Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/918BFD3C33FA11F185338802CF1D38B0.roa
File: 918BFD3C33FA11F185338802CF1D38B0.roa (raw, json)
Hash identifier: gKYKxVMV6jERDfacqFzSj6rT8tMj7LP9Wx+ZCv9/4AM=
Subject key identifier: 33:B4:1B:E2:B2:BC:45:9B:85:FE:8E:8F:53:76:55:62:4E:DB:8D:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C3C1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/918BFD3C33FA11F185338802CF1D38B0.roa
Signing time: Thu 09 Apr 2026 09:57:50 +0000
ROA not before: Thu 09 Apr 2026 09:57:46 +0000
ROA not after: Sun 19 Apr 2026 09:57:46 +0000
asID: 2914
IP address blocks: 154.222.74.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115649 (0x1c3c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 09:57:46 2026 GMT
Not After : Apr 19 09:57:46 2026 GMT
Subject: CN=69d7781e-00f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:71:4e:10:c8:a2:09:97:34:e6:a0:73:75:ac:
0b:cc:d8:31:62:60:21:ef:94:54:ff:77:e2:ee:e1:
b9:04:6b:67:82:6b:00:fc:59:81:f1:3e:09:a4:d5:
38:08:65:2e:45:68:9c:9f:2a:c3:f5:19:06:ee:6d:
f4:16:0d:77:8d:2c:88:06:79:d7:39:4b:45:ce:1a:
e4:7d:22:b5:bd:86:88:88:2e:b2:ce:cc:d2:d5:58:
47:dc:96:0f:26:86:2e:fd:86:ab:12:92:1c:6e:1d:
42:65:73:6c:99:79:8e:ea:68:94:3e:62:81:5c:a9:
d8:68:83:5f:bb:bd:30:27:d5:ec:28:ce:39:7a:df:
08:b3:06:d3:4b:6d:e9:5a:48:7e:ac:f4:d1:b2:49:
7b:5b:77:08:4a:61:a7:d9:93:ea:ff:7e:e8:cb:d8:
95:d2:e6:fe:ff:3a:3b:0b:30:fe:28:90:92:10:c1:
bc:a8:32:ea:e4:a6:e6:38:48:69:29:ff:8c:a0:20:
3d:47:89:b2:d8:b6:3f:ac:6a:df:49:9f:e3:87:6c:
66:28:e6:9f:d6:93:4a:cf:6c:96:13:9f:3a:64:61:
b2:dd:14:a8:b3:68:97:60:a4:3b:3f:11:7f:e2:67:
eb:01:5e:e7:71:db:5a:b3:c8:ee:ea:f3:f7:65:b8:
58:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B4:1B:E2:B2:BC:45:9B:85:FE:8E:8F:53:76:55:62:4E:DB:8D:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/918BFD3C33FA11F185338802CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.74.0/23
Signature Algorithm: sha256WithRSAEncryption
03:1d:4b:95:76:5f:c1:90:94:c6:b4:1e:5b:c9:2b:63:60:98:
d4:0f:8c:16:84:c1:9a:c4:cf:17:a9:1f:e9:67:94:1a:1f:a0:
e1:0a:76:9c:17:c5:44:46:21:5b:53:87:bf:0d:09:f3:84:13:
aa:60:32:96:f8:3e:77:d5:84:24:c0:ae:30:47:c7:ee:61:fd:
10:7e:2d:e3:82:91:13:58:49:83:6d:27:34:a4:b8:6e:38:df:
4e:38:b3:8f:f5:30:f8:7d:5e:f8:53:4c:27:72:dc:4e:7f:70:
b9:0e:05:fc:5f:31:f4:98:8b:fa:14:9d:16:cd:5f:84:11:f0:
89:c5:83:25:e6:20:9f:4b:10:a6:68:f4:31:c0:d9:2a:b0:e1:
a0:d5:66:40:bb:00:49:e5:c4:be:49:af:00:71:55:27:40:5d:
08:28:3c:84:54:f9:f0:e5:b2:9e:cc:16:2a:0d:08:f0:28:73:
87:38:75:0b:1f:53:59:a1:ac:85:e4:9e:22:97:9b:33:c6:ae:
b3:98:b2:8b:9b:25:2c:a2:c2:05:55:bc:04:fd:b9:43:48:a0:
86:f0:5c:4b:1a:2f:7b:e2:05:95:a0:83:e7:eb:97:6d:e9:41:
e1:38:d6:62:d4:9a:fc:bc:e3:22:6d:b1:7c:8b:95:88:58:5f:
1e:8a:86:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:55:49 2026 by rpki-client