Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0F54CBA2EAB11F199C5A7A3DAE4EC9C.roa
File: E0F54CBA2EAB11F199C5A7A3DAE4EC9C.roa (raw, json)
Hash identifier: ZLRSIGCCKOYbYAw3jtonkLKc+JFM/h97RHiA7Um1UwA=
Subject key identifier: F0:75:7C:05:86:A6:34:6E:7B:66:C2:DF:01:C6:69:A4:B0:0B:02:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C265
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0F54CBA2EAB11F199C5A7A3DAE4EC9C.roa
Signing time: Thu 02 Apr 2026 15:51:58 +0000
ROA not before: Thu 02 Apr 2026 15:51:53 +0000
ROA not after: Sun 10 May 2026 15:51:53 +0000
asID: 138915
IP address blocks: 154.223.44.0/24 maxlen: 24
154.223.45.0/24 maxlen: 24
154.223.46.0/24 maxlen: 24
154.223.47.0/24 maxlen: 24
154.223.48.0/24 maxlen: 24
154.223.49.0/24 maxlen: 24
154.223.51.0/24 maxlen: 24
154.223.52.0/23 maxlen: 24
154.223.54.0/23 maxlen: 24
154.223.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115301 (0x1c265)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 15:51:53 2026 GMT
Not After : May 10 15:51:53 2026 GMT
Subject: CN=69ce909e-2a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:df:d8:43:d3:3e:11:94:3b:df:25:ec:86:4a:
de:2e:9a:ac:a1:33:e0:58:05:07:40:81:70:2d:96:
a7:63:d7:72:22:2f:3d:f1:81:67:e6:c7:61:a4:5e:
6b:f0:e7:36:73:d1:c8:9f:39:1b:b1:5d:03:1e:ab:
c1:5b:ed:7e:4e:64:4e:ec:0e:67:a9:39:18:83:19:
e0:e2:d4:c4:c3:94:15:95:ae:aa:0d:79:4a:a4:5d:
f4:5f:43:82:0f:ee:00:19:96:54:2c:e1:3e:ed:10:
49:a4:b8:8b:d9:15:38:54:eb:13:46:04:ce:0e:84:
28:c7:dc:07:5a:74:9f:74:8b:71:23:88:a2:ab:01:
37:5b:26:cc:41:10:35:16:08:7c:c9:9c:35:c9:d5:
41:7c:bb:f5:3f:9a:9a:d6:bc:10:17:46:e3:7c:78:
7e:ef:99:57:1e:de:0d:f4:d2:56:23:85:38:19:02:
50:cf:42:a8:98:15:8c:93:1f:74:ea:03:d0:22:11:
a3:3c:f6:05:7a:19:c7:75:33:dd:b3:79:db:f7:31:
77:0e:61:87:82:91:a7:e8:59:5e:d0:95:d3:75:86:
31:43:f1:04:90:13:39:88:a4:04:c3:8f:71:31:4a:
84:3a:ae:ca:89:29:f3:93:56:4c:2e:0d:5c:69:1a:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:75:7C:05:86:A6:34:6E:7B:66:C2:DF:01:C6:69:A4:B0:0B:02:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0F54CBA2EAB11F199C5A7A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.44.0-154.223.49.255
154.223.51.0-154.223.57.255
Signature Algorithm: sha256WithRSAEncryption
45:c1:6c:ac:8e:72:ce:54:a9:07:a1:9a:d3:7a:f3:dd:73:36:
da:11:0f:e7:70:3c:1c:88:23:38:42:ad:4c:9d:d0:4f:59:09:
4f:13:fa:9f:cc:28:db:9e:09:b9:41:de:73:51:4c:7c:5d:a1:
10:d6:14:b0:bf:4c:6a:bb:74:78:7f:31:d6:05:38:87:a7:51:
4a:e3:37:2d:ae:90:a4:d7:e4:71:9a:72:fd:c1:b3:37:a5:4f:
e8:9b:43:73:2b:95:74:f3:a8:23:15:03:a2:6c:8c:4c:58:2f:
53:d3:dc:7e:2f:1d:73:8b:e1:ed:bc:16:5c:37:07:79:e0:0f:
e8:75:32:5e:3b:f6:37:11:12:c5:43:14:46:61:a5:9d:28:13:
80:84:0b:ed:e7:54:08:d7:e9:92:c5:eb:bc:65:33:0b:f1:f0:
ff:d7:cb:5f:d0:10:88:d9:bb:05:e7:76:e1:1d:1c:a2:e1:bb:
08:37:14:64:d7:94:e0:b7:c1:8f:85:30:c0:11:55:8b:a3:0a:
ff:be:f8:bf:51:62:3c:27:86:db:f0:c4:e9:d0:0a:a4:c2:1d:
0d:28:5c:b0:bc:76:cc:47:a1:24:ac:cd:46:57:c0:b2:33:0a:
76:06:ab:a6:fc:47:f2:37:21:bc:5c:5c:52:f0:ac:83:1d:d3:
dc:7d:73:3d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:25:14 2026 by rpki-client