Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDF0D3DA2E7411F187CC35ECDAE4EC9C.roa
File: EDF0D3DA2E7411F187CC35ECDAE4EC9C.roa (raw, json)
Hash identifier: OF1pOyd5UbKAQ3BkPsiKJF+xqHtJ7jJrOPIRJauOPHI=
Subject key identifier: 48:50:48:F4:EF:0C:54:B6:C2:E4:A2:A2:A9:03:19:6B:E3:AB:1A:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C21D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDF0D3DA2E7411F187CC35ECDAE4EC9C.roa
Signing time: Thu 02 Apr 2026 09:18:37 +0000
ROA not before: Thu 02 Apr 2026 09:18:33 +0000
ROA not after: Sat 09 May 2026 09:18:33 +0000
asID: 44559
IP address blocks: 154.210.237.0/24 maxlen: 24
154.210.238.0/24 maxlen: 24
154.219.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115229 (0x1c21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 09:18:33 2026 GMT
Not After : May 9 09:18:33 2026 GMT
Subject: CN=69ce346d-afe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0b:a7:cc:57:80:0f:7b:4f:5a:84:cb:19:96:
47:04:11:f8:e9:12:e5:98:3a:cb:bc:67:c8:50:5f:
04:09:67:35:b6:9a:b5:4b:fe:38:88:6f:3b:b0:bc:
f0:a5:fc:ca:71:49:ab:51:1a:08:64:e6:23:23:bf:
20:14:2d:58:3e:d6:34:c0:53:75:3c:68:15:eb:25:
eb:82:76:24:0f:f3:ba:d3:d6:37:5d:7f:69:18:e1:
6e:a4:0f:3f:98:82:67:af:74:3a:76:c3:19:3b:35:
8d:8a:11:2a:af:71:55:ab:fb:14:a0:86:c1:9a:92:
6e:8a:1a:7a:21:41:bd:15:50:af:ba:23:ed:9d:92:
b9:75:61:27:50:ae:f0:18:37:90:5c:e2:26:ca:32:
30:93:9c:77:72:b6:22:a5:b6:b2:08:96:b4:ab:36:
b8:ad:fb:25:fe:eb:e8:7b:4b:04:28:9e:3d:fd:31:
33:35:7f:65:64:3f:8b:fa:b2:78:48:21:ce:9b:08:
b5:d4:64:c9:c9:57:50:d9:da:ee:09:a6:df:55:da:
c0:27:72:61:19:0d:9c:db:18:42:6d:00:6b:25:c0:
ed:9f:76:49:7c:ad:c6:20:7b:b0:61:3d:96:bc:4a:
18:7a:44:48:0f:12:67:ce:5d:9b:d2:1c:11:77:73:
a4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:50:48:F4:EF:0C:54:B6:C2:E4:A2:A2:A9:03:19:6B:E3:AB:1A:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDF0D3DA2E7411F187CC35ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.237.0-154.210.238.255
154.219.72.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:69:c5:9d:50:bf:dd:45:81:a2:12:8b:b2:1b:f9:85:5c:3f:
4d:db:0e:2d:cb:63:0e:d4:63:61:ae:35:4a:63:b5:ef:8c:a0:
cf:4f:7f:f8:35:79:08:8b:1d:50:9b:65:50:29:4d:db:17:83:
86:b0:68:98:e9:72:8a:bd:68:41:90:71:73:f3:45:a2:80:09:
44:69:ce:00:a3:45:e2:83:97:b0:9e:29:23:61:f7:05:4d:04:
e0:fb:f1:ab:5e:23:97:95:cd:0b:78:bf:f7:ed:f2:fd:55:97:
65:38:5b:86:9d:66:30:ed:2c:f7:ad:dc:d1:df:79:f7:a7:a2:
0a:6d:8e:e2:f7:49:5c:54:d0:fb:6b:17:29:75:aa:3a:d6:bf:
f4:46:d3:1b:1f:15:14:bb:5f:10:11:5f:48:f2:d0:bc:02:45:
ff:d1:19:81:0c:23:95:a1:a7:4d:f6:db:3c:5d:14:59:c0:da:
84:07:73:07:c6:b8:de:be:a7:70:51:71:cf:d3:0e:ac:0e:04:
d3:07:7c:50:4f:bf:6b:ce:86:de:1e:f0:42:29:a8:79:88:ac:
1e:e2:be:17:b2:07:82:29:52:35:98:cc:7c:05:4a:9f:8e:fa:
33:57:16:77:20:8d:b0:39:c3:0d:af:b3:6e:26:11:1b:50:5c:
68:2a:5d:ec
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAcIdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDAyMDkxODMzWhcNMjYwNTA5MDkxODMzWjAYMRYw
FAYDVQQDEw02OWNlMzQ2ZC1hZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0gunzFeAD3tPWoTLGZZHBBH46RLlmDrLvGfIUF8ECWc1tpq1S/44iG87
sLzwpfzKcUmrURoIZOYjI78gFC1YPtY0wFN1PGgV6yXrgnYkD/O609Y3XX9pGOFu
pA8/mIJnr3Q6dsMZOzWNihEqr3FVq/sUoIbBmpJuihp6IUG9FVCvuiPtnZK5dWEn
UK7wGDeQXOImyjIwk5x3crYipbayCJa0qza4rfsl/uvoe0sEKJ49/TEzNX9lZD+L
+rJ4SCHOmwi11GTJyVdQ2druCabfVdrAJ3JhGQ2c2xhCbQBrJcDtn3ZJfK3GIHuw
YT2WvEoYekRIDxJnzl2b0hwRd3OkUQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFEhQ
SPTvDFS2wuSioqkDGWvjqxo2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FREYwRDNEQTJFNzQxMUYxODdDQzM1RUNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBACa0u0DBACa0u4DBACa
20gwDQYJKoZIhvcNAQELBQADggEBAJ9pxZ1Qv91FgaISi7Ib+YVcP03bDi3LYw7U
Y2GuNUpjte+MoM9Pf/g1eQiLHVCbZVApTdsXg4awaJjpcoq9aEGQcXPzRaKACURp
zgCjReKDl7CeKSNh9wVNBOD78ateI5eVzQt4v/ft8v1Vl2U4W4adZjDtLPet3NHf
efenogptjuL3SVxU0PtrFyl1qjrWv/RG0xsfFRS7XxARX0jy0LwCRf/RGYEMI5Wh
p0322zxdFFnA2oQHcwfGuN6+p3BRcc/TDqwOBNMHfFBPv2vOht4e8EIpqHmIrB7i
vheyB4IpUjWYzHwFSp+O+jNXFncgjbA5ww2vs24mERtQXGgqXew=
-----END CERTIFICATE-----
Generated at Fri Apr 17 04:45:48 2026 by rpki-client