Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79E79DE22D9411F19D2B2AD1DAE4EC9C.roa
File: 79E79DE22D9411F19D2B2AD1DAE4EC9C.roa (raw, json)
Hash identifier: S50RrKx5wvWLprqJ2tOXlyKVmtidHj2a9/p84HzK504=
Subject key identifier: 62:0F:6F:6B:A1:C9:13:82:39:DB:6E:0E:7D:7A:AB:81:32:59:EC:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C1DF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79E79DE22D9411F19D2B2AD1DAE4EC9C.roa
Signing time: Wed 01 Apr 2026 06:31:55 +0000
ROA not before: Wed 01 Apr 2026 06:31:51 +0000
ROA not after: Sat 02 May 2026 06:31:51 +0000
asID: 11427
IP address blocks: 154.194.232.0/22 maxlen: 24
154.194.244.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 18 Apr 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115167 (0x1c1df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:31:51 2026 GMT
Not After : May 2 06:31:51 2026 GMT
Subject: CN=69ccbbdb-46df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b2:4a:e7:19:63:4b:f9:4f:a3:f9:e3:cf:33:
b7:df:e1:dc:64:1e:ec:be:25:71:6b:c2:cf:06:61:
43:08:1a:75:1e:c7:ce:62:9a:24:cf:52:22:76:66:
41:0d:69:04:e2:66:0f:27:d9:81:e5:d0:88:7b:47:
9f:2e:f9:be:eb:2f:4b:7d:55:1c:c9:82:7e:75:35:
0f:a4:39:97:e4:7f:07:88:f3:bf:87:17:7c:2f:eb:
d8:fb:ba:8b:dc:3f:de:a3:b2:f0:b8:bc:d3:0e:c5:
01:da:e7:1c:fa:ff:af:66:6d:33:af:02:51:fa:10:
f8:0c:5d:94:27:20:8a:29:c5:22:3a:7e:6e:2c:16:
3c:2f:55:4f:72:37:ce:bc:6e:4d:d3:83:3b:21:ed:
d8:13:37:15:6f:2f:fa:5b:44:95:a2:29:1f:b6:0b:
a0:69:e2:76:93:48:fd:90:b1:d9:7b:4b:88:7a:1c:
7b:40:8c:ea:e3:b4:35:b5:31:06:7e:94:b2:14:96:
da:68:b6:f0:32:0c:b5:12:5c:8a:81:4f:94:df:f8:
ac:02:75:69:22:ea:df:0b:1e:a4:6e:ce:cc:b0:90:
28:4c:03:a4:12:85:69:4b:28:54:74:4f:06:99:31:
66:af:05:b5:4d:79:c6:5c:f6:45:32:f9:e5:69:8d:
11:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0F:6F:6B:A1:C9:13:82:39:DB:6E:0E:7D:7A:AB:81:32:59:EC:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79E79DE22D9411F19D2B2AD1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.232.0/22
154.194.244.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:78:82:e8:1c:9f:97:c7:56:73:59:19:9a:54:44:fc:7e:b4:
b4:73:0e:fd:c8:89:25:61:84:18:59:57:46:95:0e:7b:88:17:
a1:f9:dd:64:e1:31:26:93:bb:19:2b:9f:8f:ce:ab:a6:c7:d4:
1e:b8:cf:fd:38:ad:95:6f:a2:c2:70:5c:e5:26:5f:5a:a0:34:
ee:11:db:c8:77:b3:66:3b:41:62:e3:26:74:3f:59:e5:1a:4a:
ab:db:6c:d4:06:67:60:0c:47:ea:d4:1a:9c:f8:41:be:fc:94:
a6:27:02:75:b8:df:31:e1:29:ff:82:22:c3:ae:a2:e7:0e:13:
66:b0:01:ad:e4:f7:20:5f:e3:8d:1d:bd:2e:71:9e:49:4c:fc:
80:41:c8:1a:9c:b2:da:3c:1a:5e:98:43:af:b4:4a:0b:53:1e:
7d:05:56:d1:dd:9b:0e:ef:6c:73:9b:50:22:7a:aa:0b:e1:bc:
57:72:18:da:fa:fe:20:13:e3:dc:b9:e5:a4:a6:b2:6f:be:41:
56:c6:d9:e9:b9:8f:0e:ef:49:a6:e0:72:34:25:7c:86:bc:f4:
f7:f4:c8:66:23:a1:c8:c6:67:45:70:b3:80:1c:0f:5b:88:85:
c0:c0:ad:09:bd:79:c7:d2:46:de:27:1e:0f:4a:52:41:0e:94:
e1:54:65:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 01:48:40 2026 by rpki-client