Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FDC71C43F2411F1833C74B8CE1D38B0.roa
File: 5FDC71C43F2411F1833C74B8CE1D38B0.roa (raw, json)
Hash identifier: UexOs5WV+J5/NN5Zi0GpAxzQUKGT7jg7Mtt9wTeD5+M=
Subject key identifier: 8A:D5:60:FB:B8:3D:D0:53:46:02:9D:83:FA:52:80:E1:DE:D5:DA:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FDC71C43F2411F1833C74B8CE1D38B0.roa
Signing time: Thu 23 Apr 2026 14:54:49 +0000
ROA not before: Thu 23 Apr 2026 14:54:44 +0000
ROA not after: Tue 09 Jun 2026 14:54:44 +0000
asID: 395793
IP address blocks: 154.81.50.0/24 maxlen: 24
154.82.162.0/23 maxlen: 24
154.82.164.0/22 maxlen: 24
154.83.8.0/24 maxlen: 24
154.83.9.0/24 maxlen: 24
154.83.10.0/24 maxlen: 24
154.83.11.0/24 maxlen: 24
154.83.24.0/24 maxlen: 24
154.91.152.0/24 maxlen: 24
154.91.153.0/24 maxlen: 24
154.91.154.0/24 maxlen: 24
154.91.155.0/24 maxlen: 24
154.91.156.0/24 maxlen: 24
154.92.205.0/24 maxlen: 24
154.92.207.0/24 maxlen: 24
154.93.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116463 (0x1c6ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 14:54:44 2026 GMT
Not After : Jun 9 14:54:44 2026 GMT
Subject: CN=69ea32b9-6cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:bf:c5:3f:19:ee:94:25:fa:f3:99:15:82:c4:
30:e2:24:4e:4a:53:ad:0c:8b:21:57:e8:18:f3:ea:
72:96:a6:f1:df:60:0e:bf:59:bd:6f:f7:5f:85:e4:
43:b5:cf:bd:3c:69:10:87:18:bf:c4:15:3c:32:46:
28:44:2f:bf:57:87:39:97:96:87:06:33:39:c8:a6:
bd:41:00:cc:24:1f:f5:d0:d4:98:c7:63:d6:80:9d:
48:18:bc:86:30:e4:5c:11:21:c5:40:cb:19:70:74:
64:9b:51:de:92:ed:dc:50:9a:37:17:c6:af:27:cd:
95:27:69:5d:39:ba:33:c2:62:a8:60:75:db:ae:bc:
7f:65:17:09:70:48:74:a0:f8:d7:96:d3:f4:59:11:
4c:0c:a1:cc:16:9d:cc:d2:e9:d5:0a:2d:d8:eb:d9:
57:0b:ca:68:d0:53:6a:65:5e:0a:91:d2:bd:ce:41:
45:7f:6a:17:f1:4d:01:27:74:98:81:81:c7:a5:17:
a3:f3:69:1e:c3:03:a8:85:b5:d5:c5:f3:d7:59:c9:
12:af:82:7d:70:1b:3e:63:c3:d6:82:17:a2:81:07:
16:53:70:af:15:c7:2d:f2:aa:0f:c1:57:ed:1b:73:
a2:69:b8:a9:fe:7b:b1:de:d8:db:37:f7:fc:ff:91:
a1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D5:60:FB:B8:3D:D0:53:46:02:9D:83:FA:52:80:E1:DE:D5:DA:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FDC71C43F2411F1833C74B8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.50.0/24
154.82.162.0-154.82.167.255
154.83.8.0/22
154.83.24.0/24
154.91.152.0-154.91.156.255
154.92.205.0/24
154.92.207.0/24
154.93.0.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:8a:74:f2:2b:dd:5f:a1:48:a1:39:1c:6c:65:83:4c:a6:f5:
ff:68:54:61:7d:9d:d9:2c:4a:11:80:fc:1b:a3:48:6d:4a:82:
ec:fa:d9:82:ff:34:1a:f3:74:65:49:d3:9c:26:12:0f:3d:aa:
7c:f6:8d:7c:74:9c:54:b0:b8:7b:e3:bc:a6:b3:72:69:b1:05:
bd:34:fb:b3:95:31:30:4c:b7:cc:ec:9f:c4:40:d7:7a:73:82:
9c:ff:a0:83:30:77:c4:b7:50:0a:29:ee:77:1a:8e:44:65:f0:
c0:f8:de:e6:2c:3c:8d:3e:e2:98:f0:43:52:95:a0:db:1b:27:
fd:89:2d:12:f4:9d:e2:a4:f6:b0:d8:f0:00:df:a3:08:5d:86:
4a:51:b5:82:62:7c:8a:c6:0c:73:76:e1:77:9e:ef:9c:19:6c:
37:e1:a7:25:87:60:e3:98:93:4d:bb:9e:d4:e0:f6:d4:43:ce:
2e:84:5a:24:48:3c:6b:5b:9a:4a:b6:62:99:36:f5:8e:50:73:
a5:b5:d8:71:9e:5f:43:bb:77:32:23:0e:35:d6:10:93:fb:f3:
1a:8c:a6:65:fc:70:91:bb:c3:1a:0d:32:21:e7:16:a6:d5:e9:
8d:e8:1a:9d:22:40:f4:f3:ee:f4:c1:a4:f2:2b:d8:cd:4b:1c:
f4:ca:49:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:23 2026 by rpki-client