:ac:03:
f4:2d:83:05:07:c6:fc:07:5a:58:d4:9c:94:55:f6:ce:2a:ad:
d1:64:a6:b8:5a:00:92:27:09:f1:e6:22:b4:8c:0e:db:92:4c:
be:8b:57:41:ad:1e:0d:46:76:ef:c2:31:3d:e1:b4:83:67:77:
97:ec:65:6f:99:71:c8:49:7f:81:f1:55:5e:f9:07:64:20:15:
60:f6:49:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:16 2026 by rpki-client