Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC9355FE2E7511F1A5291CF0DAE4EC9C.roa
File: CC9355FE2E7511F1A5291CF0DAE4EC9C.roa (raw, json)
Hash identifier: vNnzjMUrtJA34+BtBx/prof5hYqquncBuYBrCx8KaDI=
Subject key identifier: E7:78:4F:67:6A:90:C2:36:C4:D0:F0:41:6B:B8:60:97:80:DD:37:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C21F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC9355FE2E7511F1A5291CF0DAE4EC9C.roa
Signing time: Thu 02 Apr 2026 09:24:51 +0000
ROA not before: Thu 02 Apr 2026 09:24:45 +0000
ROA not after: Wed 06 May 2026 09:24:45 +0000
asID: 49505
IP address blocks: 154.209.208.0/24 maxlen: 24
154.209.209.0/24 maxlen: 24
154.209.210.0/24 maxlen: 24
154.209.211.0/24 maxlen: 24
154.209.212.0/24 maxlen: 24
154.209.213.0/24 maxlen: 24
154.209.214.0/24 maxlen: 24
154.209.215.0/24 maxlen: 24
154.209.216.0/24 maxlen: 24
154.209.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115231 (0x1c21f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 09:24:45 2026 GMT
Not After : May 6 09:24:45 2026 GMT
Subject: CN=69ce35e3-72ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d9:e4:f0:d8:97:a0:59:a7:a9:02:ab:7c:4e:
aa:cf:ff:8f:2a:b4:19:d8:22:7b:c3:1e:75:b9:24:
7f:7b:36:1e:81:18:48:35:20:93:27:47:c2:d3:d4:
e5:19:51:c5:11:15:47:db:4e:64:da:60:1b:4d:e5:
9c:b7:2e:4f:cc:87:d5:86:88:d7:38:4b:12:86:07:
d3:2d:88:f7:e7:67:57:a8:00:61:bc:f3:81:69:97:
d4:7c:58:47:ef:c9:bd:e2:69:95:d1:69:2f:0a:d1:
8e:6b:dc:c8:97:dd:ab:5a:a8:de:a7:d9:02:8b:f6:
14:37:28:40:6d:1c:12:c4:ac:a3:bd:f7:ef:b9:de:
28:46:2e:64:ec:79:db:24:6b:7e:c3:38:03:23:c7:
68:ae:3f:a2:2e:1a:49:dc:05:44:f3:14:f1:6e:8d:
5b:c0:02:07:f6:90:00:fe:ae:62:57:42:94:c7:6b:
9b:82:75:06:7f:f6:bd:a3:e0:8f:ff:df:c8:9f:42:
7a:43:80:62:2d:25:6f:d3:c2:42:52:cc:de:ee:10:
c7:57:e1:b5:d4:0b:e1:31:eb:4a:d9:79:4e:08:22:
d7:cd:19:e7:14:a0:b4:a9:0a:8c:ea:05:13:da:1b:
b7:93:19:e3:0e:6d:a9:41:7e:a5:1c:1c:37:28:6b:
a1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:78:4F:67:6A:90:C2:36:C4:D0:F0:41:6B:B8:60:97:80:DD:37:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC9355FE2E7511F1A5291CF0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.208.0-154.209.217.255
Signature Algorithm: sha256WithRSAEncryption
b0:bf:c7:d1:58:98:fd:e2:3a:da:b2:30:58:5e:5c:95:e1:d0:
bd:a7:bd:40:4a:ff:3c:2c:65:a5:7b:53:3e:5b:14:2c:47:6f:
be:2c:49:40:79:65:e2:80:e6:a3:a9:91:fe:aa:53:49:38:a4:
29:09:fd:ac:d5:dc:3a:4d:df:61:aa:f3:e5:fe:0d:a1:ea:a3:
f9:23:28:e0:fc:87:65:e6:83:7b:d1:b5:59:a1:4a:bd:d6:6a:
be:3b:2a:78:b6:72:a2:a4:fb:64:7a:63:c4:41:da:1d:d7:68:
fa:cb:2d:aa:94:60:6d:c1:d8:6a:d3:a4:e6:a6:96:04:14:04:
65:7f:a1:b3:44:e5:6e:4a:1a:27:fe:d2:fd:f7:bd:aa:12:4e:
b8:e4:8f:3c:b5:76:ba:ba:c1:3a:1f:66:18:9e:f6:be:d6:53:
29:b2:84:89:cd:1e:ce:d0:7b:fe:30:0a:3d:c4:d0:98:61:0f:
ae:d5:b4:f5:2d:5e:dc:3e:43:4d:53:64:7f:55:dd:d0:ff:08:
d7:66:5d:1a:56:14:9e:d4:63:a4:a8:c0:dc:97:f6:1e:16:47:
8e:2c:c3:34:b7:64:15:9e:f1:86:6a:41:6e:72:21:01:9b:85:
ea:eb:f2:af:4a:9d:b7:f3:49:dc:14:45:c2:54:60:98:44:14:
a4:bf:53:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:21 2026 by rpki-client