Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0F933782AA011F1832B3CD5DAE4EC9C.roa
File: B0F933782AA011F1832B3CD5DAE4EC9C.roa (raw, json)
Hash identifier: p4COY7d5iBtgq/kgHRTuqJ1FkAZM2O6vJ19C8qBV5Bw=
Subject key identifier: EB:F9:72:B5:49:1D:95:32:D1:9E:D4:FD:C3:AA:53:2E:74:61:A2:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C158
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0F933782AA011F1832B3CD5DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 12:21:48 +0000
ROA not before: Sat 28 Mar 2026 12:21:43 +0000
ROA not after: Sat 16 May 2026 12:21:43 +0000
asID: 142032
IP address blocks: 154.222.16.0/20 maxlen: 24
154.222.16.0/21 maxlen: 24
154.222.16.0/22 maxlen: 24
154.222.20.0/22 maxlen: 24
154.222.24.0/21 maxlen: 24
154.222.24.0/22 maxlen: 24
154.222.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115032 (0x1c158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 12:21:43 2026 GMT
Not After : May 16 12:21:43 2026 GMT
Subject: CN=69c7c7dc-3f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c6:33:04:46:f4:89:62:09:33:21:86:09:4f:
34:e7:09:f8:83:0b:85:b4:00:be:9e:f6:44:99:27:
bd:ad:6e:90:38:94:51:27:0b:73:92:19:16:3d:6f:
e4:d8:88:ef:b0:57:34:7b:9c:d4:bf:d8:3b:99:2d:
5d:5f:f3:2c:4d:83:d9:2a:18:85:a5:d3:c4:fd:8b:
d5:08:ca:2b:ad:f8:4d:84:04:4e:c8:28:8d:18:d6:
5b:86:39:07:94:9e:cb:64:da:e0:d7:6e:31:9b:ff:
7b:b8:fe:28:5f:ea:52:d1:68:18:24:ae:34:fd:52:
e6:9b:0c:45:3f:58:76:60:02:64:ac:2d:e1:db:95:
c6:1d:79:69:40:e5:26:be:ac:10:cf:88:a6:14:a7:
4b:ae:71:6f:89:d7:91:0c:e6:b4:94:e1:93:12:91:
dc:61:e1:f7:6f:ca:c9:1e:aa:0f:ee:84:73:12:db:
8f:78:3c:b8:90:5b:fa:3a:8e:20:00:6c:56:ab:b6:
9b:94:57:0e:e6:b8:bb:82:5a:63:36:a3:13:19:4b:
f4:bd:17:e9:f0:34:7f:8f:fe:14:17:a3:6f:79:f4:
13:08:98:51:fd:8e:68:60:0a:c5:04:ad:0d:9f:48:
b0:11:9e:f8:ad:76:dd:11:81:71:22:1a:00:e4:ac:
d5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F9:72:B5:49:1D:95:32:D1:9E:D4:FD:C3:AA:53:2E:74:61:A2:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0F933782AA011F1832B3CD5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.16.0/20
Signature Algorithm: sha256WithRSAEncryption
c4:7e:03:65:a2:bf:f5:a6:23:1a:6b:ca:02:6f:40:c4:4c:72:
1a:a6:fc:c7:99:6c:9d:b1:ad:47:57:2a:c3:b7:16:47:6d:35:
07:c0:31:43:3a:65:2d:15:25:ec:d2:3f:71:b2:d5:e8:11:bd:
60:44:5c:92:3f:5b:30:fd:7e:b0:57:3d:28:4e:48:56:96:44:
92:3f:cf:d3:c0:55:97:f5:09:b2:65:1b:ff:86:37:fc:d4:a5:
40:b8:aa:2f:79:2e:85:f7:99:bd:71:30:3f:b7:70:9f:ab:6f:
55:93:04:4d:b2:59:70:52:0e:03:94:d1:32:b2:50:3c:c3:e2:
1f:aa:67:02:3d:e7:4d:27:6e:5a:79:8e:04:43:a9:ec:91:ba:
4f:8b:3f:80:c4:93:62:d3:3a:5b:d9:d5:18:1d:44:94:2e:7d:
48:d8:67:0e:50:31:09:52:e0:1d:64:93:4a:77:cf:fd:15:01:
a5:d9:4c:96:85:a2:6b:4e:fc:3c:e1:d7:52:a3:69:23:85:6a:
f2:3a:4b:2c:d3:46:e8:b9:d2:ef:f6:1a:bd:f1:d8:b9:2f:83:
d7:54:e8:3c:f0:c7:02:fb:67:dc:40:de:bf:88:e8:b0:8c:41:
c1:ec:57:5e:ec:45:19:fe:98:11:fb:8d:ee:98:b5:94:64:37:
c7:d0:7a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:24:35 2026 by rpki-client