Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23B1B0E2448811F1AA641714CF1D38B0.roa
File: 23B1B0E2448811F1AA641714CF1D38B0.roa (raw, json)
Hash identifier: sKiZYAwwrprQd8M3cdU8AdURMu5+IKV4o4baEFAYnOE=
Subject key identifier: 83:74:6F:83:C4:37:8B:2F:C7:DB:57:70:A6:FE:CB:C4:54:4B:6F:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C821
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23B1B0E2448811F1AA641714CF1D38B0.roa
Signing time: Thu 30 Apr 2026 11:31:33 +0000
ROA not before: Thu 30 Apr 2026 11:31:28 +0000
ROA not after: Fri 05 Jun 2026 11:31:28 +0000
asID: 44559
IP address blocks: 154.209.193.0/24 maxlen: 24
154.209.194.0/24 maxlen: 24
154.209.197.0/24 maxlen: 24
154.209.198.0/24 maxlen: 24
154.209.199.0/24 maxlen: 24
154.209.200.0/24 maxlen: 24
154.209.201.0/24 maxlen: 24
154.209.202.0/24 maxlen: 24
154.209.203.0/24 maxlen: 24
154.209.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116769 (0x1c821)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 11:31:28 2026 GMT
Not After : Jun 5 11:31:28 2026 GMT
Subject: CN=69f33d95-9f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:05:89:3c:5b:91:5c:d5:9e:86:3a:16:22:06:
ae:e5:75:ad:1b:ab:65:7a:83:94:79:2c:9f:27:13:
bd:46:5c:24:f4:27:4c:a6:8d:c2:97:bc:2a:14:1a:
f2:98:0f:5e:af:21:a5:be:28:7d:d3:1e:05:e9:9e:
2b:20:43:aa:84:f3:b0:75:be:ac:da:ed:8d:69:79:
a8:40:ba:fc:92:d0:9d:aa:39:63:9f:4b:15:ff:83:
b5:36:fe:e5:49:4f:f7:c0:ca:3e:fc:36:f7:1e:06:
88:65:28:ad:0f:ec:71:47:83:3b:cb:18:a1:33:fe:
74:e5:13:5d:e5:74:4a:41:a6:6e:fc:71:31:1a:15:
16:93:a8:df:ba:71:0a:92:b3:10:2d:16:d5:3d:4e:
e6:6c:aa:9d:0c:59:ae:86:8d:2e:56:bb:be:3f:1e:
36:0d:67:29:ab:35:7d:68:a2:53:43:de:3c:68:96:
f0:7f:8b:3d:83:47:71:56:0e:1d:49:a0:9b:1a:3a:
ad:e1:8c:4e:bd:b1:99:8c:b3:cb:87:a7:46:8b:9b:
e2:6f:be:63:06:ff:c3:56:91:80:90:9d:e2:d6:6b:
65:30:26:4d:46:23:f8:06:c0:cc:d8:00:1a:9c:21:
9e:0d:5f:a4:f7:e5:92:db:fb:36:ab:3b:40:28:10:
2f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:74:6F:83:C4:37:8B:2F:C7:DB:57:70:A6:FE:CB:C4:54:4B:6F:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23B1B0E2448811F1AA641714CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.193.0-154.209.194.255
154.209.197.0-154.209.204.255
Signature Algorithm: sha256WithRSAEncryption
79:e7:1d:fc:d9:cd:e5:c6:83:56:2d:ad:b5:fd:a8:92:ad:ef:
c6:b3:70:ac:4c:84:94:88:c8:80:0f:fc:2b:9c:a8:fe:aa:ce:
ed:1d:3e:0b:a8:4a:3a:02:75:e3:19:aa:ae:ce:5f:d4:68:0f:
28:8b:2b:e9:1f:49:61:85:ce:05:5c:28:05:cf:75:98:85:38:
ee:c2:1c:d7:26:0d:0b:d7:63:ed:05:f3:0d:c4:d5:37:c7:c8:
82:95:46:f3:66:81:d4:b6:21:16:2d:b5:f1:60:51:e1:d6:7d:
00:32:b8:f0:02:51:ba:fa:ae:62:46:d9:d8:0e:67:3f:53:76:
f0:77:e6:ca:25:ed:fa:8d:66:0d:2f:80:ac:8b:fd:9f:d6:79:
e6:7e:74:e6:dd:ed:4a:13:e2:69:1c:18:22:a2:03:a9:0d:91:
c7:8e:b2:a1:6f:26:8f:a4:30:3d:56:1c:c5:8b:7b:83:2b:19:
1d:db:7e:00:a0:15:f4:7d:38:79:a0:d1:ed:1c:8d:70:e1:cc:
a5:93:e8:42:ce:a1:7d:59:84:35:30:b8:ff:f3:36:18:d1:01:
1e:80:f5:5c:7b:04:08:99:b9:fc:3b:6e:b8:3d:ab:ef:81:4a:
54:78:3d:47:18:d9:f7:7c:c6:34:30:32:a5:2c:3e:53:a5:ee:
10:e4:2c:80
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat May 9 11:03:42 2026 by rpki-client