Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/462C4618447F11F1AB834EDFCE1D38B0.roa
File: 462C4618447F11F1AB834EDFCE1D38B0.roa (raw, json)
Hash identifier: rdzZtUyWHyrBM/euPcai1HhTXkgLUmZnjumld46XHVE=
Subject key identifier: 1A:52:DC:E4:9C:6C:6D:81:59:5E:34:26:64:B8:DE:AD:B7:61:7A:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C81D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/462C4618447F11F1AB834EDFCE1D38B0.roa
Signing time: Thu 30 Apr 2026 10:28:06 +0000
ROA not before: Thu 30 Apr 2026 10:28:01 +0000
ROA not after: Wed 03 Jun 2026 10:28:01 +0000
asID: 17561
IP address blocks: 154.198.8.0/24 maxlen: 24
154.198.188.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116765 (0x1c81d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 10:28:01 2026 GMT
Not After : Jun 3 10:28:01 2026 GMT
Subject: CN=69f32eb6-a265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e2:8f:37:4b:a8:d7:16:8f:50:23:24:73:88:
23:f7:8a:ab:a0:ca:86:9c:e2:1e:d2:49:ab:cb:c7:
d2:ee:15:56:e1:85:d5:2c:48:90:c1:53:30:cf:b5:
e4:02:36:31:3c:21:6d:1d:09:42:d1:cd:7f:23:e2:
be:3d:62:15:39:50:f2:fc:9b:9b:9b:7b:42:33:42:
c7:da:30:b6:bb:82:e1:e5:56:f1:94:a7:e1:37:40:
76:5a:4d:fc:d8:d0:70:02:06:25:92:cc:42:c2:ad:
85:00:4a:68:50:ae:20:15:74:a7:cb:99:da:bf:e4:
d8:d8:8d:16:39:0d:5d:7a:a8:f5:44:6e:c3:1a:8b:
73:19:49:f9:2a:d6:39:45:f6:76:fc:25:9a:e1:87:
0d:8b:12:19:13:91:94:6c:3e:bc:5e:bb:d2:47:8e:
aa:7a:95:2a:cc:35:7e:33:c3:9e:e0:21:46:34:5f:
01:04:41:9d:e6:0f:15:36:08:82:41:c9:ef:85:9b:
30:07:7c:0d:1d:b2:01:f3:27:6c:e7:41:28:a8:a7:
2e:2f:b4:b8:fd:d3:d6:1a:b2:63:20:2f:88:18:b4:
1c:87:d9:7f:cf:9f:a0:37:d0:e8:b4:8f:e2:1e:34:
cf:56:60:a9:5b:73:f9:0b:b2:5a:fc:f6:0e:3a:66:
51:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:52:DC:E4:9C:6C:6D:81:59:5E:34:26:64:B8:DE:AD:B7:61:7A:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/462C4618447F11F1AB834EDFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.8.0/24
154.198.188.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:a1:7d:26:a2:0f:1b:22:04:54:ab:2d:b6:8b:30:e5:c6:20:
05:35:d6:8c:c8:1b:c5:ea:85:65:fa:52:35:28:e7:f6:88:73:
a7:58:d5:fc:8a:44:2c:2a:59:81:50:de:dd:bb:15:40:4f:a4:
0b:c2:4d:eb:0a:e2:46:a5:48:47:c5:f8:24:e6:ad:ca:01:8c:
0e:1f:e6:33:99:6f:cf:e5:f3:9c:76:a4:bc:ac:60:93:7a:7c:
65:b7:1e:96:02:22:4d:bb:81:b1:30:db:5b:7b:e8:1f:3b:bd:
06:12:0a:b3:4f:90:b6:0c:04:ce:e2:a1:4d:02:fa:df:eb:59:
19:e6:54:2d:92:c4:51:78:6b:d9:3a:81:df:40:bb:45:eb:b2:
e1:06:96:72:d6:43:2d:d5:a3:4f:9c:af:c2:75:ca:2e:fd:5c:
a8:ec:01:55:63:85:2e:a9:68:76:77:68:d9:f7:78:6c:01:80:
97:ff:76:8b:0e:b8:af:75:24:0b:47:f4:77:79:23:9e:94:0f:
ce:40:a3:e8:0c:13:81:9a:85:53:9b:ff:b4:9a:7b:74:3f:a3:
bc:6c:34:aa:f6:7c:d0:3a:32:bc:ac:8c:99:f9:9e:13:77:c1:
56:cc:c0:5a:21:4d:12:cb:1d:6c:c8:33:02:8c:63:f6:00:26:
05:fc:33:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:03 2026 by rpki-client