Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E0F89F02B5011F199311E9ADAE4EC9C.roa
File: 4E0F89F02B5011F199311E9ADAE4EC9C.roa (raw, json)
Hash identifier: 8fshTbAfYMy/eTbCS7bdZ3W45bTTmNhF6tlKrswvIiY=
Subject key identifier: 75:84:7F:81:76:0B:CD:51:7D:EC:3F:52:B0:EF:64:A1:F1:FC:0E:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C198
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E0F89F02B5011F199311E9ADAE4EC9C.roa
Signing time: Sun 29 Mar 2026 09:18:54 +0000
ROA not before: Sun 29 Mar 2026 09:18:49 +0000
ROA not after: Mon 06 Apr 2026 09:18:49 +0000
asID: 54801
IP address blocks: 154.198.9.0/24 maxlen: 24
154.198.10.0/24 maxlen: 24
154.200.241.0/24 maxlen: 24
154.200.242.0/24 maxlen: 24
154.200.248.0/23 maxlen: 24
154.201.7.0/24 maxlen: 24
154.201.8.0/22 maxlen: 24
154.201.40.0/23 maxlen: 24
154.213.211.0/24 maxlen: 24
154.213.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 31 Mar 2026 00:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115096 (0x1c198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:18:49 2026 GMT
Not After : Apr 6 09:18:49 2026 GMT
Subject: CN=69c8ee7e-ee2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:58:8e:ec:61:92:0b:a3:51:d2:e8:20:5b:
fd:5a:5b:fe:ab:bb:5e:a5:d3:a0:04:f9:27:bd:a4:
f8:c6:9a:24:71:3f:97:33:ee:30:63:35:0a:c7:13:
32:93:27:69:cd:6e:4b:35:3c:0e:34:73:e8:c9:7a:
38:f4:55:dc:c5:21:8e:60:c8:86:a0:32:7a:c2:2c:
bf:dc:ec:c7:d2:56:3e:a2:9f:57:7c:e1:f3:3b:b4:
c8:80:6e:48:c5:4c:06:2e:a8:4b:98:5c:5c:2a:d3:
d5:a1:f5:00:7a:a3:4c:a8:06:03:16:ef:9e:89:40:
ac:e0:a6:65:7d:d0:42:ec:06:4d:cb:27:0f:3b:00:
66:ff:3c:c2:31:05:4a:d0:29:9f:d4:b4:13:d6:89:
4f:a1:89:89:50:ca:60:63:59:1b:78:c3:e5:78:b1:
01:f8:0c:81:6f:a5:15:bd:ab:a1:4e:e2:44:33:c6:
a0:bd:e5:25:8f:3e:64:bb:1e:d8:b5:fe:c8:4d:3c:
53:ec:49:ed:ed:1e:d2:71:f2:a3:3e:c1:7d:2c:fb:
a5:de:cc:ba:2d:2f:82:5d:d9:41:13:a1:8e:21:60:
07:89:63:b4:9c:da:b4:e2:68:31:7a:42:fa:d5:c4:
c4:d8:b6:18:4d:a9:c5:05:41:56:88:07:b2:f7:54:
93:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:84:7F:81:76:0B:CD:51:7D:EC:3F:52:B0:EF:64:A1:F1:FC:0E:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E0F89F02B5011F199311E9ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.9.0-154.198.10.255
154.200.241.0-154.200.242.255
154.200.248.0/23
154.201.7.0-154.201.11.255
154.201.40.0/23
154.213.211.0-154.213.212.255
Signature Algorithm: sha256WithRSAEncryption
c7:51:a5:6c:51:f7:05:8d:79:1d:79:d6:13:1a:c0:32:d5:c8:
ae:22:1d:e5:d3:ec:cd:06:17:10:a2:75:ac:cb:ee:b5:12:aa:
5b:77:e4:c0:07:51:ae:a3:f9:82:de:c7:3e:3a:d5:02:63:ff:
a1:f7:97:3e:85:3c:99:76:24:18:13:c5:28:23:d1:dc:20:f3:
c7:2c:0b:23:28:5b:97:ff:9e:16:72:e3:73:79:ea:16:ee:02:
ab:45:80:d9:d2:2c:62:95:c6:06:87:73:02:87:e3:96:b6:76:
18:82:50:43:13:7e:f5:ac:a0:de:80:98:c9:e5:ab:b2:e0:b9:
5b:8f:16:54:13:bc:cc:68:88:c3:96:e6:ee:1e:4b:7e:48:dc:
9d:53:19:f3:24:f9:24:82:c5:4e:dc:22:5c:05:55:c2:6e:df:
b1:e0:c0:c5:7c:d7:1b:62:0e:53:da:b6:84:d0:b9:38:fc:c0:
ca:fa:e2:71:bd:26:cc:12:5d:3d:44:fb:59:60:fa:b3:27:6f:
e1:42:0a:47:f3:6d:fd:f2:3b:96:41:cc:9d:e3:18:30:e4:5e:
39:29:35:5b:47:a8:cc:66:44:6b:28:7b:87:f3:23:2d:55:fc:
79:83:54:75:03:ab:4a:1a:4d:c7:3a:9d:8f:bf:1f:3c:66:77:
39:72:76:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 30 00:00:28 2026 by rpki-client