Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/738AFBDE341411F19B94391DCF1D38B0.roa
File: 738AFBDE341411F19B94391DCF1D38B0.roa (raw, json)
Hash identifier: gThHAfWWVYuZHeh4apMgpNRDCY2KXWjrhsbUixEVDM0=
Subject key identifier: 1D:9D:18:EE:33:DA:B4:EF:AB:69:E1:BB:9A:E7:B4:85:0F:14:9D:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C3F6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/738AFBDE341411F19B94391DCF1D38B0.roa
Signing time: Thu 09 Apr 2026 13:03:07 +0000
ROA not before: Thu 09 Apr 2026 13:03:02 +0000
ROA not after: Sun 19 Apr 2026 13:03:02 +0000
asID: 401783
IP address blocks: 154.200.37.0/24 maxlen: 24
154.200.43.0/24 maxlen: 24
154.200.46.0/24 maxlen: 24
154.200.48.0/24 maxlen: 24
154.200.51.0/24 maxlen: 24
154.200.52.0/24 maxlen: 24
154.200.53.0/24 maxlen: 24
154.200.54.0/24 maxlen: 24
154.200.60.0/24 maxlen: 24
154.200.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 13:03:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115702 (0x1c3f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 13:03:02 2026 GMT
Not After : Apr 19 13:03:02 2026 GMT
Subject: CN=69d7a38b-804d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ba:6d:f0:4a:7e:51:b9:7e:75:23:5b:b5:29:
9e:f9:f1:17:63:d0:a8:97:cb:2d:f0:99:0e:9e:3e:
e4:74:8f:2b:51:76:17:bb:c9:2d:e5:c5:fb:f1:d2:
bd:0d:7c:02:7f:33:24:7e:54:24:48:65:c6:78:75:
67:74:a0:cf:2c:e9:46:4b:79:13:eb:ac:58:25:93:
fb:3a:e5:0d:15:84:1e:3c:9d:1d:a2:e5:4b:ba:61:
d5:4c:78:f1:a8:62:5e:46:79:ad:5a:77:11:2d:1c:
27:b1:a8:b2:b4:e7:e8:85:37:22:99:71:96:e4:20:
db:eb:e7:91:94:9b:3d:c8:a2:43:ab:eb:9d:34:21:
66:ca:1c:e6:2d:29:71:d9:df:9a:04:ba:b0:ed:50:
8f:18:81:dc:6e:72:3e:2e:1c:77:f0:1d:6c:62:21:
5b:66:3a:d9:c3:1e:18:68:41:41:2f:f6:fd:74:18:
99:f6:28:64:15:19:f8:29:58:11:a2:9c:e5:d6:11:
d9:ad:8e:8c:a5:74:3b:79:1c:97:66:1b:88:00:8f:
16:3f:16:92:5f:2f:6b:39:40:86:48:3f:fe:a1:51:
7d:4f:cc:da:cc:cf:14:c4:28:87:db:fb:0b:6f:1a:
c9:43:3e:4c:52:2f:b2:e9:d2:d8:a1:99:32:4c:5f:
74:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:9D:18:EE:33:DA:B4:EF:AB:69:E1:BB:9A:E7:B4:85:0F:14:9D:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/738AFBDE341411F19B94391DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.37.0/24
154.200.43.0/24
154.200.46.0/24
154.200.48.0/24
154.200.51.0-154.200.54.255
154.200.60.0/24
154.200.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c2:a5:39:e1:d5:ce:87:b6:81:e1:9b:e2:08:1d:15:2a:3e:
54:95:3f:ab:3a:64:1b:44:20:25:d0:50:52:d5:fd:fd:14:2b:
96:4c:b8:a1:8f:51:87:f0:2f:20:d2:66:0f:a9:5d:40:c9:ed:
dc:b5:b6:10:47:e4:86:5a:68:22:d3:0e:b9:49:a5:eb:9c:6d:
1c:81:d0:ce:0f:15:db:e8:64:d6:10:7a:a5:9a:ec:5a:3a:56:
27:39:92:bb:a6:af:86:9f:40:bc:7d:bb:cc:e4:60:bf:53:b5:
19:43:39:29:63:73:1f:0e:c2:79:4d:d8:b6:1f:43:48:58:32:
5d:2d:f9:22:a0:7f:d6:1a:ad:e4:c9:25:36:ab:55:a2:3b:d9:
f9:d1:ef:3d:0c:e9:55:7f:a2:49:cf:b9:b1:50:fe:88:3b:50:
54:34:14:e8:7d:c9:5e:c3:1e:24:dd:d0:20:63:08:03:1d:96:
4e:05:ac:e9:60:51:09:42:75:14:bf:42:01:7a:7b:dc:6f:e5:
65:56:a4:9f:d8:e6:16:ea:9b:ed:0d:78:e2:b1:78:df:fe:48:
03:86:99:2a:f2:05:9b:f3:59:7c:70:87:eb:d1:d8:f5:16:d6:
f1:b2:b9:56:59:c6:cf:0e:bb:a6:83:b5:c5:8d:42:13:13:ae:
e4:3e:d7:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:20:03 2026 by rpki-client