Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE8F00922E8611F1B71683CFDAE4EC9C.roa
File: AE8F00922E8611F1B71683CFDAE4EC9C.roa (raw, json)
Hash identifier: CkEYWnqRfEdYfFeDzJn2kv2pUJMqN/nqrx9SzeMXvpw=
Subject key identifier: 84:04:78:27:A5:1E:D1:59:A5:FD:ED:B5:C9:0A:17:7F:74:1A:71:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C243
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE8F00922E8611F1B71683CFDAE4EC9C.roa
Signing time: Thu 02 Apr 2026 11:25:42 +0000
ROA not before: Thu 02 Apr 2026 11:25:35 +0000
ROA not after: Wed 06 May 2026 11:25:35 +0000
asID: 48031
IP address blocks: 154.222.216.0/24 maxlen: 24
154.222.217.0/24 maxlen: 24
154.222.218.0/24 maxlen: 24
154.222.219.0/24 maxlen: 24
154.222.220.0/24 maxlen: 24
154.222.221.0/24 maxlen: 24
154.222.222.0/24 maxlen: 24
154.222.242.0/24 maxlen: 24
154.222.252.0/24 maxlen: 24
154.223.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115267 (0x1c243)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 11:25:35 2026 GMT
Not After : May 6 11:25:35 2026 GMT
Subject: CN=69ce5236-fa8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:9f:3a:ab:e5:ba:aa:0c:98:27:49:e2:a0:49:
e7:27:35:18:11:bc:41:9a:e9:65:1d:96:30:1c:65:
e8:73:c1:d8:aa:61:04:70:94:6c:f7:03:cb:3b:c8:
08:e2:2c:c5:b9:20:48:2a:01:71:bd:1d:13:f5:d7:
41:5b:6d:01:f1:de:bb:3c:6c:d4:04:c8:7a:4c:25:
4b:4f:62:26:61:0e:2e:89:16:c4:31:87:5e:d8:6d:
63:25:52:45:0f:bc:7f:e0:7b:b2:6a:92:1a:dd:d5:
ba:13:51:58:eb:e7:a0:bc:81:9b:8d:ad:cf:3f:42:
23:0f:8c:a2:17:f2:b5:35:80:c4:1b:ea:84:02:55:
2c:9f:7c:41:df:02:90:b3:77:3b:0b:12:7f:87:8e:
68:41:5f:1c:a9:ae:07:02:95:43:89:16:89:84:f6:
a1:4b:56:0f:34:24:9f:57:98:e8:8d:0c:58:dc:e1:
25:8c:de:f8:95:08:6b:df:76:eb:1f:98:f3:af:19:
c1:18:00:18:fa:9d:90:ae:d1:7c:17:e9:a0:18:7d:
2b:2d:4d:ad:ac:4d:b8:aa:e0:90:85:9b:44:33:59:
a3:4c:fe:4c:ef:05:74:bb:d1:be:78:e3:f4:23:6e:
8f:6b:73:45:85:aa:a0:ab:6c:46:65:98:17:23:64:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:04:78:27:A5:1E:D1:59:A5:FD:ED:B5:C9:0A:17:7F:74:1A:71:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE8F00922E8611F1B71683CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.216.0-154.222.222.255
154.222.242.0/24
154.222.252.0/24
154.223.81.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:73:45:21:73:cf:c2:2f:3b:ac:70:01:84:47:32:4f:d9:55:
97:d9:27:aa:30:81:f3:c6:fa:81:1a:8f:c5:c3:17:11:5d:56:
23:0b:03:7f:df:ce:7e:12:a8:6c:d8:35:93:1d:18:9f:6e:74:
e9:f3:cc:e3:cd:52:c5:ab:d1:7c:3b:a7:bd:d1:e0:cb:3d:d2:
6a:9d:7b:ec:aa:e0:be:52:14:cc:79:8e:b2:a7:e5:ef:32:b6:
5d:38:b8:d1:b7:fe:46:fa:e5:25:1f:0f:97:ab:95:e0:ed:8d:
11:c1:93:c1:70:b0:17:63:4b:1c:43:48:cd:31:eb:2b:ad:65:
be:3d:bf:df:8a:36:b9:f2:64:ff:01:d9:df:d6:da:1d:2b:a9:
70:8c:ff:fa:91:18:eb:e9:92:43:7e:77:06:72:f0:b6:ea:e8:
3d:3f:00:85:e8:9f:bd:e9:fe:43:9e:70:08:ac:d5:03:b4:bf:
d5:57:7c:f7:39:b0:e4:b1:79:d3:2b:9f:89:af:96:69:3f:02:
50:0a:52:2a:8d:a3:c9:e5:c2:ad:1b:36:35:8c:65:96:e1:cc:
a0:4c:64:b7:55:bb:66:5a:d3:04:7f:85:8e:2b:c8:7f:0d:18:
bc:95:93:b3:36:cc:77:0f:34:84:54:af:6c:ba:86:87:94:3a:
25:bb:5b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:40:50 2026 by rpki-client