Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A19EF6A455D11F1ADF7ABA2CE1D38B0.roa
File: 1A19EF6A455D11F1ADF7ABA2CE1D38B0.roa (raw, json)
Hash identifier: DFxkd3eLPrAcxiUYf+1VvDbmi+g/+JQYf310qainh0M=
Subject key identifier: 96:60:DA:58:19:F3:D3:00:18:85:59:BF:C4:9C:00:B0:52:E6:FC:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C899
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A19EF6A455D11F1ADF7ABA2CE1D38B0.roa
Signing time: Fri 01 May 2026 12:56:00 +0000
ROA not before: Fri 01 May 2026 12:55:55 +0000
ROA not after: Fri 30 Apr 2027 12:55:55 +0000
asID: 328608
IP address blocks: 154.200.182.0/24 maxlen: 24
154.200.183.0/24 maxlen: 24
154.200.184.0/24 maxlen: 24
154.200.185.0/24 maxlen: 24
154.200.186.0/24 maxlen: 24
154.200.187.0/24 maxlen: 24
154.200.188.0/24 maxlen: 24
154.200.189.0/24 maxlen: 24
154.200.190.0/24 maxlen: 24
154.200.192.0/24 maxlen: 24
154.200.193.0/24 maxlen: 24
154.200.194.0/24 maxlen: 24
154.200.195.0/24 maxlen: 24
154.200.196.0/24 maxlen: 24
154.200.197.0/24 maxlen: 24
154.200.198.0/24 maxlen: 24
154.200.199.0/24 maxlen: 24
154.200.200.0/24 maxlen: 24
154.200.201.0/24 maxlen: 24
154.200.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116889 (0x1c899)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 12:55:55 2026 GMT
Not After : Apr 30 12:55:55 2027 GMT
Subject: CN=69f4a2e0-e8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:79:1e:8e:21:c7:3a:f3:fb:b3:83:62:19:7f:
97:f0:92:d7:c6:cf:96:d1:0c:98:e9:57:bb:23:fa:
45:5b:31:28:a9:06:cf:ba:3d:ad:b2:6a:71:9a:37:
a5:5a:62:68:e1:c1:a5:2a:3a:41:d4:ce:cb:c3:07:
df:eb:6f:3a:ce:f7:d6:d1:f2:d8:87:ac:cd:2a:bd:
5e:1a:79:06:8e:9c:a6:58:f5:89:6e:b0:e8:94:cc:
6a:ec:40:55:3e:8d:9e:f8:08:9b:29:91:05:f7:30:
0a:9b:9b:b6:b0:c4:a5:67:b0:66:7f:96:f8:fa:dd:
3c:f2:90:af:f8:ab:68:78:2d:ec:01:b0:7e:29:c5:
e0:7f:0d:a0:62:91:e4:2e:8d:ed:16:4a:26:ad:71:
84:1c:dc:a9:2c:e3:8a:45:e7:d0:93:3f:64:0c:71:
fe:eb:6c:fc:6e:a2:9f:c4:2b:19:c9:bf:a7:0a:0f:
b9:88:cd:12:68:4b:20:5c:7f:34:f3:95:b4:1c:6f:
9f:71:37:37:45:bf:36:19:bd:32:b4:7b:03:95:9d:
06:ce:b9:7f:0b:04:d0:06:1e:af:93:d2:29:14:4c:
58:ee:7e:67:d0:8a:f6:ba:7e:ad:ca:19:4e:9c:56:
fc:ad:3a:25:ae:8b:d5:aa:2c:cf:cd:39:5e:9a:d3:
41:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:60:DA:58:19:F3:D3:00:18:85:59:BF:C4:9C:00:B0:52:E6:FC:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A19EF6A455D11F1ADF7ABA2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.182.0-154.200.190.255
154.200.192.0-154.200.202.255
Signature Algorithm: sha256WithRSAEncryption
b6:84:28:e9:19:de:83:a4:3d:38:d7:f4:61:32:d9:77:9f:3c:
f2:98:9e:b5:98:60:2b:84:3f:c8:dd:e2:4b:fe:59:64:f3:2b:
0a:49:00:37:35:98:ab:a1:04:37:af:b6:5e:f7:90:c9:bd:75:
4e:b4:75:24:69:1e:32:76:8d:67:7f:0a:9f:db:2d:7c:f3:64:
f9:37:2d:47:ac:13:25:cf:61:96:96:02:84:2f:b1:73:eb:16:
70:c3:fd:b4:41:66:50:41:08:07:6f:86:5e:87:bb:b6:01:9a:
b0:ea:ae:54:e4:03:c2:ad:20:02:94:2d:51:41:3f:56:a5:37:
5e:50:e0:0c:43:1f:b9:a9:5b:74:85:51:35:ea:c3:d7:fb:a2:
4d:ee:41:61:ac:a3:23:5a:6c:5f:2e:d7:56:33:21:d8:2c:da:
5e:e5:ca:dc:6d:e1:a0:48:48:8a:ee:11:b9:ce:c0:35:a6:7f:
d1:68:9e:43:9e:1d:1b:c5:6a:7e:61:f1:e5:a0:09:d8:43:11:
9d:ab:56:d0:30:34:ba:cf:78:78:e9:3a:8a:99:81:10:3b:a5:
5a:04:11:ef:84:9e:a7:87:17:8c:9b:c4:33:c2:0d:86:31:cc:
98:12:08:2a:d5:63:44:f1:b9:b6:29:53:81:75:7f:36:21:2a:
e4:c4:ea:f2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu May 7 23:48:27 2026 by rpki-client