Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD048A24A1511F196B856D8CE1D38B0.roa
File: 1AD048A24A1511F196B856D8CE1D38B0.roa (raw, json)
Hash identifier: UXs2fWXfSRNRUbqbzcWRKWplPAKBmkxko7g5o/xSirA=
Subject key identifier: 85:1F:8A:8E:F7:D6:06:1C:8D:A4:5A:A2:2E:30:DC:7C:3C:69:43:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C9E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD048A24A1511F196B856D8CE1D38B0.roa
Signing time: Thu 07 May 2026 13:03:13 +0000
ROA not before: Thu 07 May 2026 13:03:09 +0000
ROA not after: Sat 20 Jun 2026 13:03:09 +0000
asID: 214413
IP address blocks: 154.205.253.0/24 maxlen: 24
154.205.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117216 (0x1c9e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 13:03:09 2026 GMT
Not After : Jun 20 13:03:09 2026 GMT
Subject: CN=69fc8d91-ea27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:33:a0:40:45:82:d7:68:2e:33:0a:9a:8e:fa:
5c:f2:c1:cc:19:f7:26:b0:a2:07:86:ca:99:76:59:
0f:5a:95:da:09:94:53:37:44:ea:57:1e:77:00:2c:
8e:20:08:99:df:a4:9c:24:5e:44:59:6a:7b:2f:6a:
23:8a:0d:2b:04:37:45:4d:ef:f5:70:e2:06:ff:c1:
78:0d:8f:b8:c2:8e:8b:80:ec:09:f2:d2:5a:f8:77:
19:c6:b8:78:73:68:a8:3c:1e:79:3b:93:e5:4d:c1:
2e:a8:8c:5c:d7:c5:83:ce:82:8d:50:80:83:70:b9:
ea:ad:89:e8:79:85:49:5e:c2:f8:ef:00:3f:cb:8b:
15:f3:87:e1:30:b7:6f:1d:6e:0f:15:c2:57:a1:42:
d3:f1:f1:ba:0c:ee:9b:c6:43:ae:bd:76:29:c3:ea:
d1:e6:c9:27:bd:7f:f1:de:f7:6f:8c:68:7f:96:28:
c6:30:89:a1:d0:a2:f8:da:94:89:a5:9c:4c:7d:d0:
92:34:10:9a:e1:62:00:85:18:39:71:3e:d3:e9:11:
9f:8e:43:c8:2f:bf:de:a0:26:4f:4e:59:97:89:e6:
3d:93:c1:e0:cc:c8:3d:c9:0b:21:ef:02:6c:5b:6b:
72:51:11:42:bc:5d:44:95:e5:7b:f6:6c:c8:5a:d2:
8a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1F:8A:8E:F7:D6:06:1C:8D:A4:5A:A2:2E:30:DC:7C:3C:69:43:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD048A24A1511F196B856D8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.253.0-154.205.254.255
Signature Algorithm: sha256WithRSAEncryption
14:ed:d5:70:92:89:17:43:78:c7:c4:e9:94:ac:3d:c1:a9:f6:
28:08:2b:64:0e:aa:38:4d:d6:64:f1:f3:1e:46:cc:12:cb:20:
38:98:a5:6a:b5:34:a5:c0:23:83:84:3b:67:75:d9:ff:e2:b1:
19:cd:a7:df:37:30:6e:26:89:88:55:44:b6:98:06:eb:85:f5:
a2:4c:2d:b7:9c:da:5e:a9:71:02:eb:2c:c5:07:7a:32:0e:66:
7c:71:fc:33:7a:c9:3b:8e:6d:d4:71:af:aa:f3:9d:90:b3:62:
7c:d1:6b:24:ff:73:16:db:b2:a0:c5:b4:70:4b:76:94:be:8d:
5b:27:2e:3c:7b:6f:8a:af:ad:4c:9e:66:8d:60:bb:43:d7:be:
3c:6c:49:52:1b:9f:27:19:bd:46:b1:20:73:e9:f4:8c:dd:56:
60:20:a5:b5:65:58:10:bc:f8:17:45:c6:61:83:2c:2b:c0:ab:
d2:b0:d7:1e:d8:84:fb:10:61:53:fb:79:44:c3:dc:c0:e2:3e:
af:93:08:42:03:2e:c3:a0:42:0a:5f:1f:ae:de:ed:1b:7a:02:
de:9b:67:44:25:9b:53:08:2c:d6:b1:a1:ca:8e:d7:de:85:ae:
27:b4:a9:e6:0f:78:55:8b:80:97:47:3a:86:8f:c9:24:61:3b:
03:d4:8e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:04 2026 by rpki-client