Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD2EEED833F811F1AE8052F6CE1D38B0.roa
File: BD2EEED833F811F1AE8052F6CE1D38B0.roa (raw, json)
Hash identifier: UVs7Smz3saa9KgpntGRH/M/6sMVB4ZKVtzoI9gehGL0=
Subject key identifier: F5:92:6E:4A:E9:55:A4:41:47:7B:27:89:2B:AD:42:4D:A0:0E:D7:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C3B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD2EEED833F811F1AE8052F6CE1D38B0.roa
Signing time: Thu 09 Apr 2026 09:44:45 +0000
ROA not before: Thu 09 Apr 2026 09:44:39 +0000
ROA not after: Sun 19 Apr 2026 09:44:39 +0000
asID: 401783
IP address blocks: 154.82.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115641 (0x1c3b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 09:44:39 2026 GMT
Not After : Apr 19 09:44:39 2026 GMT
Subject: CN=69d7750d-9f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2a:e8:63:5a:db:ec:b0:64:72:1b:aa:da:f4:
88:49:2a:d0:e2:83:8c:df:75:e1:7f:24:e6:74:ac:
3a:7a:bf:f3:69:9f:73:24:34:c8:e6:89:b5:db:fe:
8f:2c:6e:0b:a6:5f:73:2c:50:07:0c:d8:f0:8e:92:
86:9f:7c:8c:6b:44:37:fc:43:9c:fb:93:3f:15:f2:
60:cc:f6:b2:e0:e9:79:71:ec:bf:96:ef:21:52:d4:
f2:ef:94:97:e1:1f:fe:23:26:51:10:2e:62:83:b8:
10:b7:b6:b9:c6:1c:83:c7:2b:65:f1:81:06:79:ce:
fc:d5:a2:1f:c1:a5:a9:c9:0e:f9:d9:ef:2a:5e:02:
08:53:57:45:ac:0c:c7:bc:be:a9:0b:25:0d:16:1d:
28:69:0d:86:2f:6f:22:c5:96:d9:25:e8:08:a2:65:
17:51:7d:32:b6:a3:a2:b1:48:c5:fc:c4:42:9d:88:
a9:7f:44:2d:3d:96:73:a5:ac:35:fb:ab:a1:7b:ae:
7f:08:e9:db:3e:4f:3a:3b:d9:f7:51:bd:40:21:99:
41:78:27:d0:62:9d:c5:f2:5d:ab:dc:fe:c4:4a:9f:
37:fb:5e:28:ed:69:85:e5:95:84:4f:a8:45:c4:b5:
0a:0c:e8:88:05:d6:55:28:6f:37:15:98:a4:a2:2c:
45:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:92:6E:4A:E9:55:A4:41:47:7B:27:89:2B:AD:42:4D:A0:0E:D7:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD2EEED833F811F1AE8052F6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.181.0/24
Signature Algorithm: sha256WithRSAEncryption
59:8b:4e:84:54:aa:18:0c:85:98:2d:6c:d1:81:0e:79:ed:60:
d9:7f:55:f8:22:ab:7c:94:52:f9:1d:7a:0b:da:fe:39:dd:e4:
0d:03:d5:a2:5b:e7:f3:8d:03:03:57:ba:25:d7:af:f3:83:f9:
7a:89:18:dd:67:1f:f8:91:7d:1b:5e:c9:00:dd:ce:e0:de:f8:
53:fd:21:dd:1b:59:5e:bb:59:8e:e9:2b:41:f5:37:89:97:0e:
e7:5b:4b:d5:80:f4:a0:9a:3c:69:99:f5:95:db:e1:87:0f:09:
91:2d:6e:35:cf:0e:88:fb:23:0c:a0:0e:46:97:44:60:40:7a:
57:d8:62:20:c2:74:e4:a5:ba:d3:6b:e7:07:ac:78:2e:c9:2f:
4e:0d:77:ab:8b:92:ca:fc:e4:c6:3e:1f:ff:d5:90:0a:96:fe:
63:e4:00:7f:a5:da:b2:bd:46:f2:5a:72:6c:ca:49:a8:0f:dd:
82:36:f9:c4:a0:17:6d:43:74:f3:c8:0d:97:85:df:09:34:7a:
13:7f:93:36:72:c0:64:0e:1c:20:4c:ee:08:c1:c3:b8:c0:c3:
d2:6a:60:7d:ad:ea:60:31:fc:c5:4a:24:93:ec:eb:2e:ae:aa:
78:7e:76:fe:d2:b8:bb:1e:13:ef:ac:b7:c6:d3:f5:b8:fc:f4:
c8:a7:c1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:18:41 2026 by rpki-client