Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5237FF763E9711F18C6962CFCE1D38B0.roa
File: 5237FF763E9711F18C6962CFCE1D38B0.roa (raw, json)
Hash identifier: 9UwVXQ9Kvy9N833UU5uBM1PhosBKRZoarJyu1aUFk5I=
Subject key identifier: D8:8B:64:A1:1D:2B:93:7B:E0:D8:61:2A:B3:EF:65:E5:F0:5D:03:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5237FF763E9711F18C6962CFCE1D38B0.roa
Signing time: Wed 22 Apr 2026 22:05:07 +0000
ROA not before: Wed 22 Apr 2026 22:05:02 +0000
ROA not after: Fri 29 May 2026 22:05:02 +0000
asID: 59187
IP address blocks: 154.221.32.0/22 maxlen: 24
154.221.32.0/23 maxlen: 24
154.221.32.0/24 maxlen: 24
154.221.33.0/24 maxlen: 24
154.221.34.0/23 maxlen: 24
154.221.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116398 (0x1c6ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 22:05:02 2026 GMT
Not After : May 29 22:05:02 2026 GMT
Subject: CN=69e94613-b9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a1:f3:39:f0:87:b0:61:17:51:e2:d9:f9:70:
b4:7f:9f:59:8c:8f:2a:25:28:1a:52:f9:e7:ea:f5:
80:02:f3:44:05:69:fa:67:87:bc:9e:a8:77:c1:04:
d9:c1:db:dd:42:03:41:21:4d:e9:64:d7:53:36:ef:
78:84:1b:ed:a5:b6:cc:0d:c8:43:14:e3:a3:d6:f8:
b5:63:0b:69:ad:88:7a:15:92:69:ac:30:7a:f5:98:
57:41:1c:98:14:12:cb:0e:d0:5e:f2:58:99:2c:0e:
83:e7:ae:1e:ce:8d:4e:58:c9:11:e3:81:37:37:5a:
39:77:fb:8a:a6:f7:05:9f:94:13:1f:e9:dd:01:32:
a4:e1:ad:4c:7a:75:5c:df:a1:b5:b9:8a:8c:37:db:
df:61:b7:69:a7:1e:36:14:12:57:e0:52:78:89:6d:
a1:f0:a8:64:26:a7:f8:31:3a:9c:be:d1:49:e4:03:
75:22:26:dd:62:23:b9:62:f9:d8:74:3a:a0:30:ec:
94:39:2d:1e:56:1b:00:85:df:71:7d:92:ce:c2:27:
bc:5b:b1:fa:cb:1b:53:e1:88:c9:e8:eb:b4:33:c7:
08:83:7a:89:fb:4c:03:6d:53:fc:48:ac:cc:19:72:
3e:80:80:e3:5b:0a:d1:34:a3:14:7b:49:f5:e2:01:
87:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:8B:64:A1:1D:2B:93:7B:E0:D8:61:2A:B3:EF:65:E5:F0:5D:03:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5237FF763E9711F18C6962CFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.32.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:f1:30:78:e6:f2:31:9c:05:45:51:7e:e7:71:6d:21:e0:27:
c3:95:6d:3a:32:71:21:6d:d1:e2:df:77:b0:60:37:2d:33:ba:
cf:0b:46:e8:47:89:46:43:24:13:51:70:97:c2:68:c4:07:09:
ea:1f:84:26:fa:f8:97:fb:3b:aa:d2:52:4d:55:28:08:44:ff:
61:77:f0:c1:1d:69:c4:ca:7c:f6:2e:e7:7e:06:1b:f0:fb:22:
fe:f3:61:99:4e:e4:82:9d:6d:86:f0:65:fe:10:00:0d:aa:28:
b2:d0:72:8f:ce:30:20:f8:f8:80:88:a2:46:9a:56:b5:71:98:
90:20:fd:e5:90:f9:6d:98:01:54:f7:2f:b0:16:9b:42:34:f6:
92:22:af:3e:b9:c9:4e:81:30:b4:37:b8:82:ac:1f:50:9f:c4:
84:e9:fc:70:b2:2a:75:83:43:7c:0e:f7:59:10:8a:67:93:1c:
b8:3f:be:39:00:b7:1b:05:de:e8:f4:73:e7:25:45:7d:42:3d:
0a:0e:7e:39:95:01:91:df:57:ef:bb:b0:20:2b:12:ec:d0:25:
fa:f7:ae:c9:fb:f9:0b:c4:f6:f1:8d:35:1a:5a:43:d7:f1:5b:
b4:2f:51:e1:cc:05:1a:72:48:4b:45:15:44:3b:76:1d:e1:e7:
90:2a:e6:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:57 2026 by rpki-client