Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EE07DCC332B11F190784616CF1D38B0.roa
File: 7EE07DCC332B11F190784616CF1D38B0.roa (raw, json)
Hash identifier: 3sjdlseqE/UgzfZ0Ldkz23mUWD5KBVvSHujN46/6bBU=
Subject key identifier: 4E:32:22:3F:4B:1C:7B:7C:E2:2C:7B:36:BF:3E:3C:5D:80:CF:C9:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C388
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EE07DCC332B11F190784616CF1D38B0.roa
Signing time: Wed 08 Apr 2026 09:15:33 +0000
ROA not before: Wed 08 Apr 2026 09:15:29 +0000
ROA not after: Sat 18 Apr 2026 09:15:29 +0000
asID: 397423
IP address blocks: 154.202.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 11 Apr 2026 11:22:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115592 (0x1c388)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 09:15:29 2026 GMT
Not After : Apr 18 09:15:29 2026 GMT
Subject: CN=69d61cb5-3a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:8d:bf:b4:b7:96:8a:c5:24:08:f3:51:a7:6b:
80:b3:10:2e:0c:33:fe:4c:c2:f9:69:4c:c2:aa:29:
e8:ac:71:88:2d:32:c7:72:b3:f5:62:75:84:d4:c3:
90:5d:ae:f1:ac:93:88:9b:8f:53:93:d6:47:93:f7:
41:9a:dc:5c:77:c1:ea:13:c7:0d:e7:37:83:ed:0f:
ba:45:6f:89:5d:b6:7f:bf:1e:6c:16:87:01:31:ca:
42:1d:5d:46:c4:93:2b:91:d9:be:b3:d5:47:94:58:
75:4d:76:e3:d9:9b:24:5a:a0:1a:df:07:e6:77:fe:
1b:33:28:58:61:f6:76:59:fb:2e:6b:60:88:25:6c:
69:7e:95:8f:0a:e9:0e:a1:d2:99:1b:cf:3c:ea:6d:
09:e4:ec:ae:b0:dc:a0:e1:4e:e1:fa:49:66:d7:01:
7f:05:18:bc:86:97:19:eb:f5:a0:ce:a7:21:50:05:
0d:07:36:2e:81:6d:c5:00:eb:e8:04:12:51:87:9b:
5e:c7:04:56:3b:38:8e:a9:03:6e:5d:12:ec:23:4e:
b6:13:76:7f:3d:a7:44:bc:60:74:f7:a4:f1:84:25:
ff:3c:3a:7a:af:da:9a:86:06:46:34:fa:a3:7b:f1:
8b:22:88:be:f7:68:9d:76:8c:12:57:a7:a1:9f:b1:
b0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:32:22:3F:4B:1C:7B:7C:E2:2C:7B:36:BF:3E:3C:5D:80:CF:C9:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EE07DCC332B11F190784616CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.3.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:e0:72:c8:8c:b6:d7:1e:5b:c7:a4:2d:95:d7:1a:b1:06:29:
38:4d:bc:1b:77:ac:c3:12:29:fa:90:82:51:9d:07:89:4d:cd:
39:ae:01:61:8a:f1:1f:8c:6a:ec:6e:a4:2f:0b:9e:22:a2:5a:
cc:d2:72:ae:9f:24:84:21:3b:04:9a:4b:c0:c6:2a:ef:b7:96:
a4:70:89:af:b0:b6:4a:ad:04:ff:47:84:b0:18:c6:91:27:67:
4d:35:44:3e:94:ca:aa:1c:8e:31:0e:4e:4c:08:44:27:4e:27:
05:04:25:aa:97:2a:19:36:51:77:4f:79:16:be:1a:a4:22:c4:
66:ec:40:de:0c:57:e8:c1:20:54:9e:76:6b:49:ef:4b:94:cc:
41:35:14:f7:69:62:aa:ce:c9:ce:e1:80:55:78:53:17:5e:84:
f3:72:3c:66:12:16:45:96:19:9c:58:03:da:8c:69:a6:9b:62:
b8:b7:86:a8:e6:e8:d2:f1:79:4c:23:68:ca:67:f8:0b:40:db:
84:de:70:fb:0c:6a:d1:fb:7a:c9:91:76:28:45:af:14:bc:ff:
dd:10:6f:19:2e:d1:da:a1:c2:5f:67:c8:18:08:e5:4c:3b:99:
dd:ff:56:8d:e7:ad:38:5d:9c:4a:98:82:ee:01:aa:16:ca:f3:
c9:5a:00:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 9 16:05:19 2026 by rpki-client