Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A357AF04ACD11F1A8D8AEBFCE1D38B0.roa
File: 9A357AF04ACD11F1A8D8AEBFCE1D38B0.roa (raw, json)
Hash identifier: trphHYBvrri+C90Di63A7ubqAhcch8l5a3sc0A1HsEM=
Subject key identifier: 24:F7:E1:2A:49:42:4D:A3:0F:72:35:AA:E1:F3:5E:24:1A:D6:7F:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA79
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A357AF04ACD11F1A8D8AEBFCE1D38B0.roa
Signing time: Fri 08 May 2026 11:03:54 +0000
ROA not before: Fri 08 May 2026 11:03:49 +0000
ROA not after: Mon 08 Jun 2026 11:03:49 +0000
asID: 151347
IP address blocks: 154.84.195.0/24 maxlen: 24
154.84.196.0/24 maxlen: 24
154.84.197.0/24 maxlen: 24
154.84.198.0/24 maxlen: 24
154.84.199.0/24 maxlen: 24
154.84.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117369 (0x1ca79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 11:03:49 2026 GMT
Not After : Jun 8 11:03:49 2026 GMT
Subject: CN=69fdc31a-b778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:83:35:cb:1b:f8:fe:17:0a:ef:b3:4f:34:1a:
fe:91:1d:fb:42:dd:70:9d:13:f6:21:34:92:f6:e8:
66:92:54:ee:63:57:05:2a:03:ca:64:a0:06:9c:64:
9d:c3:72:f5:04:75:23:dc:29:91:66:5b:58:c1:d3:
f6:46:de:7a:89:c4:c7:76:96:46:da:ac:80:8f:0d:
5a:63:32:49:c0:3e:cc:99:24:9a:f8:2a:e5:5c:c9:
09:1d:96:6b:22:77:03:6a:ef:4d:8f:e9:07:69:ac:
ac:e6:e0:71:b5:9c:96:68:46:37:22:06:6a:f4:de:
c5:a6:2d:3b:af:bc:36:40:f9:ec:27:f4:00:93:38:
e9:e6:3d:e4:ea:eb:93:39:79:36:80:b0:1c:6d:5c:
7f:e4:2c:04:f7:a6:56:7b:ab:ae:46:ac:f3:ea:1f:
fc:41:8d:7e:c2:2f:24:f3:c1:6a:85:fa:47:b9:0e:
53:b3:53:07:84:f3:90:6a:30:bd:eb:62:be:2e:3d:
9f:32:77:15:dd:cb:22:92:01:46:6d:3d:26:57:80:
a8:1e:f8:5f:bb:34:77:24:53:03:b6:e0:e1:d4:8e:
d7:68:02:67:0a:8e:d8:e5:6a:3d:ec:c2:2a:13:90:
ad:5e:6c:24:1d:a6:a7:01:30:bc:a2:9d:58:83:a6:
79:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F7:E1:2A:49:42:4D:A3:0F:72:35:AA:E1:F3:5E:24:1A:D6:7F:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A357AF04ACD11F1A8D8AEBFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.195.0-154.84.200.255
Signature Algorithm: sha256WithRSAEncryption
be:4d:46:69:a5:24:e9:d7:de:a9:a6:9a:3f:8a:f2:92:2a:cc:
71:2d:1e:b9:e0:e0:72:2c:a6:b7:c4:7c:05:55:2e:d8:bd:6f:
97:d5:a6:a6:8c:8c:f4:95:a2:04:73:b9:45:b1:5d:34:48:30:
f0:b3:9c:e2:c7:b2:3f:64:15:27:3c:24:3d:93:2c:71:68:3e:
59:86:f6:71:ed:8a:78:d0:86:b5:f2:f9:0f:6d:c8:98:32:20:
7c:34:02:c2:aa:21:1f:a4:53:28:c1:d7:30:8a:d0:06:bf:25:
b4:1b:3b:a1:fd:80:cc:fe:b3:bf:90:9e:1f:14:e7:b9:68:6e:
11:34:fc:82:24:90:b4:53:a0:e9:6b:3f:eb:6a:b3:c0:65:70:
94:70:90:a6:22:0b:aa:7c:71:10:4d:a8:24:75:7b:4a:43:a0:
3d:b2:0b:90:bc:99:a7:44:26:0b:62:e4:b5:e0:0f:57:7b:c0:
7f:8d:7a:85:f6:1a:e7:cc:6d:10:c9:20:e9:14:04:de:0e:6d:
80:20:16:19:46:89:54:ab:42:fb:aa:d0:46:ac:b0:a2:7c:05:
e1:8c:c7:3d:b9:5d:41:63:cd:95:41:b0:c1:17:8e:d8:49:fa:
ac:82:12:49:c2:1f:e5:f2:32:36:8d:01:b4:98:e1:79:c1:98:
06:cc:7f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:51 2026 by rpki-client