Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14149D324ABB11F192D721D0CE1D38B0.roa
File: 14149D324ABB11F192D721D0CE1D38B0.roa (raw, json)
Hash identifier: zPF1UerJWDZxs3AdS0QxrOkQ+A7St16j2gpng60wuE8=
Subject key identifier: E5:23:84:73:A9:9E:63:6D:F9:84:A1:44:6D:11:34:D8:DF:8F:F9:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA6A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14149D324ABB11F192D721D0CE1D38B0.roa
Signing time: Fri 08 May 2026 08:51:18 +0000
ROA not before: Fri 08 May 2026 08:51:14 +0000
ROA not after: Wed 07 Jul 2027 08:51:14 +0000
asID: 328608
IP address blocks: 154.200.176.0/24 maxlen: 24
154.200.177.0/24 maxlen: 24
154.200.178.0/24 maxlen: 24
154.200.179.0/24 maxlen: 24
154.200.180.0/24 maxlen: 24
154.200.181.0/24 maxlen: 24
154.200.182.0/24 maxlen: 24
154.200.183.0/24 maxlen: 24
154.200.184.0/24 maxlen: 24
154.200.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117354 (0x1ca6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 08:51:14 2026 GMT
Not After : Jul 7 08:51:14 2027 GMT
Subject: CN=69fda406-a40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:73:6f:f9:47:fc:04:be:95:e9:87:58:9b:5b:
8b:01:63:f4:50:20:0f:77:50:c0:62:9b:4f:a2:58:
fb:d4:3d:3f:e1:8c:c5:ea:05:6a:57:c3:71:aa:05:
96:e2:53:29:f4:a9:0d:30:02:2d:f5:49:1a:d3:b9:
3b:90:eb:ff:9d:da:0d:6c:f6:66:66:59:96:bc:61:
c6:b7:09:8a:a7:df:1d:dd:ce:ef:b7:c8:ed:c8:ff:
68:45:c2:b1:a8:5d:7c:5c:6a:be:f1:81:5a:9b:99:
45:2a:96:10:49:20:84:61:05:7e:78:6c:f0:a7:db:
be:58:60:12:c2:68:cd:73:87:40:97:78:6f:02:79:
dd:bd:69:0e:0f:38:88:d7:3c:b2:c5:e1:6f:4f:ff:
54:e4:db:5b:6b:e7:11:a9:bf:ed:46:51:f7:b3:80:
b2:60:5e:e5:d8:64:a2:05:36:1d:86:5b:ad:f8:66:
57:7f:9f:b4:83:f5:43:8f:4b:10:f1:ba:62:bc:4d:
ea:a8:a1:25:9c:c5:93:00:f6:3f:f6:67:be:50:59:
a2:72:a4:04:7c:34:e3:64:49:0f:14:02:d9:84:6a:
f4:94:50:4c:3f:71:b0:ce:df:8d:f7:4b:e3:93:86:
bf:29:f4:64:8d:a3:61:cc:24:2b:f7:0f:05:02:f3:
95:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:23:84:73:A9:9E:63:6D:F9:84:A1:44:6D:11:34:D8:DF:8F:F9:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14149D324ABB11F192D721D0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.176.0-154.200.185.255
Signature Algorithm: sha256WithRSAEncryption
79:cd:17:95:de:e6:94:0c:a3:8f:30:79:fe:4c:6b:66:80:95:
cd:0a:84:d2:dc:57:c9:fd:e5:97:da:2f:4d:4d:4c:7a:13:00:
fa:88:c4:5c:bd:3d:d0:76:fb:56:1c:70:f9:60:53:41:df:e1:
ef:85:ee:62:3b:cb:9c:7a:93:01:e8:52:29:94:37:cd:0b:42:
3d:e4:3b:dd:76:06:36:37:55:37:53:cb:78:48:01:bc:08:1e:
8a:50:9f:85:e9:c7:1e:85:03:37:d8:c4:1f:70:8c:33:b8:0e:
86:f1:2e:02:2d:f2:fd:34:0d:ec:a0:23:b9:15:ce:0a:81:80:
e3:a2:2b:ce:4a:cb:39:8b:c5:05:4e:fc:49:67:4c:8c:3d:2d:
33:c7:e0:08:90:3c:ea:95:63:e8:95:14:ec:7c:03:ee:12:50:
c7:21:23:d3:18:8f:e4:f3:5b:06:a9:6c:cb:83:7e:a1:fd:01:
e3:86:53:1a:0b:87:5e:51:62:f0:c9:19:3c:52:fe:68:b4:33:
e4:a4:14:54:16:f8:9d:51:d8:29:ab:3f:4b:60:23:ae:d1:ac:
98:c8:8e:f1:01:4f:10:11:e1:a3:8a:75:cf:a9:67:99:72:99:
3b:68:f5:13:94:d1:df:d4:a0:1c:e9:68:3c:12:dc:a8:92:02:
60:3b:c9:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:50 2026 by rpki-client