Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/745860B4376711F1A83FDFC7CE1D38B0.roa
File: 745860B4376711F1A83FDFC7CE1D38B0.roa (raw, json)
Hash identifier: wxyKN4Oh+ImqWH8rFM27xMPbnhthZjPU8dABfCdUjf8=
Subject key identifier: B1:6E:C5:78:3A:8D:87:5D:AB:F7:D6:2D:1C:2D:33:AE:D8:BD:89:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C51E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/745860B4376711F1A83FDFC7CE1D38B0.roa
Signing time: Mon 13 Apr 2026 18:34:51 +0000
ROA not before: Mon 13 Apr 2026 18:34:45 +0000
ROA not after: Wed 13 May 2026 18:34:45 +0000
asID: 17497
IP address blocks: 154.82.19.0/24 maxlen: 24
154.90.138.0/23 maxlen: 24
154.90.138.0/24 maxlen: 24
154.90.139.0/24 maxlen: 24
154.94.2.0/23 maxlen: 24
154.94.2.0/24 maxlen: 24
154.94.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115998 (0x1c51e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 18:34:45 2026 GMT
Not After : May 13 18:34:45 2026 GMT
Subject: CN=69dd374b-ffad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:cf:39:d3:5a:81:70:b9:db:14:e8:73:0c:
ef:14:6d:97:a2:3b:04:94:9a:77:00:14:60:9d:60:
cc:6c:32:3b:63:f8:fa:22:2d:2a:da:a2:30:24:43:
3a:f1:1a:e3:42:f7:79:80:67:34:ef:38:4c:f8:6e:
a5:8b:33:29:27:ae:44:5b:2b:25:0b:fd:76:c5:a5:
4f:43:01:e7:28:cb:e4:13:b2:a0:3c:33:3e:dd:80:
24:49:65:a3:8b:50:bc:29:e5:bf:95:f0:a4:d5:70:
64:dd:54:d9:23:7c:df:21:92:a3:ea:cb:14:70:ad:
d4:1f:0b:b0:11:e6:85:2c:21:85:6f:99:03:be:87:
03:d7:51:c7:13:3b:6b:35:55:32:ce:cc:bc:8c:05:
dc:15:61:75:10:08:55:59:37:0d:11:2b:39:8d:09:
a4:31:2f:0e:ea:da:e9:7b:0c:9c:27:d1:dd:7f:31:
c2:c3:4a:81:f8:f6:84:6d:f3:18:6f:a3:bf:49:81:
ac:41:b0:24:33:66:0d:cf:0c:cf:55:62:8b:ce:d9:
6c:37:71:a0:43:e7:3d:3b:e6:fd:28:9e:e5:a9:09:
db:16:c7:2a:ba:03:f0:df:ea:10:44:ed:6e:2c:6e:
01:26:8a:cc:55:6b:0b:ff:73:aa:c7:6f:92:71:21:
31:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:6E:C5:78:3A:8D:87:5D:AB:F7:D6:2D:1C:2D:33:AE:D8:BD:89:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/745860B4376711F1A83FDFC7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.19.0/24
154.90.138.0/23
154.94.2.0/23
Signature Algorithm: sha256WithRSAEncryption
93:f7:a5:48:f2:93:c0:8a:c7:71:c9:ca:ae:e2:a5:62:94:e3:
33:5b:78:e8:20:73:8a:6e:f0:8b:63:60:2b:14:35:68:cb:45:
bc:9f:ba:36:19:16:72:c9:64:36:5d:21:02:ed:83:61:99:47:
ff:3f:9c:d2:13:7a:84:82:8f:28:e8:f5:82:c9:c2:eb:d5:d2:
f9:ca:ae:f7:21:09:a2:a9:28:c2:9b:c2:19:e3:a6:fd:cc:8a:
89:73:e4:0e:6d:81:2f:ca:4b:b6:cd:41:48:21:53:6b:8c:37:
95:47:08:91:56:ce:6f:e3:05:cc:d0:d8:cc:45:34:17:cd:0c:
58:09:6a:d1:ce:a9:98:a6:a3:22:f3:c7:10:f2:e0:cd:21:24:
d2:4a:cf:04:6e:46:25:64:45:94:b9:6f:34:24:7d:f9:bb:f6:
5d:5a:96:29:0b:8e:19:44:0b:61:69:46:23:86:8b:15:5f:06:
5a:c9:b9:f2:db:a8:76:bf:b8:0e:b9:7a:89:06:60:6c:4c:c8:
db:3a:ad:7e:1e:bd:5d:ce:9f:88:43:c9:0f:f8:6f:69:b4:de:
57:1f:20:f4:58:f8:99:ce:2b:90:9a:f8:58:ab:6b:ad:9a:6b:
0a:e2:2a:99:13:fe:8a:99:50:fb:70:f6:0e:ac:3a:43:a6:e3:
94:cc:9f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:31 2026 by rpki-client