Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/545A7DCC40B011F1BF4BF4AECE1D38B0.roa
File: 545A7DCC40B011F1BF4BF4AECE1D38B0.roa (raw, json)
Hash identifier: 1rkUDLAINejbdwwyyuDGstT1HciikAtvAimpjSgHye0=
Subject key identifier: 57:93:7B:BB:6C:33:9F:4F:9D:3B:B2:90:EA:31:7D:0E:14:D9:71:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C788
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/545A7DCC40B011F1BF4BF4AECE1D38B0.roa
Signing time: Sat 25 Apr 2026 14:09:10 +0000
ROA not before: Sat 25 Apr 2026 14:09:05 +0000
ROA not after: Fri 12 Jun 2026 14:09:05 +0000
asID: 20326
IP address blocks: 154.83.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116616 (0x1c788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 14:09:05 2026 GMT
Not After : Jun 12 14:09:05 2026 GMT
Subject: CN=69eccb06-fe85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:d4:16:a2:03:79:cd:1b:24:f9:24:97:a0:
8e:18:aa:6e:b8:b9:2c:b0:0b:8a:7b:1a:5e:78:21:
a9:d3:4b:7e:db:34:b7:fe:05:ee:ac:56:6f:4c:e8:
29:b5:14:46:f7:e8:fd:31:de:bb:22:66:52:fa:74:
ba:7d:e7:f8:e8:b0:f8:67:ba:09:bc:90:63:b5:03:
53:6e:94:42:16:e5:76:6d:ad:02:61:a0:a7:67:8b:
61:e7:07:9e:19:13:7f:e3:0d:6f:e8:5d:67:28:b8:
92:95:64:ec:1f:f9:55:15:1f:c9:73:9c:20:11:bc:
72:71:55:3e:f2:7b:d3:66:93:fc:a2:51:f8:3a:2e:
1c:6a:96:7b:35:7f:81:63:77:bf:99:33:0a:3d:77:
82:08:2b:e7:fb:c4:29:e3:3c:d3:aa:6f:f0:9e:86:
a0:7c:5b:55:a7:68:ee:80:a4:12:31:fa:39:44:9d:
ee:64:d0:01:a0:68:f8:2b:4c:83:a7:5b:c1:b9:ad:
24:15:d1:5a:0a:50:00:c3:25:f0:4e:6b:d7:a3:90:
1c:76:6b:d3:04:4c:f3:a8:ce:ff:a7:7f:32:0d:e1:
e6:4e:f0:e8:11:3e:c2:b5:37:50:6d:f7:55:49:14:
18:00:b4:03:3e:a2:3a:a3:60:1a:6d:d8:66:4e:1e:
8a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:93:7B:BB:6C:33:9F:4F:9D:3B:B2:90:EA:31:7D:0E:14:D9:71:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/545A7DCC40B011F1BF4BF4AECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.184.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:78:f0:a9:9e:58:77:67:7c:49:99:3b:2d:74:37:16:f3:34:
d6:e1:3b:df:76:44:fe:05:72:fb:6a:1e:fd:ce:8d:6d:4f:d0:
ce:6f:89:fe:83:c5:d3:cb:d1:53:6c:96:b9:e5:32:10:6f:43:
2f:11:76:dd:20:af:21:7c:4b:78:61:9e:5c:e5:f5:92:b0:f9:
bb:52:12:17:90:17:a4:2c:3b:8d:05:4f:ca:81:e2:07:5c:f4:
64:af:23:78:d1:1b:c4:3f:06:1b:06:c2:39:68:7f:48:14:26:
12:10:1c:a6:42:83:72:a2:cb:a1:ec:fe:a4:d5:f1:21:84:f7:
cb:ee:5c:8e:4d:9e:3d:a1:c6:76:e4:a6:4c:ad:35:11:29:54:
ba:0f:35:5f:1d:53:00:d5:96:85:b1:00:84:62:eb:80:1a:76:
55:01:26:73:c4:fd:56:71:55:34:a9:b1:83:f7:fe:9e:96:91:
c1:3a:dd:ea:ad:48:ab:96:00:c0:64:a8:7c:2c:21:89:d1:c8:
bc:65:8e:d0:c9:32:06:54:e1:e7:ee:a8:91:c6:7c:f2:fb:a2:
df:4f:8f:df:0d:6f:75:d1:b1:20:0f:eb:50:f5:99:79:43:e6:
0c:ea:cc:94:1a:d0:c0:4d:73:38:01:34:5b:3f:e0:34:41:60:
d6:20:a3:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:47 2026 by rpki-client