Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFADA3E42C0F11F1B476AFF6DAE4EC9C.roa
File: FFADA3E42C0F11F1B476AFF6DAE4EC9C.roa (raw, json)
Hash identifier: bfIxm93A60DoeiHRC5kgtulucULZyx2B9gXuecJRlec=
Subject key identifier: 82:F3:39:9D:A0:C6:E3:89:44:2E:B1:5E:0B:1E:C4:C4:34:A8:54:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C1B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFADA3E42C0F11F1B476AFF6DAE4EC9C.roa
Signing time: Mon 30 Mar 2026 08:11:05 +0000
ROA not before: Mon 30 Mar 2026 08:11:00 +0000
ROA not after: Thu 13 May 2027 08:11:00 +0000
asID: 273147
IP address blocks: 154.197.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115127 (0x1c1b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 30 08:11:00 2026 GMT
Not After : May 13 08:11:00 2027 GMT
Subject: CN=69ca3019-61d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4a:4f:e3:6a:78:96:7c:69:91:02:bf:8b:f0:
b7:81:58:a9:38:5c:23:0d:4c:5d:a0:d4:4e:38:aa:
2e:57:22:ad:f9:19:c0:99:f3:d4:68:61:03:4e:88:
5d:10:69:a5:c2:27:96:05:2b:9e:85:0a:6c:df:b6:
6b:21:cb:97:7a:e3:3a:d5:2d:18:46:16:22:c3:4c:
e4:33:8e:77:46:b5:86:08:c0:24:74:2e:e2:3f:45:
50:73:59:45:b0:9c:c2:dd:fb:06:9d:18:71:45:2f:
d6:6f:eb:80:ce:91:72:6e:01:e1:93:b9:ef:43:81:
ce:aa:f7:a1:93:9d:d3:7b:6d:05:c0:c6:0f:fe:b2:
b0:47:55:4f:fe:d3:0e:7a:45:a8:f8:c5:c0:36:c0:
49:4b:5d:a0:ac:a9:50:1c:51:d8:65:9c:9b:01:5f:
5a:11:ee:b1:e0:07:29:ab:14:e1:37:9b:5a:c3:46:
93:83:d2:7e:88:f1:34:01:2f:05:d1:00:1a:f5:5b:
a4:c0:1f:2e:df:0a:72:1d:b3:e3:db:09:46:2c:88:
0b:5b:6e:19:bc:4b:44:54:2a:2e:a6:52:80:6b:69:
2b:b0:63:63:f9:a8:0e:a8:ae:08:2d:b5:12:7f:41:
22:06:1b:91:97:11:8f:cc:ac:4d:61:d5:c3:34:a2:
30:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F3:39:9D:A0:C6:E3:89:44:2E:B1:5E:0B:1E:C4:C4:34:A8:54:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFADA3E42C0F11F1B476AFF6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.77.0/24
Signature Algorithm: sha256WithRSAEncryption
02:22:a7:16:06:c1:a8:a2:bc:78:d6:b6:ac:1e:96:2e:16:a5:
64:9c:23:75:26:be:be:da:5f:77:94:c1:0f:fe:25:29:34:82:
55:04:10:99:8b:dd:e6:1f:98:d7:e1:b7:75:f8:67:26:74:eb:
76:aa:89:14:a3:d0:48:96:91:4f:e1:05:51:09:b4:e5:30:c1:
84:b0:86:87:35:13:d4:51:87:c0:aa:f6:5d:73:4a:fd:1e:6a:
d6:fc:44:87:f5:c5:a7:2b:4a:7b:0c:04:cb:6b:3f:69:ce:89:
9e:91:bd:57:65:25:da:20:b9:a6:58:ef:ca:06:08:46:ac:e1:
e3:0d:1a:f4:b0:f3:ca:ea:d8:ba:00:be:8e:c6:32:38:f3:e8:
6d:93:10:88:09:c9:41:fa:39:bc:70:04:c5:e7:28:8d:3f:78:
83:38:bb:e4:d1:95:4e:3a:8f:e5:21:9b:0a:24:be:de:46:ef:
1a:e8:43:67:8f:b6:d6:00:e9:bf:7f:e0:3d:7c:2e:fa:fd:84:
59:3e:14:c3:fa:89:94:c5:c6:a3:3b:fd:24:e4:6f:fe:da:9e:
96:49:51:8d:24:e0:45:c3:ee:55:50:0f:7e:29:77:7a:9d:60:
5a:81:b2:7a:fe:cd:41:ed:27:c4:b2:ad:25:6d:31:f1:61:8d:
d5:46:17:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:20 2026 by rpki-client