Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/413DC4BA4A5111F18E4023BECE1D38B0.roa
File: 413DC4BA4A5111F18E4023BECE1D38B0.roa (raw, json)
Hash identifier: bBtZVItSfOYlotrZiGCS4a0o5LhSBuWmNiNkBUILwOs=
Subject key identifier: DC:0F:7F:53:20:25:06:7A:BE:6C:9B:B4:D8:8B:C7:F0:7E:3A:D0:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C9EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/413DC4BA4A5111F18E4023BECE1D38B0.roa
Signing time: Thu 07 May 2026 20:13:48 +0000
ROA not before: Thu 07 May 2026 20:13:41 +0000
ROA not after: Sun 21 Jun 2026 20:13:41 +0000
asID: 9304
IP address blocks: 154.203.241.0/24 maxlen: 24
154.203.242.0/24 maxlen: 24
154.208.76.0/22 maxlen: 24
154.208.84.0/22 maxlen: 24
154.212.144.0/23 maxlen: 24
154.212.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117230 (0x1c9ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 20:13:41 2026 GMT
Not After : Jun 21 20:13:41 2026 GMT
Subject: CN=69fcf27b-dacf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bf:45:5f:bb:47:91:06:08:84:9d:cd:0e:62:
cd:ff:5c:7d:4b:47:52:c2:ec:ad:f7:c4:5b:8c:c6:
16:f3:f1:8c:18:4d:c3:64:41:f7:13:75:16:14:35:
9d:90:db:bf:b2:1a:08:af:ab:a4:29:03:d3:74:87:
87:4a:65:63:5f:a9:fa:86:93:8c:2a:b4:ef:87:14:
d9:88:f4:6e:2a:df:30:4a:a0:c7:bc:9b:0b:d7:b8:
a0:f0:33:39:a0:4e:4a:0e:bd:38:5d:95:80:bf:48:
1a:44:b7:0f:b9:a9:a7:76:be:87:dd:15:4d:ed:de:
32:fa:85:75:dd:97:83:b7:49:b2:2e:4c:ec:ab:f2:
51:22:11:98:3b:4e:ec:45:d7:68:e1:5f:46:23:10:
cc:7f:0f:64:2b:3b:57:3c:ab:1a:1c:58:ff:9c:94:
c1:c2:70:60:35:30:72:b4:fb:94:a9:2f:f3:95:22:
c1:71:1a:f4:da:d9:e1:95:b4:eb:e7:d7:92:d2:51:
8d:f6:d3:af:ab:f9:d1:27:72:e5:f5:4a:7d:6e:f2:
36:e7:9c:fc:b4:e7:a4:d6:c8:07:0d:7e:c4:f1:ed:
d6:92:dc:3b:ee:8e:1b:12:03:f6:72:8e:86:28:54:
91:5e:0d:3e:97:2d:5d:a8:9f:97:b5:9f:5f:c7:a7:
19:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0F:7F:53:20:25:06:7A:BE:6C:9B:B4:D8:8B:C7:F0:7E:3A:D0:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/413DC4BA4A5111F18E4023BECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.241.0-154.203.242.255
154.208.76.0/22
154.208.84.0/22
154.212.144.0/22
Signature Algorithm: sha256WithRSAEncryption
27:e0:9d:8c:b2:3c:01:dc:20:f3:76:93:16:66:73:7c:10:63:
57:e1:e1:e2:11:09:fb:ec:4b:47:02:42:3b:0a:b7:3b:9e:d4:
ba:4f:7e:3a:d4:d9:70:95:79:62:09:81:9a:3f:2b:56:06:7f:
5a:47:d2:4e:6b:37:17:6d:53:85:36:39:fd:f6:b4:5e:9f:ac:
59:86:ff:6f:0e:fb:54:3b:ab:9e:25:ca:22:c4:13:e2:a0:4f:
07:db:4a:4f:8f:ec:c5:84:72:e5:ff:81:14:7a:34:b8:d1:cd:
9c:93:d7:38:6a:3b:4d:ac:38:5e:c2:a8:91:e3:d8:76:ce:19:
7a:d8:3e:8b:11:0f:7d:f6:37:40:29:0f:e1:d1:96:bc:1b:e1:
88:af:06:ca:a0:1d:da:21:7e:c1:89:2d:cf:93:41:c6:0b:67:
37:cf:e3:3f:77:f6:56:07:18:7d:1c:95:eb:f2:50:19:bd:c8:
1a:40:82:2b:b8:9a:4a:a9:a0:36:f4:2e:1e:8e:2e:66:9a:98:
01:eb:06:2c:8a:53:30:d0:fb:2a:b4:9d:aa:13:c2:0c:fa:76:
d0:ff:2f:c3:df:04:54:ca:75:55:01:f0:cd:63:b8:b7:ca:62:
57:66:dd:92:a6:bb:09:ef:75:f9:b5:e1:7c:d3:f1:b1:9b:a0:
0c:ee:67:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:12 2026 by rpki-client