Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7474E43E22CA11F1B6835EA8DAE4EC9C.roa
File: 7474E43E22CA11F1B6835EA8DAE4EC9C.roa (raw, json)
Hash identifier: wEzedE65C3/JznbvESGaMD85aecFxPhBlLepfP/KG+0=
Subject key identifier: 5D:20:3E:33:1F:DD:1D:8E:C2:92:DF:8F:86:53:EB:C8:48:10:D0:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BFB0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7474E43E22CA11F1B6835EA8DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 13:00:36 +0000
ROA not before: Wed 18 Mar 2026 13:00:31 +0000
ROA not after: Wed 25 Mar 2026 13:00:31 +0000
asID: 45669
IP address blocks: 154.80.0.0/17 maxlen: 24
154.81.224.0/19 maxlen: 24
154.91.160.0/22 maxlen: 24
154.91.164.0/23 maxlen: 24
154.198.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 25 Mar 2026 13:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114608 (0x1bfb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 18 13:00:31 2026 GMT
Not After : Mar 25 13:00:31 2026 GMT
Subject: CN=69baa1f4-e83c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ea:aa:97:7c:34:b2:b0:04:e8:87:a3:8d:13:
18:5c:29:82:12:0f:4d:a3:77:13:81:af:91:66:33:
41:bd:37:f8:a1:69:11:9e:d8:ec:04:f0:1f:1c:40:
57:3b:da:95:fc:cd:74:03:7b:21:05:fc:fa:a5:e3:
94:f8:ff:d4:8f:6c:82:93:46:2e:53:11:fc:c8:bd:
2a:3e:a4:ba:72:0d:4a:45:1c:a0:05:79:34:d8:00:
f4:7b:7e:d0:76:29:fc:36:17:86:05:5e:9e:92:ef:
a9:d8:94:76:24:43:c9:80:00:03:37:a1:20:d2:05:
f8:1d:c8:ca:aa:7a:67:5a:f6:ef:bb:ce:43:73:b1:
8e:76:f7:94:0d:2f:82:0d:15:0e:d2:cd:51:0a:f3:
f4:66:51:c9:38:18:e0:44:f5:c1:cd:ad:1d:6a:75:
f1:90:62:9f:2d:45:2e:58:0e:81:27:b0:07:1b:03:
e3:9d:92:f0:60:64:d6:0c:a4:1c:cf:08:8f:b3:23:
59:21:8d:11:5b:eb:c5:e3:fe:ba:16:2b:97:74:2f:
28:0b:ea:4e:04:57:2a:bc:f6:59:df:dd:ac:92:1c:
4a:0a:e9:33:37:2f:08:83:a1:c0:f2:ad:37:44:e8:
9f:74:c4:27:d4:0d:2d:b3:c7:61:df:d8:19:96:37:
2c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:20:3E:33:1F:DD:1D:8E:C2:92:DF:8F:86:53:EB:C8:48:10:D0:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7474E43E22CA11F1B6835EA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.0.0/17
154.81.224.0/19
154.91.160.0-154.91.165.255
154.198.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1e:dd:eb:c7:4b:97:ab:c0:1a:a2:49:b7:55:d9:5c:57:d2:f7:
41:b0:6d:1e:85:b3:76:59:99:74:d4:b2:b0:84:9f:b8:25:2a:
b2:f2:9d:9f:2f:7d:08:2b:d3:6d:d1:c1:75:65:a8:3a:45:1b:
fd:c5:1c:9c:e9:2d:22:fc:d4:25:9d:ef:a0:df:bf:99:f4:1b:
93:c9:e6:fe:98:09:a6:a9:90:40:d8:67:59:bd:0f:75:61:ae:
e5:b8:62:e9:0a:4e:51:28:d9:f4:f8:d5:c8:dd:86:ff:cb:cb:
be:60:cf:da:0a:bd:35:51:f7:e7:84:9f:1c:fc:0c:a1:79:de:
95:2a:9b:41:b0:f2:71:bd:f1:3d:9f:94:92:32:7e:5b:ce:22:
ce:11:80:07:ab:e3:1a:5a:15:10:d6:12:1d:a8:65:db:c8:b7:
63:a7:25:4f:b9:32:52:c6:cc:cd:4b:15:a3:45:3c:38:2e:25:
bf:cb:a5:0a:09:73:70:7b:4c:7a:e2:37:bc:a1:09:88:0b:2c:
e3:58:95:47:06:58:64:ac:c3:5c:98:73:92:8b:b7:9f:a4:d5:
c1:d4:3e:fd:c0:e3:ff:86:c1:1c:36:b0:2d:c4:b1:61:6c:af:
6c:80:39:72:5b:a9:33:57:eb:86:40:a2:62:80:b6:67:1b:36:
68:1b:15:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:17:31 2026 by rpki-client