Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8DEC8E033E611F190B6C70ACF1D38B0.roa
File: D8DEC8E033E611F190B6C70ACF1D38B0.roa (raw, json)
Hash identifier: M33kFwGrgSpzyZTgSOUgUfri0P6dqRJ/vVAGDXKFByU=
Subject key identifier: 96:F4:F7:08:F4:20:FB:1E:9E:CD:94:29:EC:A1:31:51:A7:A1:A7:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C391
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8DEC8E033E611F190B6C70ACF1D38B0.roa
Signing time: Thu 09 Apr 2026 07:36:40 +0000
ROA not before: Thu 09 Apr 2026 07:36:34 +0000
ROA not after: Mon 09 Apr 2029 07:36:34 +0000
asID: 17561
IP address blocks: 154.215.202.0/24 maxlen: 24
154.215.203.0/24 maxlen: 24
154.215.204.0/24 maxlen: 24
154.215.205.0/24 maxlen: 24
154.215.206.0/24 maxlen: 24
154.215.207.0/24 maxlen: 24
154.215.208.0/24 maxlen: 24
154.215.209.0/24 maxlen: 24
154.215.210.0/24 maxlen: 24
154.215.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115601 (0x1c391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 07:36:34 2026 GMT
Not After : Apr 9 07:36:34 2029 GMT
Subject: CN=69d75708-013b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:55:b4:48:3f:e2:71:fc:d7:69:10:2c:7d:
cd:e4:45:f5:89:bb:9b:a5:69:7f:ba:c1:ec:4b:c5:
24:4a:0b:7a:82:0e:f1:54:ad:41:f8:b4:85:a1:31:
2a:74:53:d8:40:a6:74:31:e3:b7:8e:41:2d:4a:23:
f9:85:ba:96:43:2d:c4:d0:ec:2d:75:5c:57:c6:55:
32:f9:e9:e0:3e:83:e6:bb:b6:ce:7b:ab:dc:86:18:
8c:66:7a:f6:fb:0a:c5:49:b3:02:29:79:c4:06:cc:
ed:7d:f5:20:99:f6:08:57:c0:fa:e0:b1:c7:78:4a:
a9:95:f0:83:bb:ba:87:6c:ae:27:05:3a:79:04:41:
85:1d:fc:24:80:d7:73:81:62:ff:1e:4d:b1:60:0c:
8b:a2:a4:b8:1f:3f:6b:46:ca:00:6e:e3:75:4d:6e:
89:f3:1c:fc:5a:8b:09:45:aa:cd:bc:5a:ce:6f:26:
f8:35:b8:e7:c8:12:3c:c1:c2:02:05:1f:25:61:ba:
aa:1e:f6:27:b4:99:d7:76:87:72:7d:fb:8b:30:f2:
e2:42:d6:c6:89:ae:9e:74:3d:b3:87:1f:db:18:0f:
18:8a:1d:fe:fb:64:7f:af:62:97:9e:c9:66:35:83:
b5:78:7a:1b:49:2e:27:fa:e8:90:9f:7e:c4:d7:50:
4f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F4:F7:08:F4:20:FB:1E:9E:CD:94:29:EC:A1:31:51:A7:A1:A7:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8DEC8E033E611F190B6C70ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.202.0-154.215.211.255
Signature Algorithm: sha256WithRSAEncryption
78:0d:05:05:f2:41:4a:fa:2b:85:ca:14:7e:cf:2a:cc:b8:1c:
56:a3:8a:53:b8:c4:9d:b3:4b:d0:1d:f2:89:12:60:18:97:49:
72:7d:82:ad:01:d1:d5:50:a4:45:65:c7:25:b7:15:9f:97:ee:
4c:19:03:04:de:8f:a2:ac:34:09:a0:64:ab:bb:1c:c8:97:53:
e8:2a:fc:a0:8f:3a:46:45:11:ce:33:9c:1b:f6:43:8c:82:76:
7f:a6:52:1a:4f:69:bb:d0:5d:ca:d1:c9:12:77:45:58:f1:97:
52:8a:6e:60:06:55:e7:35:16:98:bd:1b:32:15:f6:6f:35:2d:
41:37:97:2c:9c:26:31:e8:f4:fa:44:f5:20:34:20:e0:b1:07:
b1:65:9f:c2:75:87:71:7c:13:3e:06:4e:50:7c:f6:ce:e5:0b:
be:b2:b0:b7:36:0d:7c:2d:f4:0a:47:e5:5a:22:bc:71:8d:bb:
39:11:e8:5f:04:1c:4f:aa:c8:de:a1:cb:26:64:d7:11:36:43:
ed:a7:be:3c:b5:5b:0c:11:e0:05:e3:cc:cb:6d:41:01:d9:2d:
1d:4f:6d:92:da:18:c2:8b:bd:b7:d2:93:f8:15:7d:da:b8:30:
b6:78:86:31:56:bf:d1:ed:e5:fd:c7:03:3b:a4:4d:71:f1:db:
cf:99:5d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:20:40 2026 by rpki-client