Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73BD5D6433D211F195BD5A0FCF1D38B0.roa
File: 73BD5D6433D211F195BD5A0FCF1D38B0.roa (raw, json)
Hash identifier: dqX4qy/ZBPIomHNLyLDiq8hBBzSRjSR+DLwd8fsfsLU=
Subject key identifier: 19:72:51:3C:78:3F:9E:91:89:7E:A7:BA:59:62:F2:E4:FF:8E:B2:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C38F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73BD5D6433D211F195BD5A0FCF1D38B0.roa
Signing time: Thu 09 Apr 2026 05:10:41 +0000
ROA not before: Thu 09 Apr 2026 05:10:35 +0000
ROA not after: Sun 10 May 2026 05:10:35 +0000
asID: 401783
IP address blocks: 154.196.208.0/24 maxlen: 24
154.196.209.0/24 maxlen: 24
154.196.210.0/24 maxlen: 24
154.196.211.0/24 maxlen: 24
154.196.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115599 (0x1c38f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 05:10:35 2026 GMT
Not After : May 10 05:10:35 2026 GMT
Subject: CN=69d734d0-d200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:68:34:4e:b6:4c:ed:2e:b6:18:a7:d0:7d:00:
90:0a:55:7c:7b:5a:81:93:44:e9:41:2e:60:32:00:
8e:dd:4a:b0:1d:e7:5a:56:29:1e:2d:ae:5b:18:9e:
6a:9c:5c:66:aa:3c:fa:49:ec:5a:cd:70:d2:73:b9:
ab:40:26:b1:3c:60:80:78:e5:1c:3b:58:0d:e7:f8:
3c:a4:a9:b1:b2:4f:cc:15:cd:20:cd:47:80:e3:fa:
7d:d6:d3:e2:d4:76:32:e0:19:02:7e:f1:a7:f3:72:
5b:0e:de:27:cb:65:12:16:a2:b9:cd:93:a8:86:a4:
2b:94:ad:ee:ae:a7:a8:cd:63:f6:89:f7:f7:37:a9:
03:a7:0f:1e:18:2d:35:18:38:76:59:c6:c5:24:e9:
8b:59:38:12:59:1c:2f:a6:ef:b5:82:0f:35:a4:39:
a2:64:30:b6:1e:3f:d5:84:e0:1f:a1:b3:5e:1b:d2:
b4:4d:00:ba:dd:96:98:a6:d7:1e:e0:1f:f8:1d:40:
76:26:46:04:3c:81:bf:0e:ec:e0:80:e1:77:ce:6a:
26:63:18:fe:f1:1b:be:b8:b1:55:ff:29:a6:4e:22:
67:59:83:29:c5:ce:29:8d:ac:43:81:c3:22:96:89:
94:7d:80:5e:03:1e:89:b1:5c:b6:6a:57:f7:81:4b:
70:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:72:51:3C:78:3F:9E:91:89:7E:A7:BA:59:62:F2:E4:FF:8E:B2:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73BD5D6433D211F195BD5A0FCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.208.0-154.196.212.255
Signature Algorithm: sha256WithRSAEncryption
ce:90:cb:75:b3:b4:5e:04:34:de:cb:0b:ba:9c:5a:91:d2:e6:
d9:23:79:16:6b:f3:d1:a6:59:71:9a:45:da:84:f1:87:b5:66:
4a:0e:f4:36:93:a1:57:b2:4e:f7:e5:d8:2a:0c:8d:33:99:52:
d4:d9:aa:41:0f:07:b2:f7:a5:61:c2:91:b6:b9:48:e5:3b:75:
32:71:33:6d:c3:82:73:bb:9a:6d:c0:5f:51:e8:d3:31:51:0d:
93:6e:06:5a:47:22:32:af:5e:72:0b:84:37:68:a3:02:d8:2d:
00:dc:74:db:ca:fb:0f:85:25:3e:64:fc:18:07:40:51:21:8b:
6d:0d:a7:17:86:3f:8c:47:95:07:0f:e0:60:79:a3:c0:c7:40:
c1:59:46:4c:07:e9:0b:0a:71:ac:5f:b9:71:84:30:e2:7a:d0:
68:05:1e:31:e2:38:f9:15:6b:49:ad:79:5d:e7:b3:00:52:15:
b1:90:6c:7d:db:1c:81:2d:51:f5:30:5f:f0:c3:4c:35:1d:ab:
ba:9f:81:a2:78:bd:83:ef:3c:68:d7:c2:2b:89:11:16:0c:be:
0b:e7:70:ee:60:77:8f:e3:3b:06:da:38:11:b1:da:ea:55:5c:
f2:d4:3c:a3:e6:78:dc:30:5d:d0:39:f4:a2:9a:e3:c5:bb:6b:
92:36:f5:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:00:13 2026 by rpki-client