Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7B83F40449311F186EA2DDACE1D38B0.roa
File: A7B83F40449311F186EA2DDACE1D38B0.roa (raw, json)
Hash identifier: EaAbvi+F6WRUeiupKfJewhJffjEaRdD31amG9v10kOQ=
Subject key identifier: 21:DA:C2:AC:58:4E:9F:46:A3:62:9E:3B:B9:18:7B:4F:2B:67:18:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C83B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7B83F40449311F186EA2DDACE1D38B0.roa
Signing time: Thu 30 Apr 2026 12:53:59 +0000
ROA not before: Thu 30 Apr 2026 12:53:54 +0000
ROA not after: Fri 05 Jun 2026 12:53:54 +0000
asID: 202656
IP address blocks: 154.218.28.0/24 maxlen: 24
154.218.29.0/24 maxlen: 24
154.219.196.0/24 maxlen: 24
154.219.198.0/24 maxlen: 24
154.219.199.0/24 maxlen: 24
154.221.56.0/24 maxlen: 24
154.221.57.0/24 maxlen: 24
154.221.58.0/24 maxlen: 24
154.221.59.0/24 maxlen: 24
154.221.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116795 (0x1c83b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 12:53:54 2026 GMT
Not After : Jun 5 12:53:54 2026 GMT
Subject: CN=69f350e7-1463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:69:27:28:0b:7b:a6:e6:03:5c:ec:f1:83:
3e:c1:86:bb:42:1a:d7:f8:5b:98:14:84:0c:88:f8:
93:5f:8f:1d:4a:4f:71:14:d2:d9:da:f3:94:35:24:
7d:38:92:1c:8e:6f:ba:ab:16:08:6e:a8:25:25:34:
70:44:f9:36:67:f1:55:00:cd:52:45:84:be:df:2a:
e0:7a:e5:a4:1f:05:13:af:e5:96:08:45:f5:6a:19:
3e:d4:2a:c9:d7:6b:66:53:f2:4a:64:24:8b:31:c6:
b2:52:14:8d:fe:6e:23:e9:3e:01:81:00:22:8c:05:
ed:c0:92:f4:9c:3a:47:88:13:ed:e7:78:10:9a:d4:
f2:24:d7:cb:74:a6:ca:a3:a5:a4:a1:7f:96:61:b5:
13:27:5e:0a:27:7f:c3:24:4f:25:9b:ab:7b:c8:11:
54:fd:fc:27:73:17:9b:17:55:d0:ed:0a:e0:28:0e:
44:f1:bf:76:1a:d0:24:8e:95:75:7e:ea:20:83:e6:
30:75:bb:5e:2e:c1:fc:e6:96:ab:f2:ad:58:60:9f:
84:a3:1f:e9:11:b0:51:d3:80:24:39:84:06:a4:04:
e6:5d:e0:23:5d:45:2a:b4:b3:a2:0a:f0:00:0d:74:
44:87:04:b1:08:17:c1:1a:ba:67:04:92:d2:c6:4d:
e6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:DA:C2:AC:58:4E:9F:46:A3:62:9E:3B:B9:18:7B:4F:2B:67:18:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7B83F40449311F186EA2DDACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.28.0/23
154.219.196.0/24
154.219.198.0/23
154.221.56.0/22
154.221.61.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b1:23:0f:f5:8c:ba:d9:19:40:ec:29:0a:00:46:aa:ad:6d:
f7:58:a8:1c:06:de:b1:33:20:86:78:5e:aa:e5:49:1e:d5:91:
e8:e9:c0:be:bb:b5:b9:d5:80:f8:d8:fe:45:b3:0d:25:8c:7d:
14:bf:27:e2:d1:eb:d6:0c:6c:f3:45:cd:bd:7e:27:f0:3e:9d:
cc:03:6b:8b:d4:1f:1b:9a:93:2d:e8:7b:f0:e0:15:a2:7d:dc:
72:4c:ea:97:f0:88:36:88:41:64:e0:eb:99:a1:34:f6:f0:31:
f8:9e:72:7b:73:78:d5:4d:fe:78:80:b2:34:6b:4e:c9:db:df:
1b:1b:10:28:d4:8f:dc:33:d3:1e:dc:c2:eb:dd:8e:26:78:00:
74:c0:d3:fc:3b:68:24:96:b6:5f:5c:36:aa:b2:eb:97:9e:fd:
35:3a:0d:e5:32:77:3f:ca:0e:47:a2:a0:0e:27:97:5a:a4:cd:
eb:74:96:be:b3:5f:e1:7e:26:ca:09:bb:3d:14:0c:96:31:7a:
bb:da:58:4b:ad:86:39:b3:1d:25:e1:64:61:d1:b8:d4:7f:46:
ce:93:74:de:14:67:05:b2:f3:2d:d4:01:65:67:ba:01:0a:04:
61:78:5e:14:8d:94:56:9b:13:54:12:e9:26:2b:18:b2:22:20:
f7:58:72:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:03 2026 by rpki-client