Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A750D5263A5711F18B9DB4C6CE1D38B0.roa
File: A750D5263A5711F18B9DB4C6CE1D38B0.roa (raw, json)
Hash identifier: +Ix5YxTEO+usBG3pEyRElDTajFDVKKv4rZmaLXVQzow=
Subject key identifier: 86:CD:33:01:DE:83:C5:2A:92:EA:18:80:46:C1:23:44:94:CF:E8:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C5CD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A750D5263A5711F18B9DB4C6CE1D38B0.roa
Signing time: Fri 17 Apr 2026 12:19:17 +0000
ROA not before: Fri 17 Apr 2026 12:19:12 +0000
ROA not after: Sun 24 May 2026 12:19:12 +0000
asID: 8796
IP address blocks: 154.89.144.0/20 maxlen: 24
154.89.160.0/19 maxlen: 24
154.89.192.0/20 maxlen: 24
154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116173 (0x1c5cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 17 12:19:12 2026 GMT
Not After : May 24 12:19:12 2026 GMT
Subject: CN=69e22545-a465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:df:d3:46:b1:73:0c:4b:2f:fd:fd:b9:fc:a4:
78:98:f0:ac:84:e8:74:4f:09:77:08:b3:fe:70:4d:
45:5f:34:14:16:ee:f5:5f:5c:13:c6:09:ba:49:6b:
ef:c2:24:f3:23:2b:2a:8d:85:47:7f:fa:ac:00:90:
06:dd:86:ec:e7:88:e4:e2:9a:07:bc:86:0a:31:da:
44:76:5c:b3:34:8e:e1:57:ff:f7:d8:85:2e:22:f6:
f4:35:17:a4:15:73:e4:b2:ee:23:59:fa:c7:9d:e0:
6f:53:4f:d1:82:6e:bf:5f:8b:0a:c9:90:aa:48:00:
9e:59:4b:19:7b:87:a8:0a:71:4e:4d:a6:47:5b:96:
91:e8:11:f5:51:b4:8b:f5:73:f7:09:6f:ee:f9:df:
8c:b7:f1:77:ff:85:a7:bf:f9:f6:d0:e3:74:46:d1:
08:58:10:be:40:24:a4:99:31:38:fe:d9:5d:ac:69:
f3:e1:61:12:58:51:af:54:1b:3b:cf:f6:b5:c1:5c:
d8:d0:8c:8e:e1:57:f3:2e:57:e3:5f:da:63:98:db:
e0:51:75:18:dc:25:2a:3f:64:60:ba:8f:e6:53:cc:
9d:5a:57:5e:dd:89:08:80:d6:c8:ad:e3:ff:7a:b1:
c9:13:ee:7d:ca:28:6d:20:44:98:07:1a:b6:d8:c3:
9d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:CD:33:01:DE:83:C5:2A:92:EA:18:80:46:C1:23:44:94:CF:E8:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A750D5263A5711F18B9DB4C6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0-154.89.207.255
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:9b:3e:d6:ba:4f:16:c4:55:62:43:a4:ea:bb:a0:14:af:a0:
64:ea:a7:2c:b6:39:5b:a3:6f:5f:bd:4a:60:b0:b5:09:b0:dc:
b2:46:77:14:dd:35:55:82:0d:b2:7e:75:63:52:34:b4:5c:e5:
00:dc:c9:89:f1:1a:61:ba:7f:07:5a:b8:58:23:20:00:ea:c7:
e3:61:7a:11:e3:94:26:f9:e0:57:82:d8:72:64:a3:66:41:31:
ef:05:c1:2e:06:7b:79:8e:03:76:2f:6c:74:04:ae:12:ec:fd:
8c:4c:23:f3:a1:2a:68:46:64:94:66:2b:ef:c8:6d:da:a4:48:
ae:4e:e1:1e:cc:6e:a3:54:ec:c5:9d:07:83:33:c2:b1:2c:b9:
84:14:c2:8e:54:5b:4c:d4:b7:a5:72:0d:6f:e6:98:8b:0d:0c:
22:fb:12:01:95:15:dc:0d:f3:6e:14:71:8e:af:a4:cf:07:ed:
e9:da:41:f3:0d:31:a6:65:63:f6:e7:6b:27:ce:da:9b:c9:71:
e1:14:1e:2b:56:ee:9b:0f:63:8e:ca:4c:15:f5:2c:51:08:4d:
43:91:29:70:0a:c7:68:f9:e4:76:6f:3a:6e:85:f2:43:aa:22:
ec:f6:4f:c0:11:c7:bc:84:59:b6:e2:a0:fd:80:4a:bf:10:09:
79:5c:60:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:38 2026 by rpki-client