Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F379025E2C0911F1AB7DFED5DAE4EC9C.roa
File: F379025E2C0911F1AB7DFED5DAE4EC9C.roa (raw, json)
Hash identifier: U/MpCP5mOh4NYPY7hF2sUDTlzln4fbTqbCYEBEgp5W8=
Subject key identifier: 59:8B:90:34:0F:EA:B6:20:6B:F0:00:1E:85:9A:75:77:7C:43:B9:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C1AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F379025E2C0911F1AB7DFED5DAE4EC9C.roa
Signing time: Mon 30 Mar 2026 07:27:48 +0000
ROA not before: Mon 30 Mar 2026 07:27:43 +0000
ROA not after: Sat 25 Apr 2026 07:27:43 +0000
asID: 139613
IP address blocks: 154.90.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115115 (0x1c1ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 30 07:27:43 2026 GMT
Not After : Apr 25 07:27:43 2026 GMT
Subject: CN=69ca25f4-3bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:39:0c:ea:5c:1f:ba:65:33:c5:6b:08:de:da:
a2:97:b3:8a:b6:0c:66:2a:62:40:cd:19:4f:a8:d5:
e3:6d:fc:27:3c:e8:61:f6:01:ed:fa:94:b3:c7:07:
27:78:29:c4:5e:40:a2:ec:87:71:81:5c:a5:dd:b2:
cf:e7:af:c2:68:1f:19:eb:74:3f:9d:6c:61:11:57:
e4:44:64:23:dd:6b:bf:bb:69:2d:69:e6:cb:68:48:
d7:40:40:bd:11:e4:d8:34:14:f3:87:b8:77:f6:01:
37:59:2e:0f:fe:b4:f8:7f:bd:cd:06:b5:b9:31:45:
aa:bf:0b:26:08:39:83:3c:61:06:50:1e:d3:04:92:
c4:4c:56:d1:42:59:33:ba:7f:a3:ec:c6:82:fc:12:
77:e5:b3:ce:27:11:6b:01:3f:b1:4e:53:58:ed:ff:
f3:bd:c8:64:df:1d:83:21:1d:a4:81:16:18:9f:72:
9c:b3:d0:5f:92:26:67:e4:1f:de:a9:45:95:b8:7a:
7f:d8:23:a3:9b:32:54:79:47:b1:1b:2e:1f:aa:2d:
7b:bf:ac:d1:1e:78:40:88:57:8d:0e:a4:18:17:c2:
d4:dd:86:ef:f4:72:92:1a:bf:b5:e4:c7:39:8b:75:
3e:dd:ab:72:1b:24:77:e7:e6:29:76:9f:90:b2:62:
80:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8B:90:34:0F:EA:B6:20:6B:F0:00:1E:85:9A:75:77:7C:43:B9:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F379025E2C0911F1AB7DFED5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.28.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:c2:3b:12:8f:80:75:f2:f3:2c:92:e4:af:ed:d2:63:fe:58:
87:65:14:2f:41:53:7a:33:56:0f:d2:4e:dc:df:dd:1c:fe:08:
bd:9a:d8:bc:05:22:5f:11:d4:bd:d1:08:92:97:54:ce:63:d1:
26:5e:a0:19:69:ff:1f:38:7a:70:ee:96:ff:91:ab:9b:f9:e8:
d4:d2:06:7a:c1:0a:fe:26:fd:9e:4c:d5:49:9c:6e:4b:4d:bd:
fc:ef:3c:45:bd:80:49:bf:30:9f:b0:d4:43:b6:a1:a2:66:d9:
30:5f:e6:53:be:6a:d6:24:27:ba:fe:c7:e2:85:51:06:a3:2e:
94:25:e5:0b:ae:c0:da:cf:ab:2b:1e:41:f7:1e:2b:c3:37:51:
0d:7b:0c:b9:83:0f:ba:10:6a:7f:39:df:4e:e2:3f:a6:81:df:
e6:17:0c:b4:d1:87:72:32:00:f5:b6:49:88:f2:90:08:41:ed:
b0:d2:19:d5:fb:fe:99:69:4a:12:40:c5:de:24:7d:40:b9:d4:
db:97:33:6c:d7:13:2d:71:94:c9:47:6b:33:98:83:7c:2a:bb:
92:95:2c:e7:f9:36:51:76:ce:30:b2:28:cc:bd:99:cc:2a:13:
f9:39:98:59:62:e6:ae:83:9d:20:71:51:d2:b1:61:05:93:d7:
2e:56:b1:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 02:05:27 2026 by rpki-client