Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03A666844A7E11F1ABB0D4CCCE1D38B0.roa
File: 03A666844A7E11F1ABB0D4CCCE1D38B0.roa (raw, json)
Hash identifier: wgwRlOKbXp96XDU5hh7m2q8g1NmqnIreDzT8mgUgtHM=
Subject key identifier: 57:AD:75:8B:FE:8A:55:56:15:59:09:93:65:DB:DC:0D:0C:2B:4A:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA1F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03A666844A7E11F1ABB0D4CCCE1D38B0.roa
Signing time: Fri 08 May 2026 01:34:12 +0000
ROA not before: Fri 08 May 2026 01:34:07 +0000
ROA not after: Wed 07 Jul 2027 01:34:07 +0000
asID: 36898
IP address blocks: 154.200.166.0/24 maxlen: 24
154.200.167.0/24 maxlen: 24
154.200.168.0/24 maxlen: 24
154.200.169.0/24 maxlen: 24
154.200.170.0/24 maxlen: 24
154.200.171.0/24 maxlen: 24
154.200.172.0/24 maxlen: 24
154.200.173.0/24 maxlen: 24
154.200.174.0/24 maxlen: 24
154.200.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117279 (0x1ca1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 01:34:07 2026 GMT
Not After : Jul 7 01:34:07 2027 GMT
Subject: CN=69fd3d93-49d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6c:52:c5:d8:40:19:aa:52:7d:06:d4:b6:4b:
21:c8:a9:ca:97:f4:71:31:42:89:8f:1a:e7:fd:18:
f7:74:59:25:2b:2c:fc:06:90:0f:16:32:16:85:98:
50:44:1f:ae:1f:a4:35:64:41:02:a5:f2:e1:28:ca:
27:9e:51:a1:31:7e:ca:0a:e7:b4:51:96:ef:49:ba:
b0:39:74:3a:ce:80:4a:82:9c:62:8f:d5:5a:e1:12:
a4:80:11:a1:82:26:40:32:4c:f2:e8:7b:92:ab:b2:
c3:fc:c3:d9:83:5f:b6:f8:40:b4:aa:1d:38:e1:33:
98:22:97:14:a3:91:c2:4b:8c:d9:5e:c7:18:35:d0:
76:1a:65:d0:03:4d:7e:fe:ab:b5:f0:e4:2a:94:15:
53:26:06:cc:63:95:05:4b:a6:a6:c8:be:5c:5a:be:
ca:3e:95:85:dd:19:a3:a0:4b:9f:c1:d9:36:53:87:
b9:f2:40:bd:1d:30:f6:41:64:bc:46:51:ff:bf:13:
5c:b0:bf:22:a0:08:d1:cd:86:6e:b0:89:7c:53:f0:
ef:82:41:ea:95:45:da:f9:0e:85:77:a3:0a:e8:29:
fe:4c:34:bf:6f:4d:a6:43:1a:70:0e:65:56:32:4d:
35:63:22:8a:12:7f:b6:d9:ef:80:66:04:a9:68:f9:
39:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:AD:75:8B:FE:8A:55:56:15:59:09:93:65:DB:DC:0D:0C:2B:4A:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03A666844A7E11F1ABB0D4CCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.166.0-154.200.175.255
Signature Algorithm: sha256WithRSAEncryption
cd:06:3d:2f:52:c5:68:95:40:5a:e0:3f:9c:05:78:88:e6:b7:
f4:f7:19:0d:4c:33:28:f2:7b:78:00:db:7c:53:1d:48:22:d8:
d3:05:0a:72:f5:91:73:9d:5b:6f:84:ea:6a:b8:54:af:7a:d0:
1b:a8:f1:b9:52:9d:c0:73:9d:c5:02:53:89:7f:cc:33:37:ad:
3d:6d:41:b3:bc:c8:54:a0:46:b5:52:b0:e9:28:dd:e2:d3:86:
2b:e7:37:21:07:b0:2f:eb:78:db:25:c3:a8:6a:f0:6d:4e:57:
84:bf:67:d5:9a:5b:49:be:95:e9:df:9d:45:a6:84:a2:5f:49:
02:cf:51:c6:89:15:2d:c8:1d:8b:18:c8:b1:ad:ba:50:d6:b0:
d2:5c:82:17:eb:af:98:95:35:5f:e6:e0:96:b0:52:2d:9e:a1:
65:f9:ac:9d:be:1a:b1:20:4f:cd:7f:e1:ff:7d:30:8c:37:28:
de:f8:f4:67:07:89:04:a3:75:05:2b:18:ec:15:45:3e:83:7e:
31:47:22:9a:ba:4b:85:11:ef:92:23:8c:34:32:bc:10:d9:00:
f8:65:da:d6:aa:2e:d6:4f:06:7e:9f:89:53:60:a1:82:37:85:
b3:5b:94:8e:e5:0a:88:4f:93:ab:80:b9:0c:75:1b:81:65:eb:
9d:0c:1e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:49 2026 by rpki-client