Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BBE4FA6349411F19EBC7809CF1D38B0.roa
File: 7BBE4FA6349411F19EBC7809CF1D38B0.roa (raw, json)
Hash identifier: zHFuzzzxAKjgNElVInHEQMq2cGTht9GPvgnrORtbtho=
Subject key identifier: 7E:4B:B3:1C:70:1E:64:BB:59:A0:01:9A:58:F4:96:60:88:80:9A:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C44D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BBE4FA6349411F19EBC7809CF1D38B0.roa
Signing time: Fri 10 Apr 2026 04:19:36 +0000
ROA not before: Fri 10 Apr 2026 04:19:31 +0000
ROA not after: Sun 19 Apr 2026 04:19:31 +0000
asID: 2914
IP address blocks: 154.197.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 04:19:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115789 (0x1c44d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 04:19:31 2026 GMT
Not After : Apr 19 04:19:31 2026 GMT
Subject: CN=69d87a58-0676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1f:9b:54:9e:1e:fa:54:1e:d0:2e:c5:e3:10:
e6:da:d3:06:b1:64:fd:d8:a2:de:06:60:88:62:e7:
80:4a:85:b6:86:f1:55:d6:8e:1a:4b:9b:01:e9:18:
e8:ee:f1:db:c5:85:da:3c:09:78:a8:f4:b8:c1:1f:
0f:32:9a:a3:80:a9:2b:19:ef:ef:a3:7d:91:88:0f:
f8:81:04:68:2e:92:bb:fd:81:fe:aa:ae:39:41:8e:
fa:aa:57:6a:ca:00:73:8e:3b:1d:19:bf:b8:b5:2e:
1e:db:07:b0:e3:6c:66:be:1d:e7:35:e7:32:18:2e:
8d:8d:59:0d:41:6d:27:b7:ef:4d:16:0c:36:e0:3a:
30:a6:7e:6d:ea:c7:cc:6e:d2:f2:04:53:f0:ae:dc:
03:21:fa:d1:81:5e:b4:6b:61:aa:97:ae:32:9e:eb:
dd:43:c2:47:8c:c0:3e:5f:b5:ad:da:39:df:58:fc:
ea:70:09:4d:62:2d:b3:d3:c6:cf:51:0a:d2:6e:f4:
99:f3:54:89:5c:7a:04:0c:fe:3b:6e:03:80:5c:cb:
f0:6c:33:06:5f:ab:0f:cb:73:77:2f:28:4c:3a:75:
b6:53:dd:25:cd:1c:5d:4d:96:f0:a2:c1:8c:81:ed:
28:57:27:b1:e3:8c:6d:48:d4:23:56:b7:cb:64:84:
fa:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:4B:B3:1C:70:1E:64:BB:59:A0:01:9A:58:F4:96:60:88:80:9A:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BBE4FA6349411F19EBC7809CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.12.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:ef:c4:bb:9f:f4:87:9f:d5:3d:c6:31:a9:b6:a6:73:c4:24:
fb:4e:70:8d:71:8f:07:84:c0:55:7a:4b:b5:5a:25:de:e5:08:
e9:b3:2a:f6:46:69:ed:fd:69:57:41:f0:ed:98:fb:d2:b3:78:
14:7c:1f:57:66:e5:b6:e1:59:6d:9b:91:8e:a5:d1:d7:7b:7b:
bf:32:c8:1b:61:19:e3:c0:18:79:d6:55:35:2f:3a:6a:75:27:
51:69:dc:92:8a:42:d2:43:30:b0:37:6f:4b:7f:c7:1e:2f:2a:
84:d7:9e:95:95:96:9f:dd:4f:e7:41:5c:70:0e:bb:09:32:a6:
07:a3:d1:20:28:f6:db:4a:1e:86:53:61:8a:bb:94:3c:9b:92:
7c:05:c0:07:c4:61:fb:c0:52:62:52:3b:b3:7a:72:3c:4d:c9:
41:b6:d4:ab:e4:7c:45:b9:72:be:da:40:9e:00:64:ed:54:ff:
7e:8c:51:53:9a:de:22:90:0d:77:a8:f3:d8:47:5d:58:09:e9:
a4:86:e2:e3:f9:33:30:32:3e:e3:99:ce:ae:40:5a:93:5e:36:
5c:11:b2:03:90:23:ea:88:f7:6b:6e:15:8f:37:a5:9e:d4:80:
41:4e:38:74:7d:26:f5:5d:b3:86:76:b4:5f:80:5b:a3:02:f5:
90:69:d9:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:37:50 2026 by rpki-client