Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED05FCA4364C11F1A1120314CF1D38B0.roa
File: ED05FCA4364C11F1A1120314CF1D38B0.roa (raw, json)
Hash identifier: PIfAliuQ9/qpjOWhwABfp+99H3/mR/slg06mD09juvU=
Subject key identifier: C1:8B:A2:BB:81:30:69:77:7B:B3:B1:14:C1:66:2D:58:35:4B:48:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED05FCA4364C11F1A1120314CF1D38B0.roa
Signing time: Sun 12 Apr 2026 08:52:25 +0000
ROA not before: Sun 12 Apr 2026 08:52:20 +0000
ROA not after: Thu 12 Apr 2029 08:52:20 +0000
asID: 17561
IP address blocks: 154.208.233.0/24 maxlen: 24
154.208.234.0/24 maxlen: 24
154.208.235.0/24 maxlen: 24
154.208.236.0/24 maxlen: 24
154.208.237.0/24 maxlen: 24
154.208.238.0/24 maxlen: 24
154.208.239.0/24 maxlen: 24
154.208.240.0/24 maxlen: 24
154.208.241.0/24 maxlen: 24
154.208.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115892 (0x1c4b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 08:52:20 2026 GMT
Not After : Apr 12 08:52:20 2029 GMT
Subject: CN=69db5d49-69e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cc:ec:19:4e:6c:ca:84:28:f7:92:87:c2:0d:
bd:0e:12:05:66:fc:69:0e:00:ce:c8:c4:f7:50:43:
14:0e:18:ea:9a:c9:23:ba:4f:e4:39:be:cd:c6:b4:
fa:d1:27:06:da:c8:71:0c:c6:78:00:0d:6e:b4:ff:
7d:d0:91:b7:9d:3e:3e:9f:e2:e2:0c:70:00:4f:e7:
cc:d5:52:6c:f4:02:ff:d0:fd:33:50:f3:0f:09:79:
2a:5f:42:60:61:bf:95:1e:91:7b:c7:10:98:54:15:
92:81:d4:90:9b:db:c0:19:6a:ee:db:ab:55:57:fe:
44:37:f5:62:b6:41:bd:81:f3:43:19:6a:4e:57:f6:
70:e5:e4:87:b4:26:46:e6:55:54:2e:8c:4d:b8:1a:
01:d0:e7:f5:26:2a:23:99:d1:fa:2f:56:09:3b:3b:
0e:e9:db:99:84:57:16:19:03:aa:75:ce:02:35:bf:
c3:8b:11:9d:13:cf:65:5e:91:1c:f2:c9:0c:52:b5:
0e:44:ff:7d:ab:86:5f:81:7a:60:31:36:97:2f:54:
cd:29:1b:be:27:f0:15:14:b2:9a:5b:2b:c2:09:b3:
db:32:68:db:5e:40:55:39:6a:92:59:9a:c2:1b:46:
0e:4b:1e:0e:2f:f4:89:9b:72:01:58:85:a4:d6:03:
8b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:8B:A2:BB:81:30:69:77:7B:B3:B1:14:C1:66:2D:58:35:4B:48:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED05FCA4364C11F1A1120314CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.233.0-154.208.242.255
Signature Algorithm: sha256WithRSAEncryption
77:f4:3b:99:8a:fc:a1:7f:c0:9c:41:cc:b0:6b:f3:67:54:52:
27:bb:70:1a:dd:c7:ef:0d:e3:f6:13:06:48:d1:75:42:08:96:
c7:1e:54:89:50:9f:16:35:07:9e:68:3a:66:2d:ac:2d:b8:4e:
bc:9d:56:00:a2:b4:73:65:32:ce:09:1e:c9:ad:5c:e5:7f:38:
5d:3b:2f:ea:a6:d7:e8:a1:98:83:7f:41:6c:71:52:39:12:0c:
45:10:38:5d:e0:2f:34:0b:86:70:f3:19:b0:b1:dd:35:b7:27:
9b:44:87:1b:30:67:a8:a6:77:e2:da:12:72:f4:43:3a:bc:3c:
0a:3f:e6:73:99:f9:0d:ee:63:62:73:dd:37:e1:3a:f4:70:e3:
f6:db:f9:bc:c9:17:27:3b:27:3f:f7:5a:b7:31:83:21:5f:14:
30:1e:3d:b9:f0:fe:c4:e2:7c:04:fb:a7:50:32:9d:eb:6a:7c:
27:0b:b3:44:62:6b:d9:95:68:b9:e2:d3:a2:a6:21:00:24:8f:
7e:9e:5c:db:25:9e:74:49:61:3a:a0:85:36:cb:8d:64:31:fa:
be:0e:55:2e:ca:a0:1e:7d:95:94:c0:c6:75:63:2f:fa:47:9d:
6e:69:ab:8e:26:76:e5:43:85:3d:7d:d6:22:c1:c3:a1:d2:27:
98:75:d4:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:34:09 2026 by rpki-client