Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E2962722ECE11F189DE63EADAE4EC9C.roa
File: 9E2962722ECE11F189DE63EADAE4EC9C.roa (raw, json)
Hash identifier: LEx4Se6wlENvzv2hGBg41LC+stdcgvW343PWyUAXwds=
Subject key identifier: E5:D2:59:20:3A:EA:CC:BA:83:10:C3:96:68:CA:2F:3C:75:99:96:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C27B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E2962722ECE11F189DE63EADAE4EC9C.roa
Signing time: Thu 02 Apr 2026 20:00:39 +0000
ROA not before: Thu 02 Apr 2026 20:00:31 +0000
ROA not after: Sun 10 May 2026 20:00:31 +0000
asID: 138915
IP address blocks: 154.223.16.0/24 maxlen: 24
154.223.17.0/24 maxlen: 24
154.223.18.0/23 maxlen: 24
154.223.20.0/24 maxlen: 24
154.223.21.0/24 maxlen: 24
154.223.22.0/24 maxlen: 24
154.223.23.0/24 maxlen: 24
154.223.24.0/24 maxlen: 24
154.223.26.0/24 maxlen: 24
154.223.28.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115323 (0x1c27b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 20:00:31 2026 GMT
Not After : May 10 20:00:31 2026 GMT
Subject: CN=69cecae7-96a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:28:02:f6:39:6f:76:c1:71:6d:6c:22:b7:a7:
7b:ee:be:6d:d6:1c:0c:71:af:54:47:8b:4a:92:35:
b0:63:19:d7:4a:f2:3e:cc:f1:c0:bb:91:79:c0:7c:
50:c0:ad:15:48:bf:8c:7d:9c:51:ed:c6:29:f9:ce:
ce:8f:a3:24:f3:ba:9e:1a:d5:f1:b8:5b:c5:af:a5:
ba:d7:d3:de:a9:63:c8:35:a2:12:19:ca:80:97:79:
b5:05:94:ed:2a:39:79:a4:6b:38:7c:dd:88:8e:eb:
87:b2:46:02:7a:bd:c8:a3:51:6a:31:12:57:d4:77:
71:b2:10:89:47:59:a6:73:51:a9:87:36:8f:0d:b1:
fe:93:5a:29:dc:d0:27:33:9f:ff:5e:58:a9:db:c0:
5b:e3:c1:2e:59:d1:9c:bf:27:eb:2b:86:bd:f1:e7:
0d:7c:dc:3e:1c:f1:13:9e:69:4c:40:50:bf:89:d2:
ac:e0:1d:0a:84:21:9d:03:1c:b3:42:1b:86:86:de:
58:0c:7b:41:b8:c4:c9:a9:d6:75:e0:4d:a6:e2:38:
0e:50:fe:d8:28:a8:d1:ca:a0:6a:42:0b:0e:90:3b:
8e:6b:a5:11:3e:93:1e:cb:bb:28:c2:aa:2e:94:64:
94:96:6a:ed:d8:70:52:af:d1:6c:df:4d:98:73:be:
16:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D2:59:20:3A:EA:CC:BA:83:10:C3:96:68:CA:2F:3C:75:99:96:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E2962722ECE11F189DE63EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.16.0-154.223.24.255
154.223.26.0/24
154.223.28.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:c0:3b:33:db:4a:35:69:63:ab:dc:fc:12:80:2f:1b:3b:4e:
20:d6:b2:60:9d:d0:d2:45:f0:7e:0c:cf:1f:ba:37:11:d8:86:
a1:cd:e2:ce:b4:00:4b:8b:28:6b:f0:90:20:3d:36:c5:e8:58:
9a:0b:e9:c0:6e:ec:ce:72:c9:c0:07:6e:6d:ff:7f:24:da:0b:
78:c6:85:c6:fe:f4:2f:6b:86:1f:7d:7a:d6:d1:af:dd:5b:a9:
ff:e8:75:53:14:ec:6f:9b:ff:41:0b:b7:a8:fa:ea:a5:4a:cc:
0a:39:dc:83:cd:21:50:d1:9b:a5:3c:6c:37:b6:2b:aa:d0:62:
47:60:7d:f1:fc:d1:2f:7f:29:e3:a1:38:74:fe:73:f9:64:78:
08:e8:45:67:2e:12:11:f9:a8:de:3b:af:7c:5e:56:85:3e:97:
97:c9:62:8f:5d:19:05:29:90:59:15:12:42:db:54:e1:a6:7a:
32:e2:d4:e5:7f:27:a6:a7:ec:b8:52:7a:52:8e:ec:94:67:21:
a0:bd:1c:16:f3:f5:74:bc:04:53:e5:13:9f:39:57:79:bc:d6:
18:92:5e:2b:6c:2f:5a:38:9e:4f:f8:d9:45:33:48:73:df:ac:
6b:40:e8:10:6d:25:f1:aa:45:32:ef:81:c5:e7:ed:57:ab:0d:
07:67:af:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:10:10 2026 by rpki-client