Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AE2FB18492311F1A8B07D1DCF1D38B0.roa
File: 9AE2FB18492311F1A8B07D1DCF1D38B0.roa (raw, json)
Hash identifier: VyPY4Hoj93hWp8WJkdQ8sJiCbA7Y5RDJSK+sJBeVP/w=
Subject key identifier: B9:0A:F7:E9:4E:32:B2:EA:A2:79:98:1D:35:F6:5C:6C:55:B5:CC:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C987
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AE2FB18492311F1A8B07D1DCF1D38B0.roa
Signing time: Wed 06 May 2026 08:14:30 +0000
ROA not before: Wed 06 May 2026 08:14:25 +0000
ROA not after: Sat 13 Jun 2026 08:14:25 +0000
asID: 199707
IP address blocks: 154.83.130.0/24 maxlen: 24
154.83.131.0/24 maxlen: 24
154.83.144.0/24 maxlen: 24
154.83.145.0/24 maxlen: 24
154.83.146.0/24 maxlen: 24
154.83.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117127 (0x1c987)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 08:14:25 2026 GMT
Not After : Jun 13 08:14:25 2026 GMT
Subject: CN=69faf866-caf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:08:61:e6:67:34:e7:da:7d:6a:2d:7e:0f:f0:
3a:88:3f:0a:5e:32:2d:97:b5:37:86:f0:f5:ef:4f:
92:f6:89:4f:cf:2d:9f:ea:e4:f4:1e:aa:b1:b7:51:
fd:b3:c6:bd:99:98:e7:b7:47:c6:24:79:31:6a:43:
93:70:87:9e:d6:19:b7:18:21:c2:ca:a3:64:db:cd:
7b:d7:d1:68:b7:6a:36:be:69:01:29:ff:07:c6:da:
5c:5d:5c:3e:c5:09:3f:1f:2d:06:39:b8:eb:05:a9:
e9:67:a6:ce:72:c7:95:4c:82:33:2d:b6:d5:e3:8c:
32:a8:31:5e:36:56:53:17:3d:96:49:3d:52:be:6b:
3d:6d:af:74:14:e1:20:e8:7b:1b:39:7a:f4:16:84:
db:c3:d4:76:96:7b:11:08:18:1d:43:71:e5:3f:92:
01:56:cf:2f:c5:39:80:88:ac:69:98:86:f5:41:88:
e2:06:12:09:2b:20:ff:ae:90:73:d6:48:52:bc:25:
b0:92:d9:a1:ae:66:5c:64:c8:b1:51:17:15:99:0a:
2f:05:8c:41:d2:ed:d5:45:6b:e2:75:89:16:25:5d:
79:24:79:ac:09:d1:79:b9:1e:66:71:10:ae:db:05:
06:13:99:27:a4:f8:78:64:20:44:5a:f0:ef:18:b3:
94:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0A:F7:E9:4E:32:B2:EA:A2:79:98:1D:35:F6:5C:6C:55:B5:CC:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AE2FB18492311F1A8B07D1DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.130.0/23
154.83.144.0/22
Signature Algorithm: sha256WithRSAEncryption
06:af:9e:da:84:d0:df:e6:e4:a6:54:ad:d2:a3:65:42:7d:32:
ec:00:83:41:2e:4b:36:c0:35:d9:4e:25:ed:62:f7:f3:2d:ea:
00:84:d9:96:a4:4a:26:6f:a6:c5:ba:a6:a7:59:49:88:95:32:
89:eb:98:6d:60:68:75:64:5e:ea:5e:1f:cb:7a:00:00:0c:10:
92:4a:e9:13:f5:df:30:c6:c4:26:7f:40:71:e6:43:fb:2f:f0:
c4:07:88:2f:98:1b:e6:60:3e:dd:92:c1:0a:96:a7:40:87:a9:
8e:32:94:8d:7c:bf:5d:a4:cf:94:e6:f9:3d:da:cf:08:c0:85:
f3:9f:a3:27:de:6e:f5:3c:62:36:89:49:64:6e:39:a8:91:c5:
a8:b3:13:ef:7b:95:39:a8:c1:b1:c1:ba:8e:92:07:c3:85:f7:
74:aa:a1:34:30:6f:fa:6a:ba:de:5a:42:8c:80:2c:a0:95:fa:
25:77:63:83:20:b6:61:94:86:2e:04:d7:a2:8b:f1:d0:2f:55:
29:99:ce:e7:3c:e5:eb:70:43:0c:a4:bd:23:8c:e9:30:62:31:
34:4a:0a:99:6a:fe:c3:41:3e:a7:28:40:7d:87:d6:00:f5:bc:
31:9f:e6:26:a5:c5:6e:0f:09:ab:9d:6d:25:fe:16:f2:27:c9:
d8:a7:91:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:46 2026 by rpki-client