Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ABBCFBA459311F1B8CDEFE6CE1D38B0.roa
File: 7ABBCFBA459311F1B8CDEFE6CE1D38B0.roa (raw, json)
Hash identifier: O4zZVVlmQrR49rgkf7Jzguo82ekQy49EgSlg4ZBbyZM=
Subject key identifier: 2A:C8:3E:20:29:A2:D4:85:1D:8A:2A:D3:C6:84:18:2E:2D:34:EB:BF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8F1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ABBCFBA459311F1B8CDEFE6CE1D38B0.roa
Signing time: Fri 01 May 2026 19:25:15 +0000
ROA not before: Fri 01 May 2026 19:25:10 +0000
ROA not after: Fri 05 Jun 2026 19:25:10 +0000
asID: 48031
IP address blocks: 154.222.216.0/24 maxlen: 24
154.222.217.0/24 maxlen: 24
154.222.218.0/24 maxlen: 24
154.222.219.0/24 maxlen: 24
154.222.220.0/24 maxlen: 24
154.222.221.0/24 maxlen: 24
154.222.222.0/24 maxlen: 24
154.222.242.0/24 maxlen: 24
154.222.252.0/24 maxlen: 24
154.223.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116977 (0x1c8f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 19:25:10 2026 GMT
Not After : Jun 5 19:25:10 2026 GMT
Subject: CN=69f4fe1b-df44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:0d:48:39:f7:11:68:7c:62:8f:f6:99:1a:
e8:a5:00:4f:83:0b:8b:8f:1c:dc:2e:72:d7:d6:e4:
a7:b0:e1:27:f3:4a:ba:9d:7c:f8:6c:70:27:79:fd:
c3:ea:17:60:e3:ea:6d:99:51:1c:af:d5:a6:82:81:
b0:7f:67:f5:af:4f:18:ec:59:b3:df:e4:ff:ce:57:
96:fc:0d:36:2e:94:68:c0:bb:1f:7c:0f:ba:43:56:
ba:c0:fd:45:77:a8:d5:1e:74:1b:bf:05:40:63:56:
e8:c2:b8:90:4e:aa:6c:35:8a:ac:aa:73:ad:cf:60:
82:09:e5:b9:2f:b5:11:e7:c8:5e:d3:f3:23:13:73:
a6:69:2e:52:48:23:54:18:f8:e9:4a:35:a5:b2:ae:
c5:69:e0:17:08:a9:29:55:35:02:38:48:c1:a2:42:
85:56:a4:5e:5f:f1:94:1f:e2:52:4e:a3:77:7c:e8:
8a:85:33:6b:8d:7d:6f:b2:e0:6a:88:3c:c4:e5:dd:
3b:7f:7a:79:b4:f4:e1:ef:3d:60:c2:c9:ab:1c:77:
fb:04:f7:af:7c:74:0d:21:97:ca:14:06:0e:59:38:
30:d2:39:c7:68:8e:ba:df:76:f4:38:c4:99:65:80:
5b:ac:ed:81:66:1d:fe:24:87:1d:8b:0e:31:a8:65:
14:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C8:3E:20:29:A2:D4:85:1D:8A:2A:D3:C6:84:18:2E:2D:34:EB:BF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ABBCFBA459311F1B8CDEFE6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.216.0-154.222.222.255
154.222.242.0/24
154.222.252.0/24
154.223.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:83:f4:7b:96:eb:51:94:c5:27:bc:ea:7c:5b:e1:b9:bb:d2:
58:e6:75:79:ec:9c:c7:44:1a:5a:6a:d7:9a:ee:1b:a7:2a:2a:
4d:8e:31:de:ea:a9:23:64:51:ab:47:2f:a5:ca:2b:3e:bd:ca:
41:f2:ba:26:8c:d8:4a:24:a0:4f:32:9d:a0:1a:58:52:1e:3a:
34:e6:03:8f:1b:28:83:00:37:ea:c2:63:12:53:93:4a:df:1d:
98:50:ce:de:b8:8c:cd:7c:1d:ba:8f:28:57:6a:13:e0:ab:e9:
d0:b4:72:20:c1:a8:80:cb:3c:a6:9d:aa:01:2a:37:8c:bd:98:
68:63:61:87:2c:20:d3:85:25:22:21:34:78:2b:b4:6d:cd:c6:
be:c5:6c:5f:f9:bc:e4:b2:4a:8b:1b:3d:47:b2:f5:c5:5d:ab:
46:92:80:e9:30:9f:af:e6:6f:3a:62:aa:46:6d:64:ed:5b:6e:
36:7e:73:6e:b0:41:35:b3:f8:09:e9:a9:07:ec:63:cf:f1:ab:
e8:67:60:ad:12:6e:61:70:de:8f:0e:73:43:4b:72:49:1f:02:
5f:92:e8:52:a0:64:3f:ef:b6:7d:ef:27:46:a1:80:c7:4e:6a:
24:f1:a3:da:dc:8d:2a:3c:11:08:ed:60:f4:10:d9:ac:b2:30:
6a:22:f1:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:44 2026 by rpki-client