Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A471054033EC11F1A78944AFCE1D38B0.roa
File: A471054033EC11F1A78944AFCE1D38B0.roa (raw, json)
Hash identifier: /6s3gDLQgsRAs/wt+k7GAtSXQ8gQgdTjvAUMJp5YgPg=
Subject key identifier: D6:F4:7D:71:AC:DB:E5:AE:CE:23:6C:4D:71:D5:97:56:E7:F1:62:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C399
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A471054033EC11F1A78944AFCE1D38B0.roa
Signing time: Thu 09 Apr 2026 08:18:10 +0000
ROA not before: Thu 09 Apr 2026 08:18:05 +0000
ROA not after: Mon 09 Apr 2029 08:18:05 +0000
asID: 17561
IP address blocks: 154.93.192.0/24 maxlen: 24
154.93.193.0/24 maxlen: 24
154.93.194.0/24 maxlen: 24
154.93.195.0/24 maxlen: 24
154.93.196.0/24 maxlen: 24
154.93.197.0/24 maxlen: 24
154.93.198.0/24 maxlen: 24
154.93.199.0/24 maxlen: 24
154.93.200.0/24 maxlen: 24
154.93.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115609 (0x1c399)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 08:18:05 2026 GMT
Not After : Apr 9 08:18:05 2029 GMT
Subject: CN=69d760c1-0619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e0:c4:82:21:fd:89:cc:f2:f3:c2:34:e0:17:
46:cf:a4:89:2e:82:d1:91:04:93:81:9d:0e:f6:91:
ce:89:1a:fa:97:d8:32:13:ab:b4:b7:50:bd:dd:5b:
63:12:1d:16:f4:41:90:d4:e7:0d:63:40:2c:c4:4a:
35:ea:4f:7a:d3:66:c6:0e:8c:05:5c:97:1e:86:3a:
f8:8c:08:a8:eb:76:45:79:99:48:12:37:ae:25:e5:
82:9e:1e:be:4e:12:82:c0:d2:09:a2:3b:01:6b:31:
25:f0:9e:06:ab:de:db:9f:97:e0:55:de:f5:31:8a:
55:50:6b:22:ac:ae:76:d0:99:0a:d9:f2:b1:b3:d7:
4e:34:a8:90:bb:6b:5c:34:e4:53:4f:a4:7a:d2:35:
79:ee:26:c6:d7:b9:61:39:e4:f4:d4:15:5c:db:fe:
91:06:a5:dd:d7:c2:aa:47:8e:47:b8:86:3c:b3:b5:
30:9f:61:8c:65:0a:ed:2a:ac:52:8a:fd:c2:b2:c6:
67:1c:ea:43:a7:7b:b8:8f:2b:04:c1:81:dd:d1:c9:
3e:d6:a7:4e:4c:c6:4f:21:2c:4d:a8:fb:5b:d5:c3:
9d:79:25:00:65:20:da:4e:5b:92:46:89:9b:87:9b:
2b:84:60:1b:c4:21:e8:94:22:0c:62:b6:b0:c5:ff:
79:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F4:7D:71:AC:DB:E5:AE:CE:23:6C:4D:71:D5:97:56:E7:F1:62:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A471054033EC11F1A78944AFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.192.0-154.93.201.255
Signature Algorithm: sha256WithRSAEncryption
28:cf:99:31:98:f5:c4:c2:0b:d5:18:61:c4:f0:b4:b1:03:33:
e7:1a:48:e8:e9:cf:a5:bb:24:50:33:95:ef:fc:e2:fb:32:34:
1f:76:92:ec:91:ce:f2:b4:d2:64:7d:12:49:72:30:96:c4:be:
9e:b7:f0:e8:07:07:87:00:41:03:bb:08:e9:42:b5:65:20:01:
db:be:4e:c7:f1:14:8b:08:ce:6b:4d:02:b7:58:53:aa:ad:2e:
10:3c:47:61:97:02:51:57:64:bc:50:0a:6a:0f:91:0c:0c:69:
15:bc:bd:44:fb:81:c1:d3:9b:37:31:4d:81:7d:79:66:c1:7b:
d5:f1:f5:fb:07:a9:70:03:19:d2:83:3c:22:74:66:04:ed:60:
40:33:76:f2:fa:02:00:51:8c:35:f6:b8:50:e4:93:4f:8e:fc:
fc:3a:34:83:f7:91:b9:ea:e1:c8:f9:66:90:f6:37:5c:57:5f:
98:c3:31:03:c0:0e:d2:e5:19:17:e9:8e:75:5c:a5:13:a9:85:
41:47:87:da:4d:a0:d0:4b:09:e1:5b:cc:8a:1c:43:d4:cc:7e:
72:e6:c1:e3:30:f6:f2:ee:46:a7:4b:a1:f4:b8:6c:80:9d:a2:
e4:4a:4f:f6:ea:f3:1f:c6:7a:da:d3:76:bb:08:0e:82:3e:6d:
ca:6a:c7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:51:01 2026 by rpki-client