Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D78297A833EE11F19E78C8BBCE1D38B0.roa
File: D78297A833EE11F19E78C8BBCE1D38B0.roa (raw, json)
Hash identifier: hVr6XsOaYf3gcvuyFc3X1aCVo022gsSYE5GJvdSvANU=
Subject key identifier: D4:47:7F:C1:B0:68:19:43:64:BE:A7:87:F9:92:27:D0:B3:87:55:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C39D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D78297A833EE11F19E78C8BBCE1D38B0.roa
Signing time: Thu 09 Apr 2026 08:33:54 +0000
ROA not before: Thu 09 Apr 2026 08:33:49 +0000
ROA not after: Sat 16 May 2026 08:33:49 +0000
asID: 61112
IP address blocks: 154.85.18.0/23 maxlen: 24
154.85.18.0/24 maxlen: 24
154.85.19.0/24 maxlen: 24
154.88.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115613 (0x1c39d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 08:33:49 2026 GMT
Not After : May 16 08:33:49 2026 GMT
Subject: CN=69d76472-6ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:77:ea:20:f8:11:e1:b7:9c:8f:cc:f1:26:e7:
10:6f:96:fa:9b:bc:a0:37:86:b9:a8:51:af:ee:26:
b6:f0:ed:e5:dd:5e:6f:6f:78:e6:11:7e:44:b5:f1:
8d:32:2f:03:94:84:5b:79:43:e9:73:7c:bc:9e:9b:
ff:f9:6a:5a:f5:1c:9d:c2:7f:57:61:2b:d4:7c:13:
9f:c7:f6:9d:8e:e7:b6:97:43:e8:75:f5:e0:95:a4:
7e:35:57:2f:94:b1:6f:c4:5b:b2:80:d6:6f:58:d5:
61:6b:67:a2:d5:76:22:ad:39:de:52:f2:c8:98:75:
ed:b7:4e:0f:2a:e9:ad:02:58:dd:e0:b1:d7:6c:97:
05:bb:3e:04:9d:63:6b:e5:c2:a9:3b:b3:e1:bc:e5:
e2:a0:3c:9c:a2:aa:55:42:97:9e:f4:55:f2:cd:54:
d4:90:d8:fb:42:15:b4:19:7c:86:df:27:98:e7:18:
c7:6a:0d:ab:90:f4:70:19:16:28:27:db:d6:be:9a:
41:59:8a:5d:fc:13:03:17:fc:f8:7f:64:2e:27:64:
ea:7c:5c:1a:ae:32:6a:58:45:ca:87:38:a3:ed:c4:
a3:b5:c6:60:bc:70:d2:f3:14:b7:86:30:ca:8a:c6:
9c:32:47:72:48:81:cf:89:96:be:db:00:e5:b3:19:
a5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:47:7F:C1:B0:68:19:43:64:BE:A7:87:F9:92:27:D0:B3:87:55:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D78297A833EE11F19E78C8BBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.18.0/23
154.88.66.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:b3:50:69:7c:9d:95:46:c4:3c:85:59:7c:14:f2:da:70:37:
ab:42:c0:16:b6:2c:11:04:da:24:8e:45:ce:5c:3f:21:a8:98:
c0:bf:f4:b8:a3:4d:63:a8:08:7c:e0:f3:21:21:a8:ea:1c:45:
12:d6:85:4f:27:a6:69:5a:35:0c:a5:d5:c8:ad:3b:54:91:ca:
2f:87:33:d7:21:97:57:91:2e:b6:47:10:ae:69:26:a7:9c:65:
22:52:b7:19:c4:91:a1:04:a1:98:91:45:59:04:2b:76:fc:6a:
27:7b:fa:73:9d:9e:f1:7b:1d:49:39:a6:f4:81:7b:a7:38:de:
ca:dd:8b:d9:7c:d1:b3:c4:4f:9a:72:e1:86:c1:d7:8a:73:b9:
90:20:9a:a2:d6:b2:1e:b7:8a:65:cc:07:5e:f6:22:2a:ed:1c:
eb:e1:69:0f:93:33:6d:68:b6:fd:e4:99:0e:92:b6:c1:66:d6:
ae:f4:1b:03:3c:0f:11:0b:c6:bf:8d:a7:76:2b:44:2b:bf:c7:
14:ab:f6:0a:a1:a9:0e:56:01:dc:9d:65:b5:b5:58:71:cc:2e:
16:f3:97:b7:a4:85:75:4a:c0:8f:8f:7d:db:95:48:9d:f1:d8:
34:70:e8:35:74:58:b9:30:bc:4c:d0:01:5e:f1:a6:eb:e0:61:
b8:91:a4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:26:42 2026 by rpki-client