Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C8D207A2CCF11F1BBB6C2D3DAE4EC9C.roa
File: 5C8D207A2CCF11F1BBB6C2D3DAE4EC9C.roa (raw, json)
Hash identifier: ENC+8g4vhnE006nPF9O6+zrK6B+4gG3ld0v22FtVgEs=
Subject key identifier: C6:1B:E2:17:E7:19:D0:3D:14:A0:F2:9B:E8:9E:6B:67:AD:A8:4D:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C1D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C8D207A2CCF11F1BBB6C2D3DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 07:00:55 +0000
ROA not before: Tue 31 Mar 2026 07:00:50 +0000
ROA not after: Sat 01 Aug 2026 07:00:50 +0000
asID: 21859
IP address blocks: 154.197.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 Apr 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115152 (0x1c1d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 31 07:00:50 2026 GMT
Not After : Aug 1 07:00:50 2026 GMT
Subject: CN=69cb7127-5475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4d:f8:79:a6:cf:c3:c1:ae:c0:9b:10:7f:79:
c0:e1:a3:d6:84:6a:7c:96:9a:d3:b9:dd:79:8b:b3:
2b:48:1d:75:7d:0d:3f:2d:43:c5:6e:fc:3a:e3:a5:
20:f7:a9:d5:8d:0a:49:7e:df:b9:a9:46:9e:15:13:
c5:c3:68:11:de:03:57:63:a0:05:f8:f9:07:39:95:
2d:34:fa:07:1f:49:05:00:2c:ee:3e:79:e7:7a:b4:
99:89:f4:9d:47:4a:d9:80:d5:61:c7:b1:22:6b:49:
35:a6:20:e8:0e:23:e9:56:ba:cf:1d:52:3f:c2:8e:
6f:11:ea:ed:d4:8e:27:cd:4f:10:39:ff:6c:5e:18:
e7:e2:20:ff:6e:3f:6a:29:7b:aa:c6:18:f8:40:3e:
ab:92:94:49:ec:95:55:8e:75:e2:cf:aa:7a:6f:d5:
1e:78:34:c4:f8:61:f9:dd:e9:f7:15:3e:be:09:b2:
1d:ec:05:6a:3d:2f:e2:3c:5b:d5:e2:ab:5b:c1:8d:
0e:ed:99:c7:a6:b1:94:06:b1:52:c5:1e:90:2f:16:
0b:f1:1d:a2:cf:41:67:31:df:44:56:ca:da:3a:ba:
11:16:d3:98:d8:c5:75:e3:5b:72:b7:31:38:da:89:
b1:8c:16:9b:52:86:b4:6f:5a:5c:9a:dd:9e:84:25:
d8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:1B:E2:17:E7:19:D0:3D:14:A0:F2:9B:E8:9E:6B:67:AD:A8:4D:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C8D207A2CCF11F1BBB6C2D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.45.0/24
Signature Algorithm: sha256WithRSAEncryption
37:77:f8:c9:09:f6:0f:bc:e3:4e:68:d9:8f:66:ca:42:bc:06:
ad:93:39:84:b1:92:1d:c1:e5:e5:49:bb:c0:b9:19:18:7e:5f:
43:4c:b9:3d:f2:01:7a:93:a8:8b:36:9d:9e:41:59:e7:8c:73:
21:d3:19:fe:9d:27:45:f2:bf:23:4b:cf:44:5c:71:06:78:9b:
d8:ff:5c:7a:0b:e6:e3:bc:92:4b:e9:d3:ce:eb:b8:79:3a:02:
91:9a:37:ed:0d:35:50:76:a6:8b:9e:64:b3:9b:3c:e4:36:09:
09:bf:e0:b1:eb:d8:bc:87:9e:33:fd:42:9b:43:f4:81:84:f5:
22:05:79:3f:c8:2b:7d:a4:70:81:f7:38:38:44:11:44:c3:99:
f8:cd:31:8d:c9:2c:68:03:95:94:cf:69:4e:92:6c:21:6f:7d:
48:cd:04:b8:64:a8:1e:79:49:51:01:f1:93:6b:4f:ea:e9:e4:
ee:dd:75:ba:11:74:a6:d5:34:2e:e9:75:76:9e:0c:7c:d9:55:
88:ea:ab:f4:f8:b4:13:cc:84:91:8c:97:e1:1b:61:95:22:1e:
ef:7e:c5:2e:32:15:4d:14:c1:9d:1b:35:39:db:d2:b7:5a:04:
c8:80:5f:d6:72:3e:fa:50:34:f1:28:bf:97:bd:3c:c9:48:0d:
e3:4b:11:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 7 04:59:37 2026 by rpki-client