Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0F678C233E711F19815CA10CF1D38B0.roa
File: B0F678C233E711F19815CA10CF1D38B0.roa (raw, json)
Hash identifier: GDDSI8MwSD9YoZQAEm9ynlomZqJTMOivrNVTA3izNBw=
Subject key identifier: 77:42:A9:28:18:08:B2:DE:74:A4:10:94:1D:B7:83:C8:35:A4:67:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C393
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0F678C233E711F19815CA10CF1D38B0.roa
Signing time: Thu 09 Apr 2026 07:42:43 +0000
ROA not before: Thu 09 Apr 2026 07:42:38 +0000
ROA not after: Mon 09 Apr 2029 07:42:38 +0000
asID: 17561
IP address blocks: 154.215.212.0/24 maxlen: 24
154.215.213.0/24 maxlen: 24
154.215.214.0/24 maxlen: 24
154.215.215.0/24 maxlen: 24
154.215.216.0/24 maxlen: 24
154.215.217.0/24 maxlen: 24
154.215.218.0/24 maxlen: 24
154.215.219.0/24 maxlen: 24
154.215.220.0/24 maxlen: 24
154.215.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115603 (0x1c393)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 07:42:38 2026 GMT
Not After : Apr 9 07:42:38 2029 GMT
Subject: CN=69d75873-0eab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:94:df:ef:a3:be:a0:fe:f0:64:3a:fe:71:b4:
ff:8a:3e:25:10:ce:12:71:57:38:a0:fe:01:64:83:
df:5a:d8:44:ad:bd:36:21:e1:11:6a:22:52:3f:84:
2c:39:29:f7:1e:c3:a6:29:7e:5f:6e:e6:41:e2:1d:
66:73:44:83:d1:e7:27:a5:18:b4:42:71:20:76:39:
f7:7e:16:2b:60:58:76:2e:fb:f4:0a:3c:f7:ab:0e:
53:95:3e:2e:dc:fc:ed:64:a3:75:92:40:42:9e:60:
bb:74:a8:24:78:c3:1d:1b:cf:7b:f9:01:97:3b:4a:
47:23:f1:d7:6f:13:fd:3b:16:68:6f:0c:f7:a9:a7:
29:f8:21:32:ca:32:6e:c8:1d:21:40:d4:11:cc:67:
0f:26:ac:fa:de:13:86:81:ef:7a:03:52:4a:af:bc:
6f:68:03:13:38:fa:2b:ad:68:0d:c4:57:d7:6d:61:
18:e8:7d:ba:4d:2b:f3:d9:ca:38:52:33:ca:4c:39:
d5:c4:fb:2f:c5:39:43:bb:4b:c9:75:7e:00:83:8c:
25:fd:86:80:94:c8:d5:ff:31:69:e2:33:aa:48:49:
86:74:fb:6f:5a:a1:c0:90:19:09:8f:ea:59:90:06:
d5:d2:29:a1:d1:47:4f:d4:3f:46:9f:91:7b:73:9f:
c9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:42:A9:28:18:08:B2:DE:74:A4:10:94:1D:B7:83:C8:35:A4:67:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0F678C233E711F19815CA10CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.212.0-154.215.221.255
Signature Algorithm: sha256WithRSAEncryption
ab:8a:cb:4e:85:8e:b8:15:57:b0:c8:aa:15:7c:20:91:e4:56:
3b:d1:0f:96:05:41:4e:93:ef:5e:c9:c2:c3:03:33:b1:6c:db:
e8:54:ad:34:73:2d:82:d7:e1:7e:4b:e7:1b:69:90:74:7d:63:
de:1b:6c:e0:3f:25:8e:48:dd:0f:73:18:94:2e:c9:2a:f1:fc:
14:7a:67:23:e4:cb:64:06:36:da:3a:4a:44:46:a3:f9:7b:41:
8e:ad:ea:56:fa:e5:52:fb:91:85:42:69:44:90:57:6f:3d:76:
6e:73:66:da:33:bf:b7:c0:48:c1:de:0e:b1:df:31:53:c1:8f:
6c:eb:94:ed:b3:2f:71:ff:0f:c7:ec:c2:bd:ff:f1:76:0f:c6:
0b:c2:f0:bb:c8:2f:ae:bb:d6:67:ce:44:44:ff:eb:07:df:fc:
c1:d1:bf:87:66:e6:ed:51:a6:ae:c9:ea:1e:be:46:03:f0:26:
44:0e:2a:85:73:0d:71:37:14:36:4e:6a:7e:f6:71:c5:1c:10:
d2:06:48:57:16:da:d7:86:a8:16:e4:71:ff:0c:8e:2e:46:77:
8c:ff:89:a2:f9:51:8f:fd:dd:02:67:44:31:b1:c3:eb:27:73:
ff:aa:93:8b:4b:3e:ef:d5:63:dc:82:d8:be:ee:3c:2a:f7:87:
15:e6:e3:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:42:30 2026 by rpki-client