Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4BA7E50398711F1874869CECE1D38B0.roa
File: F4BA7E50398711F1874869CECE1D38B0.roa (raw, json)
Hash identifier: 53GtVAGq2b7yUCcuPVFFh/eRN7xUX6O9wykHcl3+uGc=
Subject key identifier: AD:16:7A:1D:80:0A:F3:45:0B:DF:F5:E1:3A:28:7E:89:4C:F5:D0:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C599
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4BA7E50398711F1874869CECE1D38B0.roa
Signing time: Thu 16 Apr 2026 11:32:32 +0000
ROA not before: Thu 16 Apr 2026 11:32:26 +0000
ROA not after: Sat 23 May 2026 11:32:26 +0000
asID: 63969
IP address blocks: 154.89.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116121 (0x1c599)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 11:32:26 2026 GMT
Not After : May 23 11:32:26 2026 GMT
Subject: CN=69e0c8d0-2ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bd:dc:a8:9f:9e:d9:44:8e:17:4f:9a:9f:7c:
cc:48:46:e9:73:5a:ed:5b:b3:ae:83:74:85:fc:11:
1a:ca:d5:ea:c5:20:13:ed:a9:4f:07:14:d3:65:ef:
6b:1d:82:93:23:bf:d8:e3:eb:dc:37:f9:05:40:5d:
7c:cb:2b:df:f8:39:65:31:62:6b:ec:5c:be:ac:4c:
37:a8:0e:fa:a9:47:a6:43:6e:af:1c:71:4a:21:3f:
f2:f9:b0:1b:24:9d:dd:7b:5c:f9:90:c4:d1:c9:e4:
85:9f:21:de:56:05:a0:31:0a:09:96:d6:72:fa:42:
0e:12:48:8a:82:bc:b6:6c:af:c7:8c:48:64:ab:e0:
f7:ad:20:eb:6a:de:25:4c:8a:75:49:37:a0:9d:b8:
8c:91:3d:88:59:57:7a:d8:f6:3b:9d:ad:ac:6e:0f:
e1:0d:fb:c6:e9:2e:a6:40:85:47:e1:66:9c:e6:ed:
44:67:62:6e:ca:03:b1:3d:48:29:0c:76:cb:85:23:
cd:2f:10:2f:8b:8f:3f:13:ff:59:fd:31:04:a4:cd:
15:53:e5:fe:bd:0c:55:31:e6:7c:48:12:6b:46:2a:
54:d9:86:df:2e:48:77:88:ff:26:09:35:68:21:1a:
a0:64:67:82:3a:50:34:2b:33:c0:a3:2d:ec:24:c5:
c7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:16:7A:1D:80:0A:F3:45:0B:DF:F5:E1:3A:28:7E:89:4C:F5:D0:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4BA7E50398711F1874869CECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.7.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:ac:18:84:bd:3e:b8:27:34:a0:28:cb:f1:16:b9:fa:74:eb:
ad:8c:11:cc:33:88:af:bb:c7:e7:32:d9:76:c2:32:fb:5a:ef:
24:00:87:6a:59:81:08:cb:a4:54:92:20:1a:b3:d1:bd:e2:87:
59:1d:08:59:31:ef:02:f6:0e:87:bc:48:e7:e8:8f:32:df:cc:
ff:1b:ca:cf:22:2e:67:4d:e3:49:82:ed:98:4f:09:1b:ad:b7:
43:b2:77:3f:88:cd:04:54:8f:31:a8:6f:6e:57:9a:96:16:08:
d6:20:8c:c8:af:f8:b4:10:62:de:68:32:f1:d6:27:03:37:e8:
7d:e8:81:6e:41:d0:e2:86:86:9e:26:4a:b5:f9:56:67:fb:73:
64:33:b4:6a:eb:ee:f0:59:67:35:db:76:d7:b6:3d:b9:b9:0b:
dc:5b:40:19:d7:bc:21:13:bc:ef:a7:64:2e:e4:d0:c4:d7:29:
a0:7a:a8:ca:d5:0d:c1:de:2f:4e:00:b2:32:ed:64:53:0d:bc:
22:19:33:59:f1:be:2a:5f:67:12:28:01:ac:c9:39:81:ad:eb:
05:02:97:80:f8:ad:df:dd:12:f0:50:ea:60:1e:39:e0:e8:78:
95:1a:b1:85:86:d2:8c:b6:6b:dd:0e:df:03:36:48:a8:b5:a5:
26:be:25:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:58:53 2026 by rpki-client