Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6422D790397B11F1BF27F902CF1D38B0.roa
File: 6422D790397B11F1BF27F902CF1D38B0.roa (raw, json)
Hash identifier: rsNQcL6ufEEj0HCZzvHU2iylCXoG8OPxVE0G719/R14=
Subject key identifier: E4:CF:B6:F6:C4:99:54:5B:04:7C:AF:FB:BB:65:28:E4:C7:6C:B9:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C58F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6422D790397B11F1BF27F902CF1D38B0.roa
Signing time: Thu 16 Apr 2026 10:02:35 +0000
ROA not before: Thu 16 Apr 2026 10:02:30 +0000
ROA not after: Thu 30 Apr 2026 10:02:30 +0000
asID: 9304
IP address blocks: 154.89.132.0/24 maxlen: 24
154.90.65.0/24 maxlen: 24
154.90.67.0/24 maxlen: 24
154.90.128.0/24 maxlen: 24
154.90.134.0/24 maxlen: 24
154.90.136.0/24 maxlen: 24
154.90.137.0/24 maxlen: 24
154.90.140.0/24 maxlen: 24
154.90.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116111 (0x1c58f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 10:02:30 2026 GMT
Not After : Apr 30 10:02:30 2026 GMT
Subject: CN=69e0b3bb-2ab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4a:18:bd:64:45:3f:05:5f:85:76:e1:19:f7:
fd:45:52:e9:c3:4f:a8:43:e1:48:69:42:6f:ff:d2:
9b:41:0d:6a:3d:80:d3:08:99:14:38:0f:83:dd:31:
7f:14:5c:98:bf:19:b6:4c:99:1a:2b:7d:7a:b6:8f:
df:24:3f:aa:23:dd:8a:21:3f:22:89:d5:53:da:59:
48:f4:20:5f:4e:44:4d:5b:e5:91:a5:db:dc:49:6c:
72:e9:f9:3c:ce:5c:b1:03:d5:7a:5e:db:af:03:ce:
53:6c:56:68:e6:83:80:7a:f7:22:c1:23:ab:ea:b9:
30:ad:8f:31:1f:9f:1b:f8:07:80:38:86:69:05:7e:
1c:40:59:78:a8:02:38:a7:87:ae:2c:d9:79:5e:12:
2a:34:c8:94:5a:b4:61:1e:ad:c7:79:fe:92:c2:8f:
5b:d4:a5:c7:30:76:e1:e1:dd:df:5f:27:e1:4f:73:
f3:74:7c:86:e0:8f:0c:58:ee:3b:b3:4c:59:82:67:
67:bd:80:7a:9f:f9:de:c3:4b:ab:cc:ab:28:40:d5:
95:4e:44:4d:88:6c:7d:95:a1:68:d4:7a:ea:97:6b:
1e:c5:4f:8f:55:10:db:ac:71:05:50:39:f3:c3:05:
59:e7:67:af:ce:91:d3:7b:97:74:96:cc:1d:b0:ca:
1c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:CF:B6:F6:C4:99:54:5B:04:7C:AF:FB:BB:65:28:E4:C7:6C:B9:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6422D790397B11F1BF27F902CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.132.0/24
154.90.65.0/24
154.90.67.0/24
154.90.128.0/24
154.90.134.0/24
154.90.136.0/23
154.90.140.0/24
154.90.189.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:58:48:e4:a1:14:90:2d:d7:e5:0e:26:87:ad:77:bc:32:42:
62:4a:eb:63:df:89:31:40:27:da:a9:e9:e1:f8:a0:3d:8c:ef:
76:e7:18:01:ce:ec:f9:20:8e:ad:7c:da:fb:03:d6:6b:69:96:
72:a4:65:11:cf:e7:ee:7b:7d:b1:13:5d:39:04:9d:74:5c:2d:
8f:60:61:5e:94:4e:bd:66:0f:35:8a:8a:d2:4b:0b:cc:b2:7d:
0b:a3:4e:84:8e:81:e0:8c:ca:67:b5:8e:77:42:c9:b2:c9:0f:
f5:22:d5:df:15:8c:43:10:e5:96:57:ec:ae:fa:aa:4a:0f:5c:
cc:4d:31:bb:fc:ed:2d:51:b7:bc:ce:88:5b:53:50:22:0f:e5:
13:63:04:18:76:9a:2d:5f:8c:7c:34:1c:ca:53:8d:52:25:07:
ea:61:d0:59:17:47:08:7c:99:9a:b3:28:51:45:13:7c:94:60:
e4:8c:eb:b3:c5:a4:e6:14:d2:6a:d2:ff:9b:9e:19:bd:30:41:
3b:e0:9c:57:d0:59:55:47:5a:23:a6:72:00:df:1e:eb:33:9b:
37:6c:29:ca:4e:bd:28:25:7a:82:b0:c7:63:bb:d7:e1:14:62:
1d:c7:5f:c6:19:eb:21:3c:d5:b3:4d:3b:30:6c:dd:c8:7d:a9:
55:f2:6e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:23:58 2026 by rpki-client