Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D25F2A8233F011F189880BC9CE1D38B0.roa
File: D25F2A8233F011F189880BC9CE1D38B0.roa (raw, json)
Hash identifier: 54BNyyy7+OQ9qgBeqcFNhRgS7IfYk/VZsGv9aJpNLWI=
Subject key identifier: F1:12:86:4C:9E:11:26:4C:3F:6C:AA:57:65:03:F8:87:04:BA:F9:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C3A5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D25F2A8233F011F189880BC9CE1D38B0.roa
Signing time: Thu 09 Apr 2026 08:48:04 +0000
ROA not before: Thu 09 Apr 2026 08:48:00 +0000
ROA not after: Mon 09 Apr 2029 08:48:00 +0000
asID: 17561
IP address blocks: 154.93.242.0/24 maxlen: 24
154.93.243.0/24 maxlen: 24
154.93.244.0/24 maxlen: 24
154.93.245.0/24 maxlen: 24
154.93.246.0/24 maxlen: 24
154.93.247.0/24 maxlen: 24
154.93.248.0/24 maxlen: 24
154.93.249.0/24 maxlen: 24
154.93.250.0/24 maxlen: 24
154.93.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115621 (0x1c3a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 08:48:00 2026 GMT
Not After : Apr 9 08:48:00 2029 GMT
Subject: CN=69d767c4-4957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f7:e0:25:5b:4e:02:fa:07:ed:da:40:67:72:
5c:16:cf:3d:05:5d:f4:38:7a:34:06:9a:d8:9b:4d:
af:03:38:62:08:5c:41:05:5e:5d:02:96:1a:d2:37:
64:90:e8:41:b7:88:4d:25:0c:ed:4c:6d:ce:6b:1c:
d4:35:21:2f:19:45:ec:45:08:60:2c:c6:ff:e7:d2:
08:86:eb:a8:01:e8:9f:c5:8b:cd:44:c7:0c:f8:98:
57:9f:96:79:ce:7e:e8:43:2f:8d:8d:bc:b1:3a:a6:
50:99:0a:bc:6f:ec:d3:cf:7e:84:40:61:f5:f8:cc:
67:d3:fd:a1:92:75:5c:60:4f:41:73:af:cc:a7:73:
c3:b3:5a:a2:84:51:99:c3:29:c2:2f:af:da:83:f0:
18:c8:f4:33:e1:c0:92:67:c6:62:4d:00:a6:73:4d:
c9:d3:53:d4:ec:e9:d6:09:0c:71:18:c8:08:02:af:
10:4a:bb:fc:33:b0:4e:8c:3c:0a:20:70:d8:fa:82:
c7:12:d5:bb:b0:94:a6:95:26:7d:47:41:53:be:43:
79:52:6a:b8:b6:62:7b:35:ce:7e:cf:4e:3c:34:05:
75:94:50:48:9f:8f:04:30:ec:15:79:25:fb:6e:b1:
2a:f0:97:9e:ff:5d:27:69:b5:b9:af:cb:80:39:0e:
d8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:12:86:4C:9E:11:26:4C:3F:6C:AA:57:65:03:F8:87:04:BA:F9:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D25F2A8233F011F189880BC9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.242.0-154.93.251.255
Signature Algorithm: sha256WithRSAEncryption
88:d4:9a:cf:2a:4a:51:62:cc:cf:90:bb:5d:a3:36:8e:cc:cf:
c0:13:e0:ce:f4:72:ea:d2:d5:76:7f:c7:6e:ce:24:33:dc:5a:
03:7d:50:99:b5:88:d3:8a:a9:d9:e3:bc:33:a6:10:43:da:95:
7f:00:22:7f:64:59:15:9a:2c:77:1f:f6:e1:79:82:33:13:be:
00:94:fe:bb:1d:60:9a:c3:14:41:81:cd:e6:eb:19:a0:89:19:
87:b7:20:7f:fa:87:37:0b:86:8e:92:0f:91:bb:44:77:1f:f6:
df:b0:49:76:d6:71:90:20:6f:be:09:b1:5d:c8:1a:68:e7:67:
ba:07:cf:27:8a:a1:77:ef:47:29:ac:28:58:80:5d:81:3b:5a:
a1:2f:a0:17:4d:d7:46:dd:32:a7:ab:74:58:8f:4e:38:1b:ab:
1c:e6:82:4e:08:79:8d:27:91:08:78:d3:b7:6b:79:8b:25:26:
59:b5:bb:1d:f0:39:11:2d:59:5d:57:df:95:89:c2:01:6d:98:
92:a0:bf:7a:bc:71:72:5b:73:23:60:d2:fd:4d:01:c3:80:bb:
0d:85:be:f2:60:4a:bd:86:55:46:cf:69:05:fd:b6:e9:6c:f5:
76:4f:b6:87:92:05:1f:b2:a1:74:27:7f:64:c8:d9:b4:7a:93:
5b:28:6d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:30:51 2026 by rpki-client