Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76B26D00366311F197C08C19CF1D38B0.roa
File: 76B26D00366311F197C08C19CF1D38B0.roa (raw, json)
Hash identifier: 7CR5yRW+yh3J2zyI1HS0brNBTIZP5uo478OAyPn8Mpo=
Subject key identifier: 6B:56:48:3A:09:C4:AA:E3:B7:AB:8F:B8:54:8B:08:5D:3B:DC:40:8A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76B26D00366311F197C08C19CF1D38B0.roa
Signing time: Sun 12 Apr 2026 11:33:45 +0000
ROA not before: Sun 12 Apr 2026 11:33:40 +0000
ROA not after: Thu 12 Apr 2029 11:33:40 +0000
asID: 17561
IP address blocks: 154.95.228.0/24 maxlen: 24
154.95.229.0/24 maxlen: 24
154.95.230.0/24 maxlen: 24
154.95.231.0/24 maxlen: 24
154.95.232.0/24 maxlen: 24
154.95.233.0/24 maxlen: 24
154.95.234.0/24 maxlen: 24
154.95.235.0/24 maxlen: 24
154.95.236.0/24 maxlen: 24
154.95.237.0/24 maxlen: 24
154.95.238.0/24 maxlen: 24
154.95.239.0/24 maxlen: 24
154.95.240.0/24 maxlen: 24
154.95.241.0/24 maxlen: 24
154.95.242.0/24 maxlen: 24
154.95.243.0/24 maxlen: 24
154.95.244.0/24 maxlen: 24
154.95.245.0/24 maxlen: 24
154.95.246.0/24 maxlen: 24
154.95.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115910 (0x1c4c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 11:33:40 2026 GMT
Not After : Apr 12 11:33:40 2029 GMT
Subject: CN=69db8319-7718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6b:7c:c5:fa:ce:2e:55:e0:db:9b:32:91:48:
f6:64:d5:d6:21:f9:99:48:b9:0c:50:49:c4:a5:e3:
8f:fc:da:20:1e:39:b3:af:f3:d2:ba:af:ac:de:c0:
bf:8f:c6:a4:bf:ad:89:97:35:93:fa:e0:5c:c7:47:
6d:94:b7:0d:f8:a6:cf:ca:23:90:b3:8f:cd:b0:34:
30:5d:66:b4:8a:96:4a:3f:7f:7f:03:75:c8:c0:c6:
4d:5f:6f:00:7d:3e:63:25:f8:46:44:1a:f0:0a:97:
32:f2:67:5d:06:76:37:c4:8a:67:01:e4:fc:61:df:
e1:4f:a1:17:0d:5f:92:9b:cd:b3:c1:e8:6a:4f:76:
e2:d0:20:14:bb:bb:c2:98:f6:bb:e1:90:3e:ab:a7:
75:ef:68:cf:73:e5:8a:a3:20:da:26:c4:4e:3e:0c:
01:47:a9:cb:33:8f:ce:bf:8b:42:1a:03:34:88:cd:
25:c5:ce:bf:ff:66:c0:cd:a1:64:4f:16:ce:56:56:
f3:49:90:3b:4a:49:9a:3f:7c:ed:cf:ea:40:f2:fc:
72:e2:b7:eb:a9:fe:23:38:de:64:88:3e:0b:b3:a6:
c2:bc:88:10:5b:8d:ca:f5:31:cd:2c:05:e8:61:b5:
3e:26:8b:be:78:b8:d5:5b:69:55:ca:3f:6f:1d:2d:
ae:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:56:48:3A:09:C4:AA:E3:B7:AB:8F:B8:54:8B:08:5D:3B:DC:40:8A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76B26D00366311F197C08C19CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.228.0-154.95.247.255
Signature Algorithm: sha256WithRSAEncryption
36:d7:3a:9e:c8:08:d2:fd:5f:b4:46:91:06:6f:8e:a5:bc:e6:
d1:9d:3d:d2:90:1f:3b:f0:e9:14:f7:7e:66:db:0c:cf:56:af:
c1:06:53:e4:fe:77:41:9f:e2:9c:c5:ef:6b:8d:41:b6:fe:b9:
c2:e7:1e:c2:65:3b:27:0a:8f:31:6e:6f:93:4e:17:ee:c1:a4:
5c:77:42:77:cf:27:48:14:3a:bf:d9:c2:48:e4:38:6c:5e:f5:
2b:46:c3:87:26:82:d5:20:d3:bf:ae:86:4c:b9:cd:4c:91:f7:
1e:84:e0:69:81:83:39:22:47:e5:c6:5a:bf:40:ad:5d:cd:23:
8f:86:d6:18:cf:37:a1:84:96:98:e8:09:a1:1d:31:6b:74:97:
c3:d4:d0:e0:5b:02:ba:01:e1:ba:48:ea:56:7f:42:74:29:79:
9d:80:51:b1:f1:95:37:3b:c9:f7:e3:3a:5c:8a:52:ba:65:62:
53:b8:51:a3:2c:ad:50:32:70:9e:1d:1b:41:ec:93:a6:2b:0a:
0b:f8:21:75:0d:23:48:bb:bd:9e:4d:a5:10:09:a0:6c:ca:92:
e3:b8:e7:7c:bd:fe:4d:22:67:29:97:1e:43:98:7c:ed:02:da:
41:6b:82:b4:55:24:6e:c4:7d:17:33:2d:ca:ad:23:f0:e2:40:
7a:0d:d7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:59:48 2026 by rpki-client