Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F781CAE332311F1B1C7F3E6CE1D38B0.roa
File: 5F781CAE332311F1B1C7F3E6CE1D38B0.roa (raw, json)
Hash identifier: Pa3HOnZD3TWlZR8NGbEQMaoR+dHiHPOI4V35xia7FYQ=
Subject key identifier: E8:E3:1C:6D:A7:F7:2D:07:18:A7:E3:80:2D:6E:B3:F1:64:BE:76:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C382
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F781CAE332311F1B1C7F3E6CE1D38B0.roa
Signing time: Wed 08 Apr 2026 08:17:25 +0000
ROA not before: Wed 08 Apr 2026 08:17:19 +0000
ROA not after: Thu 14 May 2026 08:17:19 +0000
asID: 17561
IP address blocks: 154.200.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115586 (0x1c382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 08:17:19 2026 GMT
Not After : May 14 08:17:19 2026 GMT
Subject: CN=69d60f14-1e53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a4:6c:c3:5e:62:57:66:05:56:9e:d3:19:26:
58:ca:49:83:35:e5:ae:f1:68:8e:ca:dd:b8:f9:b4:
be:6d:cd:78:31:eb:80:8b:72:b3:ad:bc:0f:3c:cf:
cc:75:4e:a4:a9:16:f1:68:85:b2:33:fb:d6:37:f5:
47:ff:6e:21:6c:fa:be:a5:e0:1c:ac:3b:23:b4:65:
1f:1f:0e:2c:dc:20:f8:f0:ef:cb:5a:2c:64:1f:f2:
c6:67:66:43:68:10:65:f4:06:a3:c1:46:16:8c:84:
af:3e:c1:da:2f:29:65:b0:db:73:07:a4:c7:f5:01:
48:c4:e7:d1:a5:08:bf:b2:a7:3f:13:dc:28:d1:6d:
1a:d3:29:3a:43:03:ed:b4:72:89:6d:06:92:a2:be:
d4:66:e9:3d:1e:cd:0e:85:22:32:93:13:24:10:6f:
c1:7f:d8:52:3e:59:48:73:db:c2:c5:0d:ad:14:81:
e0:e5:c8:f9:16:01:77:a6:cb:d3:06:04:cd:11:82:
74:9f:11:fa:21:83:e3:0a:4b:5d:98:48:5b:2d:53:
b4:4f:ba:57:7b:7d:a5:b2:8e:16:84:d1:2f:d0:25:
f6:b0:72:47:40:a9:79:d2:cd:92:a6:1e:49:99:df:
59:49:9f:03:30:b3:4a:85:37:45:40:f2:a5:f0:ed:
96:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E3:1C:6D:A7:F7:2D:07:18:A7:E3:80:2D:6E:B3:F1:64:BE:76:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F781CAE332311F1B1C7F3E6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.151.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d5:ff:2e:8b:1f:5f:13:18:14:66:50:8b:8d:c7:b0:88:53:
6e:ec:bd:04:37:31:08:26:de:95:db:2d:6a:58:bc:33:92:f3:
22:14:e6:f7:b3:2d:bf:64:dc:f2:38:bd:8a:46:b4:7c:85:4b:
7e:9b:7c:0f:b6:ca:55:fb:c4:4a:1e:4e:d1:c8:f2:fb:74:7c:
fa:84:a9:65:52:8b:20:2d:d5:38:93:55:1f:31:04:8d:a5:a6:
f7:92:10:0f:32:dc:e3:7d:35:23:25:22:d1:f5:7e:ec:a6:2f:
29:39:de:98:02:e7:57:78:de:80:db:d6:47:02:cb:cd:ca:17:
b5:9a:81:ac:50:ba:f8:e1:8e:a5:48:5c:2d:c1:0b:0b:33:ff:
d3:02:27:86:08:e7:43:2b:32:da:53:79:6c:4f:88:bd:12:e1:
b2:39:80:a1:cf:cd:37:a6:eb:fc:e2:44:c5:33:4e:eb:f9:10:
1d:c9:7d:db:78:fa:fe:81:d7:75:31:a5:91:36:a4:98:47:8d:
35:64:ed:84:7b:a4:24:5c:91:c8:7a:45:37:04:5f:09:db:de:
7f:e7:b2:7d:a2:e6:51:07:19:b7:14:83:52:a1:0a:60:2a:56:
a3:a8:39:3e:69:f8:82:b3:47:ad:b9:aa:11:ca:b2:1f:9e:45:
18:15:95:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:41:57 2026 by rpki-client