Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/700AF8744A7B11F1B10F10BACE1D38B0.roa
File: 700AF8744A7B11F1B10F10BACE1D38B0.roa (raw, json)
Hash identifier: W82dNibtzswCO+/UFsezbv2GhN+qrGrsNQzwQtzURwU=
Subject key identifier: E7:97:15:A6:24:6A:D3:84:AC:A5:F5:29:0F:36:C9:E9:FF:40:D9:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA17
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/700AF8744A7B11F1B10F10BACE1D38B0.roa
Signing time: Fri 08 May 2026 01:15:45 +0000
ROA not before: Fri 08 May 2026 01:15:40 +0000
ROA not after: Wed 07 Jul 2027 01:15:40 +0000
asID: 328608
IP address blocks: 154.200.176.0/24 maxlen: 24
154.200.177.0/24 maxlen: 24
154.200.178.0/24 maxlen: 24
154.200.179.0/24 maxlen: 24
154.200.180.0/24 maxlen: 24
154.200.181.0/24 maxlen: 24
154.200.182.0/24 maxlen: 24
154.200.183.0/24 maxlen: 24
154.200.184.0/24 maxlen: 24
154.200.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117271 (0x1ca17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 01:15:40 2026 GMT
Not After : Jul 7 01:15:40 2027 GMT
Subject: CN=69fd3941-0a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bb:1d:99:56:64:ff:5d:99:53:62:17:49:28:
67:98:2b:a6:87:d4:41:94:35:e4:14:0c:46:7b:f7:
ad:0f:03:2f:ca:90:d6:ae:9d:2b:4d:19:a5:d4:de:
b6:c6:e4:db:f8:18:d6:9f:2c:16:41:dc:8d:1c:81:
00:48:ae:f6:8d:cc:f6:60:ac:70:85:22:a0:34:a8:
2f:4d:19:1d:83:78:57:97:06:77:4b:18:ab:ad:8f:
69:b2:82:91:d9:97:d6:e8:ef:b8:b6:37:b2:4c:35:
af:2c:13:fe:c6:ab:c4:a9:59:6c:ee:3f:69:03:f3:
b5:4b:dc:8f:e9:2f:e0:de:ba:4a:1c:31:eb:96:d8:
8e:8a:fc:c4:63:0d:8f:33:b2:15:74:24:5d:02:0b:
70:b2:13:29:db:41:52:a0:34:dc:aa:47:01:c5:a3:
53:2c:b8:eb:29:d4:4f:44:40:55:e1:c5:02:2e:a8:
5f:67:d3:5c:70:0b:2b:b9:a2:88:48:01:c0:0c:bc:
02:18:11:95:42:a1:b6:8e:63:ae:6c:e4:7f:3c:38:
82:ce:d4:74:10:37:cb:e3:d6:0b:48:8c:26:46:1b:
6b:2f:de:8f:1d:c3:76:e5:2c:3d:ab:65:29:f9:7f:
b6:c2:1c:a0:d3:39:8e:15:ee:f4:94:18:9a:f5:5e:
15:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:97:15:A6:24:6A:D3:84:AC:A5:F5:29:0F:36:C9:E9:FF:40:D9:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/700AF8744A7B11F1B10F10BACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.176.0-154.200.185.255
Signature Algorithm: sha256WithRSAEncryption
31:06:c7:c3:a8:29:08:9e:a5:aa:bf:d6:b9:4f:01:d5:46:5c:
fa:51:b4:f4:3e:b3:5b:51:a3:25:84:2d:a3:23:ec:37:0e:2d:
e8:6a:f0:97:9a:4a:cb:ce:b6:4c:3e:2b:4f:46:3e:17:71:35:
07:e7:0c:4a:f9:3f:ac:c0:ab:7a:c8:b5:51:40:bd:94:16:78:
e9:cd:19:e6:7f:16:9c:fd:26:76:94:8f:cf:c9:d0:c2:1b:cc:
de:54:0f:79:01:fd:14:89:16:f9:97:5f:35:3a:50:27:e9:f1:
f0:0f:97:7f:03:61:f0:8e:db:15:ec:7e:a5:75:86:ae:61:09:
39:bd:d5:a0:89:dc:01:06:84:b8:7d:29:f2:73:67:07:66:6b:
25:2c:f9:ee:62:7f:92:0d:f0:75:c8:4d:ad:45:51:c6:46:c6:
b5:27:99:b4:08:20:56:e7:07:09:88:29:e4:84:2d:c6:23:2a:
05:f1:fa:f3:ab:b4:0b:c9:9b:1d:2a:32:ae:e7:e9:ce:80:af:
ca:86:96:d0:25:0e:80:31:de:43:be:5e:84:10:38:e8:ac:16:
03:42:f3:bc:1d:48:42:f1:d5:67:30:da:2f:b6:0f:d8:7a:3e:
a5:db:0c:82:6a:a0:73:27:82:46:b9:41:51:d1:0a:01:a4:f6:
0e:32:38:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:10 2026 by rpki-client