Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D337C48478511F18524F7CCCE1D38B0.roa
File: 9D337C48478511F18524F7CCCE1D38B0.roa (raw, json)
Hash identifier: SSrt/JUL9+jcR7PmqL5UXxxqMypgm587EocedF+VkrM=
Subject key identifier: CC:18:B3:34:04:4D:D2:84:2C:90:34:BF:C4:98:7A:46:95:F7:72:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C94B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D337C48478511F18524F7CCCE1D38B0.roa
Signing time: Mon 04 May 2026 06:51:02 +0000
ROA not before: Mon 04 May 2026 06:50:57 +0000
ROA not after: Mon 08 Jun 2026 06:50:57 +0000
asID: 45194
IP address blocks: 154.84.195.0/24 maxlen: 24
154.84.196.0/24 maxlen: 24
154.84.197.0/24 maxlen: 24
154.84.198.0/24 maxlen: 24
154.84.199.0/24 maxlen: 24
154.84.223.0/24 maxlen: 24
154.84.240.0/24 maxlen: 24
154.84.241.0/24 maxlen: 24
154.84.242.0/24 maxlen: 24
154.84.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117067 (0x1c94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 4 06:50:57 2026 GMT
Not After : Jun 8 06:50:57 2026 GMT
Subject: CN=69f841d6-c206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f9:e6:93:aa:a6:e6:14:cf:2b:cd:38:3e:6d:
7a:43:26:71:96:0f:7c:52:8a:72:98:f1:d4:73:53:
d7:59:cb:70:40:7f:e9:7d:fd:b4:ca:bd:5d:4b:82:
ff:22:11:6d:68:04:18:75:6c:14:6e:40:2d:af:be:
97:2c:ec:ce:b9:57:89:57:79:f2:fd:89:72:c0:98:
d3:f5:94:2a:27:8b:98:06:2c:f6:f3:71:d9:6a:1a:
d6:1a:67:f2:06:0e:b3:a0:7a:b5:17:57:83:a0:53:
bc:fc:97:ae:6d:13:19:5f:f0:31:2a:44:58:f6:38:
a9:44:27:f3:73:01:a4:d7:ba:94:7f:a6:eb:54:42:
f5:e9:16:59:11:79:46:c6:6e:d2:50:fe:d7:ab:4b:
46:94:e7:95:e2:66:95:29:1c:92:e4:72:1d:8e:2c:
4e:45:06:ea:24:90:9b:26:57:c6:bc:73:10:f5:af:
0d:25:e7:8c:f2:3d:6d:e7:b9:ff:9b:5d:7a:c5:f2:
60:a0:fe:3f:62:6f:75:3b:88:8b:c0:62:58:f3:67:
eb:e5:9c:98:af:3b:ad:d8:63:11:e4:7a:99:c9:ff:
38:19:79:8e:c8:cb:e8:40:4a:fb:e1:8b:8f:72:dc:
cc:a0:e1:e1:39:60:a5:5c:d5:54:63:3f:23:e9:0d:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:18:B3:34:04:4D:D2:84:2C:90:34:BF:C4:98:7A:46:95:F7:72:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D337C48478511F18524F7CCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.195.0-154.84.199.255
154.84.223.0/24
154.84.240.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:a7:fb:fa:2c:7d:52:05:03:cb:05:98:50:26:57:0d:13:a6:
be:31:04:75:09:75:ce:04:ff:96:47:e3:2a:56:05:49:42:78:
70:78:d6:50:13:0d:f4:52:84:ea:85:39:eb:31:11:7b:c9:d0:
97:33:02:26:a7:ac:32:83:c2:76:4e:13:88:30:db:65:9c:92:
0d:3e:43:c3:ec:16:5b:2f:97:7e:ce:25:4e:c5:40:8f:14:cd:
20:c8:f7:54:88:fd:91:32:5e:c4:c2:29:13:bb:62:be:6b:f6:
3a:9e:38:cb:fd:f6:45:c1:96:d8:79:41:64:e0:bf:06:5c:b2:
1e:f6:22:90:d3:17:30:ca:06:f1:c4:8b:9e:40:2d:28:cd:86:
b9:b5:44:49:63:82:16:d9:ba:04:a8:d3:16:06:49:d7:d7:3e:
92:39:e2:cd:5f:bc:99:51:03:99:9e:92:25:e6:81:a0:fe:21:
ae:16:75:de:3b:d4:05:cb:80:43:7b:2f:ff:e3:01:ee:06:4a:
28:5c:f6:12:69:c2:a1:f3:a8:23:4c:d6:e8:e6:df:11:de:c3:
9f:c3:8d:11:f1:ec:f9:0f:d1:19:c3:ac:02:70:a1:99:12:de:
24:79:33:a6:de:1a:5c:b3:b7:b9:33:5d:74:10:24:84:21:80:
22:3e:e1:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:45 2026 by rpki-client