Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/916320EA43BA11F1803A39B3CE1D38B0.roa
File: 916320EA43BA11F1803A39B3CE1D38B0.roa (raw, json)
Hash identifier: Rbk64ZWI51C0v+/WXfSqTKKAKHQMc45ezUxrhd5nd7A=
Subject key identifier: DC:AC:8B:1B:CF:83:73:02:41:7E:DD:81:7D:5C:E2:DE:60:C7:A2:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C7E8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/916320EA43BA11F1803A39B3CE1D38B0.roa
Signing time: Wed 29 Apr 2026 11:00:01 +0000
ROA not before: Wed 29 Apr 2026 10:59:56 +0000
ROA not after: Thu 01 Jul 2027 10:59:56 +0000
asID: 36898
IP address blocks: 154.214.44.0/24 maxlen: 24
154.214.45.0/24 maxlen: 24
154.214.46.0/24 maxlen: 24
154.214.47.0/24 maxlen: 24
154.214.48.0/24 maxlen: 24
154.214.49.0/24 maxlen: 24
154.214.50.0/24 maxlen: 24
154.214.51.0/24 maxlen: 24
154.214.52.0/24 maxlen: 24
154.214.53.0/24 maxlen: 24
154.214.54.0/24 maxlen: 24
154.214.55.0/24 maxlen: 24
154.214.56.0/24 maxlen: 24
154.214.57.0/24 maxlen: 24
154.214.58.0/24 maxlen: 24
154.214.59.0/24 maxlen: 24
154.214.60.0/24 maxlen: 24
154.214.61.0/24 maxlen: 24
154.214.62.0/24 maxlen: 24
154.214.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116712 (0x1c7e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:59:56 2026 GMT
Not After : Jul 1 10:59:56 2027 GMT
Subject: CN=69f1e4b1-ee26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5f:f5:ef:18:72:3a:9d:43:62:07:44:b9:49:
68:7d:da:a1:06:c5:6c:55:6f:52:35:72:68:37:c6:
12:2a:47:98:ab:f9:f9:d0:7b:2e:5d:29:44:60:82:
00:cf:bb:ce:ed:d7:75:79:76:d6:c4:2e:51:48:f1:
df:05:74:8d:e0:a0:26:cc:63:8a:ec:cd:fb:84:db:
79:f9:2a:4c:e6:5b:f0:98:61:6c:1f:2e:fb:c0:9a:
66:15:ab:c8:40:49:99:f2:fb:c3:9d:78:a7:e5:d8:
15:0d:27:07:2e:8f:e9:25:39:09:f9:be:d2:05:84:
fa:44:41:5a:cd:8a:06:ba:35:4d:0a:30:c3:8e:b3:
63:a3:9d:fd:be:18:5a:74:bd:b1:b9:05:84:26:49:
4c:ce:5c:7e:fa:58:ab:de:20:6f:7d:e6:13:1f:43:
d8:69:67:c7:42:ea:c6:3a:f2:5a:31:cc:b6:52:06:
9d:95:9e:e3:b9:d5:11:2b:4e:07:2a:8e:6f:9b:8d:
29:2f:cc:68:33:20:ac:90:ca:58:28:91:26:f9:58:
ab:d9:8a:14:af:26:ea:9a:45:ba:5d:88:d1:5a:5b:
da:86:ae:db:93:58:ce:28:04:2a:94:d9:7f:74:b5:
8a:ef:28:44:e8:36:b9:20:3e:8c:56:33:94:a2:ef:
db:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AC:8B:1B:CF:83:73:02:41:7E:DD:81:7D:5C:E2:DE:60:C7:A2:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/916320EA43BA11F1803A39B3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.44.0-154.214.63.255
Signature Algorithm: sha256WithRSAEncryption
64:2f:d7:97:d6:42:1a:8a:11:e6:42:30:47:87:50:e8:3a:73:
69:4b:8a:a3:3c:ad:d2:e0:66:03:f1:71:4d:1e:3e:12:f8:bb:
cd:04:eb:96:ba:c8:6c:03:52:28:34:5b:19:9e:05:25:22:50:
cd:7f:31:ff:21:00:9f:b4:58:c4:06:a1:1e:c6:d7:1f:e0:fc:
69:f1:36:45:19:b0:9d:ef:92:4b:9c:0e:d8:00:b0:4d:64:2f:
03:d7:5b:0c:97:86:a2:47:86:6e:28:1e:1b:cc:b4:e3:11:10:
48:17:dd:9c:d7:1e:b4:70:c2:68:d8:ac:5a:37:3d:7a:f5:4f:
8c:fb:5d:1a:00:98:70:a8:43:5c:c7:2c:fc:93:18:2a:11:f0:
be:43:13:e6:2d:9c:c2:b3:52:77:2d:fb:b1:b0:02:c9:ce:63:
98:e9:3d:af:7f:47:cb:38:8f:13:65:9e:a7:ac:ef:fd:5d:26:
80:34:d1:46:ce:b9:84:71:f5:3b:18:34:85:46:15:d5:82:6c:
ba:80:ef:49:f0:b8:33:ab:fd:e7:6f:59:e4:39:5e:e9:1b:90:
b2:be:de:55:4b:c8:82:c0:6f:45:5e:d0:d1:ad:4e:d1:43:47:
fe:5d:96:34:58:fd:e0:43:00:ab:9a:60:f5:8f:b7:28:60:dc:
c4:5e:96:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:30 2026 by rpki-client