Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA390F682E7F11F18E3575AADAE4EC9C.roa
File: EA390F682E7F11F18E3575AADAE4EC9C.roa (raw, json)
Hash identifier: T8axnq8s5+8c8rVziww6n96N5ASU1XWjs9ANs/BAeMc=
Subject key identifier: AB:CD:1E:49:36:E7:AF:8D:08:53:1B:A6:A0:CC:93:0C:EA:FF:34:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C233
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA390F682E7F11F18E3575AADAE4EC9C.roa
Signing time: Thu 02 Apr 2026 10:37:15 +0000
ROA not before: Thu 02 Apr 2026 10:37:10 +0000
ROA not after: Wed 06 May 2026 10:37:10 +0000
asID: 202656
IP address blocks: 154.219.225.0/24 maxlen: 24
154.219.226.0/24 maxlen: 24
154.219.227.0/24 maxlen: 24
154.219.228.0/24 maxlen: 24
154.219.229.0/24 maxlen: 24
154.219.231.0/24 maxlen: 24
154.219.233.0/24 maxlen: 24
154.219.234.0/24 maxlen: 24
154.219.235.0/24 maxlen: 24
154.219.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115251 (0x1c233)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 10:37:10 2026 GMT
Not After : May 6 10:37:10 2026 GMT
Subject: CN=69ce46db-5d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:58:99:43:0b:07:db:75:e3:73:b6:02:d1:1b:
9a:0b:7a:48:38:f9:df:eb:55:f1:82:ee:46:1d:fa:
d9:df:93:0e:58:a0:eb:7b:1d:0c:8f:43:aa:f2:13:
3b:e8:fd:58:33:fc:78:c3:7f:b1:e3:01:64:57:15:
b7:a6:fe:60:26:50:53:98:bf:ff:04:b7:52:b6:08:
ad:bb:2d:fa:57:e7:43:4b:6c:9c:eb:dc:36:c0:b2:
a1:ee:96:20:ac:81:7e:1a:41:b7:fb:64:6f:22:18:
66:b0:d1:84:46:3b:c2:38:2d:c0:02:a9:27:4b:d5:
2f:32:90:4f:2a:74:0c:2e:f0:8c:67:90:e5:ad:37:
61:4d:59:f8:fc:2b:ac:72:a5:88:b8:4f:b2:eb:d1:
99:f4:25:a4:08:fb:d7:62:42:e0:7b:9f:1d:b0:49:
14:a1:63:d4:0a:8d:92:36:c2:68:a3:6f:22:95:6c:
6f:3e:20:c2:dd:0e:97:3f:9b:44:df:80:25:81:24:
da:e8:c3:93:4f:69:b0:f2:6a:57:ab:2d:c7:fe:cb:
0f:dd:24:25:92:3a:82:32:a9:a7:be:d3:b7:e4:07:
be:68:05:59:1a:8e:f2:e4:a2:cf:37:67:ad:74:5e:
73:06:a7:09:1a:ad:eb:cd:34:d0:08:cd:02:49:53:
6f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CD:1E:49:36:E7:AF:8D:08:53:1B:A6:A0:CC:93:0C:EA:FF:34:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA390F682E7F11F18E3575AADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.225.0-154.219.229.255
154.219.231.0/24
154.219.233.0-154.219.236.255
Signature Algorithm: sha256WithRSAEncryption
a7:df:d5:0f:cc:e7:52:d2:26:ce:10:8c:90:d4:41:52:90:27:
3d:3f:eb:ad:50:b9:6a:cc:90:a2:b5:27:1d:88:ca:5b:88:81:
5e:cb:33:22:38:0c:f2:8c:65:a1:fe:b2:1a:c9:23:a9:c9:f3:
80:da:d8:14:88:ba:99:b3:67:3e:77:09:87:fe:ef:92:ad:7c:
d0:aa:ee:14:67:f6:cd:9f:f0:31:52:b4:51:72:cf:01:19:95:
73:f9:ee:0f:66:a0:25:e4:64:72:60:d2:3d:95:52:51:48:fc:
5f:61:46:d5:35:4c:36:62:12:c3:e1:e6:46:29:9d:27:61:a8:
dd:c1:86:6e:2b:b7:5a:51:66:99:d6:70:63:d3:bd:bf:cf:ce:
3d:f6:fe:aa:0a:1c:ab:a0:7c:56:b9:30:c4:24:be:06:bc:22:
a2:7a:85:e5:8a:13:fd:fd:a7:33:11:73:07:8b:ce:d9:35:b9:
82:66:91:0c:f3:3d:48:93:68:1a:21:c8:87:5d:c0:df:32:64:
af:de:90:fa:8b:26:40:da:1d:6e:40:1a:07:26:f9:bd:e9:69:
10:f5:1b:2e:43:90:80:9c:bf:ec:68:58:e0:2c:65:9e:77:86:
a5:0a:21:bb:47:93:42:e6:9d:64:1c:a5:da:4b:fb:b9:3c:2d:
98:95:6f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:51:27 2026 by rpki-client