Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C152688396D11F1916424B0CE1D38B0.roa
File: 5C152688396D11F1916424B0CE1D38B0.roa (raw, json)
Hash identifier: PHO5uK89XDJrAZBSlVfq/sGPQFG+64aL49Q/zvappmg=
Subject key identifier: 31:2E:3F:E7:7C:44:84:1B:53:ED:A4:39:5D:FB:53:3F:CC:F2:5B:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C57D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C152688396D11F1916424B0CE1D38B0.roa
Signing time: Thu 16 Apr 2026 08:22:09 +0000
ROA not before: Thu 16 Apr 2026 08:22:03 +0000
ROA not after: Thu 30 Apr 2026 08:22:03 +0000
asID: 9304
IP address blocks: 154.200.37.0/24 maxlen: 24
154.200.46.0/24 maxlen: 24
154.200.48.0/24 maxlen: 24
154.200.53.0/24 maxlen: 24
154.200.54.0/24 maxlen: 24
154.200.60.0/24 maxlen: 24
154.200.131.0/24 maxlen: 24
154.200.140.0/24 maxlen: 24
154.200.142.0/24 maxlen: 24
154.200.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116093 (0x1c57d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 08:22:03 2026 GMT
Not After : Apr 30 08:22:03 2026 GMT
Subject: CN=69e09c31-6257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:48:ff:90:43:ab:3f:21:c0:b7:6d:bb:c3:4d:
82:30:30:6a:46:95:79:45:db:f2:fb:40:65:b5:1f:
10:40:91:47:6b:32:96:fd:28:74:fd:fe:86:69:0d:
22:76:ed:f8:e8:64:f6:89:21:9c:17:5e:30:e3:f5:
16:64:30:b5:32:83:79:3d:e0:42:0d:eb:d4:18:88:
14:23:23:f9:b9:50:c4:e0:4c:6e:be:5a:60:05:c9:
ec:92:5c:9d:f3:0b:96:be:0e:37:6d:7e:8e:9c:b1:
04:95:1a:e9:1f:7c:ea:bd:a4:b1:10:6a:3d:46:a9:
d7:91:19:2e:e3:f0:6b:49:20:73:45:dc:40:38:7b:
32:c1:66:e7:2e:2a:fa:6f:a9:20:d2:49:27:9d:e8:
01:8d:de:ad:4b:a0:1b:d0:1e:e8:f7:21:33:ad:23:
19:25:38:29:41:18:e7:22:32:30:a9:31:06:1b:cb:
c5:8a:aa:18:fd:9b:8d:6c:a7:6e:b5:c2:be:67:ab:
3b:28:c6:9a:e6:8d:dc:d5:98:81:32:2e:ff:49:a6:
51:7a:03:3e:52:0f:ea:82:34:4f:f2:11:f4:ea:cf:
32:8a:f5:5e:17:4f:83:72:ec:39:43:70:1c:ef:c3:
83:bc:1b:9f:da:f5:3d:6c:74:41:82:af:de:e2:18:
ca:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2E:3F:E7:7C:44:84:1B:53:ED:A4:39:5D:FB:53:3F:CC:F2:5B:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C152688396D11F1916424B0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.37.0/24
154.200.46.0/24
154.200.48.0/24
154.200.53.0-154.200.54.255
154.200.60.0/24
154.200.131.0/24
154.200.140.0/24
154.200.142.0/24
154.200.160.0/24
Signature Algorithm: sha256WithRSAEncryption
88:48:00:f1:62:f2:fe:a6:db:6e:6d:ee:52:c4:22:6f:b4:20:
bc:6b:ac:99:c6:65:38:d4:e6:51:52:d8:74:47:61:bb:b8:ef:
23:46:27:97:9a:f8:ad:00:f4:12:e2:f9:c8:14:4a:16:09:ed:
f3:5b:55:42:4c:c4:7a:05:45:1a:8f:72:4f:e4:c4:ca:83:0f:
f1:ee:51:9c:ae:84:4a:ad:14:2f:85:4a:b7:fa:8f:bd:35:72:
54:24:83:83:f2:65:4f:26:71:e6:19:28:c6:ad:34:fb:96:e1:
91:87:7b:d6:1b:43:72:2b:9b:2a:e2:40:cb:45:e1:74:8a:0e:
46:ae:65:4f:27:7e:f7:48:5f:bc:53:6d:14:3f:36:2c:07:48:
84:a5:fb:3d:b9:a3:1e:d0:e8:43:ee:54:52:d2:7d:63:2f:47:
70:b8:7c:1f:a3:fa:4a:d0:73:18:f8:e5:33:38:50:d5:9f:f3:
33:85:fe:62:15:d3:cc:f6:62:f0:6a:a0:19:62:ed:9d:8c:e4:
10:22:4f:95:fb:33:1a:13:2c:a5:40:4c:d6:c2:d4:d0:10:53:
8d:b2:dc:7e:45:02:13:54:fb:f1:dd:6e:22:c5:a0:50:82:db:
0f:12:e9:28:65:eb:02:e2:3e:82:52:a2:b9:d9:5d:8b:70:bb:
ca:ca:df:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:59:26 2026 by rpki-client