Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2A5A35A371F11F191C7D11ACF1D38B0.roa
File: C2A5A35A371F11F191C7D11ACF1D38B0.roa (raw, json)
Hash identifier: rfsuK9M3f3wP1+7Eo6Nm0OJnEtr4yez/+DjL/YifrYY=
Subject key identifier: 35:40:09:2A:4C:FF:D3:3F:B3:F5:8C:36:2A:24:0D:17:B9:D0:A8:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4F6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2A5A35A371F11F191C7D11ACF1D38B0.roa
Signing time: Mon 13 Apr 2026 10:01:38 +0000
ROA not before: Mon 13 Apr 2026 10:01:33 +0000
ROA not after: Sat 16 May 2026 10:01:33 +0000
asID: 22773
IP address blocks: 154.85.117.0/24 maxlen: 24
154.85.118.0/24 maxlen: 24
154.85.119.0/24 maxlen: 24
154.90.2.0/24 maxlen: 24
154.90.3.0/24 maxlen: 24
154.90.4.0/24 maxlen: 24
154.90.5.0/24 maxlen: 24
154.90.6.0/24 maxlen: 24
154.90.7.0/24 maxlen: 24
154.90.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115958 (0x1c4f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 10:01:33 2026 GMT
Not After : May 16 10:01:33 2026 GMT
Subject: CN=69dcbf02-9756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:40:22:2b:27:df:59:bb:9b:78:1b:e9:30:2b:
41:4e:91:3b:c7:58:3d:51:7a:d9:26:40:f9:cc:56:
8b:aa:c0:74:1b:e7:d5:a1:c4:22:32:3c:72:46:2c:
51:b4:55:d8:83:80:52:f1:c6:ff:67:ef:05:93:9f:
11:ac:5b:1c:b6:9c:2b:4d:e4:df:0d:80:86:08:59:
20:50:31:b2:48:67:3d:48:bd:dd:f8:63:1b:e7:24:
d9:69:0e:d4:71:85:7e:eb:d2:6a:74:fb:12:96:63:
7e:09:a5:27:74:45:2c:d8:e4:90:ec:50:67:66:87:
01:da:d1:66:4d:92:94:17:f3:da:98:e8:c1:f3:31:
e1:9f:71:06:88:92:2f:d5:55:58:84:63:ec:7b:87:
77:7e:9e:d8:de:7a:0f:b0:df:1a:60:41:f2:7a:4f:
06:cb:ee:27:a9:40:19:1a:6c:ee:c0:5d:ef:9a:0d:
ce:22:2e:90:7c:74:e4:dc:a1:1f:0f:84:16:64:0c:
d4:ce:f8:c1:04:8a:be:8c:bc:76:fa:ba:1d:4d:4f:
01:51:4b:66:60:e7:17:69:14:2b:39:22:82:6a:55:
73:e2:bd:bf:f1:2a:2d:52:df:8d:d4:54:97:d9:78:
fd:2d:a3:7a:50:9c:10:2d:76:98:09:22:4b:25:e8:
bd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:40:09:2A:4C:FF:D3:3F:B3:F5:8C:36:2A:24:0D:17:B9:D0:A8:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2A5A35A371F11F191C7D11ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.117.0-154.85.119.255
154.90.2.0-154.90.8.255
Signature Algorithm: sha256WithRSAEncryption
8b:46:15:ef:40:3a:2a:a0:30:e2:21:7b:ee:ad:be:e7:e8:69:
a4:ee:55:36:89:85:4d:1d:c9:29:32:c8:9f:29:61:26:d1:59:
44:74:cd:9f:72:8f:74:e0:7d:b2:26:d3:96:6e:85:29:8c:74:
23:9a:e4:c8:f1:c9:2a:de:e4:14:79:32:14:5d:43:28:c9:1a:
47:cf:ec:14:ed:eb:52:18:e5:3a:66:c3:22:87:df:e6:09:a2:
d1:1b:f6:fa:07:c2:44:d3:ae:82:e1:a3:49:17:b1:0b:58:f2:
1d:ac:37:7f:6e:0d:a4:4a:09:cf:fd:d4:85:3b:9b:53:bf:ef:
19:7b:91:36:cc:3a:25:5f:c1:fd:66:bf:bc:d0:44:5c:e0:df:
7b:c6:ad:5c:63:7a:b8:52:8d:41:03:1f:02:82:f0:8b:81:f7:
5c:b3:10:b1:06:af:d4:63:89:0d:37:7b:a7:46:a2:50:a7:ae:
42:88:e9:18:4a:f5:ef:e3:36:79:ca:2f:8d:c7:b3:f2:6d:a9:
cf:f0:bd:42:46:a9:20:4f:a6:27:40:9f:80:cf:62:58:03:ce:
f2:ff:41:6d:7e:53:b7:31:38:5c:9e:b7:77:80:d8:c3:98:cc:
46:8a:8d:b4:a2:38:79:d3:44:90:73:dd:ce:43:cc:40:be:f8:
96:1a:20:fb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 17 16:27:41 2026 by rpki-client