Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17CAAA744AC111F1A3636BF4CE1D38B0.roa
File: 17CAAA744AC111F1A3636BF4CE1D38B0.roa (raw, json)
Hash identifier: b0TZV/ms6N9SmbbJMKO2Xj9ub7D+DIV0qv5V7aSW/vg=
Subject key identifier: 43:69:55:E4:74:1B:31:60:17:FB:B6:C6:3D:C7:9F:3D:45:21:51:F5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA6F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17CAAA744AC111F1A3636BF4CE1D38B0.roa
Signing time: Fri 08 May 2026 09:34:22 +0000
ROA not before: Fri 08 May 2026 09:34:17 +0000
ROA not after: Sun 07 Jun 2026 09:34:17 +0000
asID: 147176
IP address blocks: 154.197.116.0/24 maxlen: 24
154.197.124.0/24 maxlen: 24
154.215.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117359 (0x1ca6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 09:34:17 2026 GMT
Not After : Jun 7 09:34:17 2026 GMT
Subject: CN=69fdae1d-af6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:20:c1:4e:8f:af:e1:06:5c:6f:62:ef:bc:dd:
99:df:50:ce:cd:54:73:00:fa:15:e3:07:10:69:7a:
03:ba:0c:90:1c:6c:39:78:11:a6:3d:0d:78:f0:cb:
78:f2:cd:5f:5e:5f:c0:48:fd:34:ff:ba:a4:3c:19:
19:73:65:38:7c:c5:bf:2f:1d:10:07:a8:67:b9:32:
a6:d2:6c:f2:76:a1:27:70:48:45:76:05:cd:b8:db:
08:a1:b4:f2:a8:f3:35:84:d4:eb:8e:89:96:22:61:
65:03:1d:ce:da:d8:a1:76:d8:74:f1:0b:82:fa:15:
1c:60:ff:a7:bc:b7:fb:85:76:65:43:c2:f5:18:46:
0d:02:88:89:9c:c0:e7:47:49:18:1b:f0:32:c8:07:
37:ef:99:6f:c6:2b:6d:f0:65:c3:b7:27:8c:70:18:
0e:e2:d2:12:b3:a3:78:b4:b6:94:d6:36:9d:2d:b3:
54:c7:c9:63:56:11:db:34:f9:0f:31:6b:1e:ce:06:
9a:c6:9b:de:8b:62:fc:59:2f:f4:76:e2:a4:77:d2:
66:a0:70:11:39:46:ff:a3:7f:0b:3b:d6:d4:e2:29:
70:4b:de:62:9d:94:63:81:92:3a:04:22:3b:6d:19:
76:97:69:2b:05:eb:f4:82:da:5c:f9:6a:01:9e:cf:
fd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:69:55:E4:74:1B:31:60:17:FB:B6:C6:3D:C7:9F:3D:45:21:51:F5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17CAAA744AC111F1A3636BF4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.116.0/24
154.197.124.0/24
154.215.14.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:51:d9:9a:21:81:6c:92:7e:67:20:27:df:f9:5f:b4:96:e7:
f4:30:b3:75:8b:70:b9:2f:70:04:e9:86:04:17:9c:96:f4:f1:
68:5a:39:65:7e:45:aa:7f:3c:e2:d4:36:f1:03:70:dc:56:7a:
d5:df:27:ab:d3:38:9a:f2:f5:0b:d3:26:4a:dd:e0:92:ea:01:
70:07:26:25:75:36:d5:a0:83:1d:e9:4d:e5:15:5b:26:7a:55:
27:d0:4c:ed:6d:70:cf:de:56:5a:95:21:ce:34:07:3b:bd:b4:
e3:ab:15:9f:10:9e:08:42:58:f5:4d:fe:a5:55:5f:bd:56:86:
82:0c:78:c0:b5:b5:81:ac:61:48:0b:4d:7a:35:14:2c:b9:1e:
af:82:4a:6b:fb:40:a1:69:fe:d5:d7:f0:5c:a2:a0:34:ee:3e:
17:2c:0a:76:1c:b5:73:b3:4f:dc:49:9f:94:a3:23:03:c3:15:
df:cb:9c:1d:50:34:85:4d:c2:02:34:e5:6c:21:5e:67:99:d2:
0a:f0:eb:ff:91:a1:90:49:93:54:5a:71:d2:67:4c:ad:a8:5e:
45:a0:f1:02:9e:80:79:10:38:d2:0c:83:34:9d:d3:2b:1c:f4:
7c:5e:c2:58:ca:1c:26:cd:db:a2:07:b5:fa:33:cd:84:ae:17:
47:85:2f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:41 2026 by rpki-client