Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F4CF952343711F1AEC9F6EFCE1D38B0.roa
File: 9F4CF952343711F1AEC9F6EFCE1D38B0.roa (raw, json)
Hash identifier: ru5HgOv6ZssX3pKd2g8dX54bxtHu9iljqHJZv2gdiAg=
Subject key identifier: B4:B7:76:41:C7:29:DF:0D:C6:D2:12:E5:10:7F:31:B8:97:9D:85:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C422
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F4CF952343711F1AEC9F6EFCE1D38B0.roa
Signing time: Thu 09 Apr 2026 17:14:53 +0000
ROA not before: Thu 09 Apr 2026 17:14:48 +0000
ROA not after: Mon 09 Apr 2029 17:14:48 +0000
asID: 17561
IP address blocks: 154.86.214.0/24 maxlen: 24
154.86.215.0/24 maxlen: 24
154.86.216.0/24 maxlen: 24
154.86.217.0/24 maxlen: 24
154.86.218.0/24 maxlen: 24
154.86.219.0/24 maxlen: 24
154.86.220.0/24 maxlen: 24
154.86.221.0/24 maxlen: 24
154.86.222.0/24 maxlen: 24
154.86.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115746 (0x1c422)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 17:14:48 2026 GMT
Not After : Apr 9 17:14:48 2029 GMT
Subject: CN=69d7de8d-d5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0b:d1:42:ab:ec:8d:d3:b5:2f:56:11:27:24:
20:fa:ed:8c:a7:dd:e8:ee:61:5f:c0:0a:29:ff:56:
a3:a4:94:9c:d9:77:20:3f:8b:af:1b:98:10:cd:81:
8b:67:8b:a0:cd:c4:41:98:79:9f:1b:b7:c5:8f:75:
40:85:d4:de:c4:57:28:f9:6b:1d:59:23:88:d1:b8:
7e:4d:6d:dc:ad:58:a6:84:0a:44:83:a2:d7:64:31:
62:19:1d:0f:f5:25:fa:a4:45:0f:25:9e:69:72:3d:
05:e3:c7:3f:78:04:f5:28:fb:14:1d:44:bd:3a:67:
df:39:51:21:b4:97:cb:aa:6d:be:26:1c:dd:43:1e:
d1:e1:2d:a9:01:2a:37:b8:ca:15:a0:95:9e:05:63:
e2:2f:ab:60:e8:d1:06:d4:cd:79:22:23:90:61:2e:
78:d8:c3:8a:dc:17:07:38:d9:36:4e:85:8d:05:ac:
87:f1:32:f0:59:98:e2:8e:f7:04:7f:7d:cb:db:de:
7a:6f:07:58:71:18:4f:7d:70:05:14:1f:68:14:8d:
5e:5b:df:fd:37:66:d9:96:bf:f7:17:46:bd:d8:de:
f3:43:21:79:4f:4a:56:61:d8:6b:1c:31:7d:c4:85:
c7:cf:16:ad:88:ad:ca:67:d2:1d:35:1d:32:15:dc:
63:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B7:76:41:C7:29:DF:0D:C6:D2:12:E5:10:7F:31:B8:97:9D:85:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F4CF952343711F1AEC9F6EFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.214.0-154.86.223.255
Signature Algorithm: sha256WithRSAEncryption
9e:ec:82:fa:2f:01:d5:76:70:5e:ec:62:21:05:09:ef:53:40:
f4:4a:9e:64:ba:bb:4f:57:38:ff:45:96:49:16:f3:0e:dd:36:
b4:10:3d:49:d8:4d:3a:0d:8d:dd:20:ac:3f:c2:eb:cf:c8:52:
81:f0:47:81:67:d1:a8:4f:c7:54:35:71:32:3c:7e:01:08:10:
8d:e6:d3:43:fc:6c:2c:d7:ac:13:9d:e1:cc:80:27:d4:d7:a0:
0a:d6:c5:2f:6b:e7:a8:e7:d4:4e:18:62:5d:13:8e:da:b6:fa:
aa:11:4f:aa:31:61:fa:6c:14:9c:c2:53:cf:71:75:69:8b:60:
ea:09:a6:9f:3f:f8:da:df:7a:36:77:f9:42:f4:99:74:c8:7f:
dc:63:7d:a8:23:b2:db:67:d2:9c:f2:22:9f:fb:d0:ad:25:82:
19:10:83:22:b3:88:1f:0c:12:b2:06:d2:8f:cc:43:a6:70:98:
bd:68:57:e6:47:2f:ab:8b:a2:2f:44:ad:57:31:05:65:26:86:
e7:fa:b6:5f:e7:7e:cd:1e:07:e1:e1:d1:b8:f3:e3:6c:8c:1a:
59:21:22:20:d0:01:56:54:f3:08:d3:64:c7:cc:d7:0b:00:34:
70:bc:cb:0f:5d:f1:e1:75:0e:78:49:b4:08:bd:1d:a9:19:a6:
8a:ad:38:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:13:29 2026 by rpki-client