Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DACBD4DE2A8811F180B96FCEDAE4EC9C.roa
File: DACBD4DE2A8811F180B96FCEDAE4EC9C.roa (raw, json)
Hash identifier: DXzRqJRoF1a+WX2l3IKSpwyBZFj7b+YhQnFGqUi13CU=
Subject key identifier: 0E:86:16:A2:C9:AD:E3:44:61:95:5F:5F:D4:51:28:5F:46:49:5F:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C14E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DACBD4DE2A8811F180B96FCEDAE4EC9C.roa
Signing time: Sat 28 Mar 2026 09:31:10 +0000
ROA not before: Sat 28 Mar 2026 09:31:05 +0000
ROA not after: Sat 02 May 2026 09:31:05 +0000
asID: 49505
IP address blocks: 154.205.244.0/24 maxlen: 24
154.205.245.0/24 maxlen: 24
154.205.246.0/24 maxlen: 24
154.205.247.0/24 maxlen: 24
154.223.198.0/24 maxlen: 24
154.223.199.0/24 maxlen: 24
154.223.200.0/24 maxlen: 24
154.223.201.0/24 maxlen: 24
154.223.202.0/24 maxlen: 24
154.223.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115022 (0x1c14e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 09:31:05 2026 GMT
Not After : May 2 09:31:05 2026 GMT
Subject: CN=69c79fde-0985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3a:3e:e9:f0:79:f9:72:b7:8e:f7:01:49:9d:
e4:38:81:04:e1:7d:8d:6b:f1:44:65:86:24:2c:75:
50:26:42:d8:da:ef:2b:03:ad:71:32:0b:0d:5e:aa:
04:9d:e9:86:c9:22:81:fb:56:c4:70:d3:b5:43:9f:
75:a7:7c:4b:f2:00:01:ac:c2:95:92:0f:07:4c:ab:
42:88:1e:ab:bd:84:99:d6:b9:3b:2f:c5:03:94:4e:
3a:ff:96:c2:0b:5d:e0:0b:0a:8f:eb:6a:67:e6:61:
f2:66:7a:d1:bf:63:20:da:22:c6:3a:fd:86:83:96:
7e:f9:28:be:9b:b1:19:42:82:64:97:86:e7:90:0b:
3e:a9:f6:e1:11:ee:33:7e:8a:80:8e:7d:7f:93:dc:
da:2d:75:ac:01:e8:dc:c2:bc:2e:c6:94:3e:a8:75:
6b:99:15:b9:b9:40:9f:6e:e1:da:0e:a3:c6:ed:d8:
1c:17:20:f2:5d:cc:fc:ec:53:d8:93:87:c6:3b:ac:
3b:8a:85:b5:c8:2f:6c:6a:43:a9:d5:1f:3a:70:e4:
60:7e:3b:97:cb:33:9b:26:d8:e9:66:f5:48:7a:d2:
c4:e3:0f:3a:9a:f4:bf:d4:ab:8b:2d:a1:71:cc:8a:
68:45:1d:b4:ab:2b:33:cf:9a:74:8a:0e:f3:dd:32:
ff:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:86:16:A2:C9:AD:E3:44:61:95:5F:5F:D4:51:28:5F:46:49:5F:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DACBD4DE2A8811F180B96FCEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/22
154.223.198.0-154.223.203.255
Signature Algorithm: sha256WithRSAEncryption
5f:f3:7d:2a:5a:6a:45:28:9f:a2:13:eb:55:dd:1e:b1:29:15:
01:7d:28:20:d7:d5:9e:52:78:eb:0a:86:63:d3:18:4f:59:e4:
fb:d5:8a:87:8b:97:ce:3b:76:fc:72:b5:21:c6:19:72:82:a0:
29:dc:e3:88:9d:41:e0:84:70:74:45:54:c7:6d:65:c0:24:ec:
bb:7b:82:9b:2e:69:64:e4:cd:c6:c4:5e:d5:fb:c2:74:ef:92:
83:56:2b:65:b1:17:b4:08:5a:d6:85:bb:65:5c:5b:54:83:72:
ca:64:de:bf:6e:dc:a9:eb:96:92:a5:59:49:48:07:ab:4d:5a:
e6:a0:4b:9b:ee:13:05:75:9a:d8:1d:00:73:f2:ed:c0:0c:7d:
a6:f8:48:cf:9f:bd:73:79:27:77:84:34:f3:ec:54:9f:d3:6e:
ae:1e:9e:0f:d6:7a:24:0c:fb:57:cf:be:19:21:01:46:f2:8e:
84:d3:9e:e3:a2:e3:4f:3f:92:e1:cd:4e:00:73:eb:7e:14:37:
b4:40:19:c3:7a:ae:4e:d6:49:ba:ac:b1:91:40:e2:c1:61:fc:
45:05:13:65:98:f7:f0:a8:c7:86:8f:97:ac:90:c1:af:c9:a2:
c8:8e:0e:12:0d:5a:5c:a9:f9:a4:b7:9c:34:9e:17:69:57:f6:
06:8f:36:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:38 2026 by rpki-client