Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30F2B9E8460B11F18E6E2ECECE1D38B0.roa
File: 30F2B9E8460B11F18E6E2ECECE1D38B0.roa (raw, json)
Hash identifier: DTbDwdWwvHqjrlv7iIX4pam/lBeXDkXMKCTUNU8RsMA=
Subject key identifier: CC:73:DC:EC:59:40:05:74:2F:1F:AD:5E:AB:0F:70:03:D2:65:09:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C929
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30F2B9E8460B11F18E6E2ECECE1D38B0.roa
Signing time: Sat 02 May 2026 09:42:11 +0000
ROA not before: Sat 02 May 2026 09:42:05 +0000
ROA not after: Tue 09 Jun 2026 09:42:05 +0000
asID: 63139
IP address blocks: 154.223.22.0/24 maxlen: 24
154.223.25.0/24 maxlen: 24
154.223.27.0/24 maxlen: 24
154.223.30.0/24 maxlen: 24
154.223.31.0/24 maxlen: 24
154.223.36.0/24 maxlen: 24
154.223.38.0/24 maxlen: 24
154.223.39.0/24 maxlen: 24
154.223.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117033 (0x1c929)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 09:42:05 2026 GMT
Not After : Jun 9 09:42:05 2026 GMT
Subject: CN=69f5c6f3-f83a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4c:6d:00:f4:9b:83:d3:59:41:51:21:ba:86:
d8:cb:b4:1e:d7:0b:9d:b7:7e:04:8e:c8:ff:46:46:
89:e6:14:3d:f5:42:1c:56:64:09:e5:97:18:38:16:
f6:b1:25:9a:a9:1d:7d:a5:16:b4:28:0a:d7:d4:c7:
e8:30:c5:31:b9:9c:cb:d5:4d:2b:c6:bb:28:85:3f:
70:5c:7a:2f:90:ff:bd:e9:17:fd:74:66:54:92:88:
a1:3e:4a:d6:ad:35:47:70:45:03:3d:7f:c1:a2:26:
04:a2:07:1e:f2:e5:02:32:8c:a6:61:a0:a2:5e:4b:
15:12:f3:92:bb:50:82:a1:20:c4:9e:08:3a:cb:27:
38:37:b2:81:b5:74:ca:e7:2b:98:97:91:1a:30:ee:
ce:f9:0d:da:21:ce:5a:0a:b7:fa:52:45:0a:42:bc:
c5:bb:e0:aa:26:cb:66:a5:f1:91:c1:b2:57:b3:ac:
4c:09:2c:39:00:b1:e7:25:d9:f2:7c:26:ad:78:cf:
81:d8:81:3c:f0:df:b4:9a:ab:66:27:88:3e:d9:8e:
af:c5:fe:26:11:27:c7:04:69:f2:46:2d:5e:35:66:
cd:4e:d4:d8:d8:96:87:74:84:18:8a:b5:6f:e7:49:
0b:91:a4:0a:dc:40:1c:74:18:75:ad:54:9e:5a:cb:
50:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:73:DC:EC:59:40:05:74:2F:1F:AD:5E:AB:0F:70:03:D2:65:09:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30F2B9E8460B11F18E6E2ECECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.22.0/24
154.223.25.0/24
154.223.27.0/24
154.223.30.0/23
154.223.36.0/24
154.223.38.0/23
154.223.50.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:d4:d4:e9:0d:7f:49:4a:e2:2a:20:62:a4:f7:1e:5c:fe:ff:
08:73:d8:af:82:85:ce:0e:1d:a0:7c:9e:f3:f6:ea:e7:1f:c5:
25:a9:7f:83:76:fe:c0:58:4f:e2:83:19:ee:dc:d0:69:1a:fc:
80:9a:3b:d4:9e:6d:35:6a:0e:0d:78:5d:b9:62:8d:83:4e:6b:
fd:ab:1d:d0:b2:1a:57:84:0b:a6:54:f6:b9:a3:7a:32:ff:28:
4a:a5:16:64:fc:b3:42:d7:c5:4b:43:16:b5:50:7d:30:3e:79:
75:71:d6:b0:05:fe:9b:ef:08:85:21:21:52:3a:b5:a5:4c:a5:
d5:f8:24:d1:d1:5b:e8:0d:9e:08:49:24:16:5c:18:30:8f:23:
90:e8:98:d4:91:fd:8a:d4:8b:52:6c:8b:de:90:eb:c8:6d:95:
de:da:1c:f0:f7:7a:4b:07:26:ba:f0:14:66:6b:05:a0:27:21:
e6:51:3c:9e:1b:e8:24:64:5e:86:2b:b1:0f:7a:93:76:4a:d9:
44:5b:98:9f:a8:31:a7:f0:02:6f:06:e8:4a:6a:76:58:47:77:
e2:27:93:75:4b:37:78:dc:44:26:c1:2c:3e:44:e3:f3:df:05:
f3:c1:1a:22:df:b7:f3:f5:34:88:6a:a4:d1:50:23:ce:ba:2b:
10:91:4d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:44 2026 by rpki-client