Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CBA8394377611F199E7BDA4CE1D38B0.roa
File: 8CBA8394377611F199E7BDA4CE1D38B0.roa (raw, json)
Hash identifier: S51vPLOTsZ1tu4pElag/GeS88VouYTnn8C72iKJkFco=
Subject key identifier: D2:C3:6F:70:C4:57:EA:E8:F6:2E:95:71:02:01:99:98:B1:8C:23:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C52C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CBA8394377611F199E7BDA4CE1D38B0.roa
Signing time: Mon 13 Apr 2026 20:22:53 +0000
ROA not before: Mon 13 Apr 2026 20:22:49 +0000
ROA not after: Tue 19 May 2026 20:22:49 +0000
asID: 11404
IP address blocks: 154.83.160.0/20 maxlen: 24
154.89.240.0/20 maxlen: 24
154.90.80.0/20 maxlen: 24
154.90.96.0/19 maxlen: 24
154.92.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116012 (0x1c52c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 20:22:49 2026 GMT
Not After : May 19 20:22:49 2026 GMT
Subject: CN=69dd509d-8a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:de:30:c1:0b:0d:2c:35:47:be:e0:a2:e0:ab:
d1:c8:fc:80:6e:fa:1d:83:88:3c:5e:b7:09:35:7b:
42:58:4b:94:24:f7:78:7d:e6:d4:09:7c:4b:44:df:
f7:57:d5:6a:95:8b:69:4d:c0:97:1c:5e:a8:0d:87:
44:cd:dd:5a:c1:19:d8:fe:97:f2:ec:51:84:82:55:
42:67:87:b3:e2:8a:cf:f8:28:4d:96:4f:78:17:9e:
26:db:c3:87:cd:b2:44:79:89:d2:e1:37:9b:63:2c:
9b:10:35:ed:28:7f:75:8d:41:5c:21:73:6a:a8:a2:
29:34:f0:2d:a1:4a:5a:c0:32:93:12:f5:33:69:de:
89:c3:e4:69:f2:30:ee:a0:fe:34:c8:34:7c:e6:60:
ea:b8:1b:dd:6c:fb:29:1e:a9:87:89:f8:dc:ae:68:
4c:a6:74:96:b1:36:60:43:54:79:43:f1:69:72:28:
c1:c8:47:74:0f:0d:47:94:4f:fb:7f:5f:0d:24:4f:
00:52:4f:79:43:47:1c:c2:2e:6c:45:d7:04:38:82:
69:e3:ed:e6:f8:cd:95:69:3a:2e:60:39:f9:d1:79:
7c:e8:d3:a9:b7:46:d9:27:29:67:4b:3c:3d:95:b9:
f2:a0:dd:a5:2e:c9:7a:c3:26:d0:b1:ce:db:e6:df:
85:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C3:6F:70:C4:57:EA:E8:F6:2E:95:71:02:01:99:98:B1:8C:23:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CBA8394377611F199E7BDA4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.160.0/20
154.89.240.0/20
154.90.80.0-154.90.127.255
154.92.144.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:d8:92:04:ff:06:25:e8:5d:5b:c1:04:c7:2e:2d:30:2c:59:
3c:eb:54:51:dc:69:3a:6b:2d:62:c2:e5:7e:97:97:ea:4b:e6:
5d:b4:71:59:39:e5:ac:1a:82:10:a0:46:df:ac:7b:28:fd:44:
28:0d:5e:54:46:9a:44:8b:02:cb:84:18:81:da:e7:2d:3c:8f:
57:36:59:85:3c:8e:cf:a8:74:cb:f1:11:8e:24:25:2c:ec:8f:
5a:7a:50:5d:8e:04:ef:25:00:ef:61:23:a0:d5:6c:1c:bc:d6:
e4:0c:a5:03:45:a1:2a:a2:cd:14:37:be:4d:f1:4b:31:91:8d:
92:48:d5:57:fa:46:60:8a:4b:8b:9d:ab:5b:2c:7f:3d:78:1e:
46:9b:32:5d:51:9d:bc:a0:b5:24:f3:0b:cb:58:bb:90:6c:01:
fb:52:96:58:0c:e8:e4:b9:80:88:59:9c:da:00:10:d8:b6:5e:
ea:d9:f0:eb:5c:bc:c7:ed:3f:c5:c2:ca:3b:ce:0c:b7:e2:47:
61:c6:13:4c:92:11:b4:ab:8b:64:9e:fa:15:a9:f6:cb:d7:5e:
b1:bd:62:0b:44:34:84:07:85:71:ec:6d:5c:bc:0e:22:62:94:
ba:d4:59:97:d9:51:13:98:f6:73:02:c4:d0:f5:14:a2:93:df:
e4:e5:51:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:39 2026 by rpki-client