Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACE94BBA3CCF11F19A1791D9CE1D38B0.roa
File: ACE94BBA3CCF11F19A1791D9CE1D38B0.roa (raw, json)
Hash identifier: 5DXWKw5s8nswUemKaRk+HlkUqiGIng32E+FOpxUO1c8=
Subject key identifier: CF:A9:4D:66:7F:63:72:D1:9D:93:D3:1F:B6:E9:E1:DB:43:3F:DB:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C63A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACE94BBA3CCF11F19A1791D9CE1D38B0.roa
Signing time: Mon 20 Apr 2026 15:43:28 +0000
ROA not before: Mon 20 Apr 2026 15:43:23 +0000
ROA not after: Wed 27 May 2026 15:43:23 +0000
asID: 138915
IP address blocks: 154.93.84.0/23 maxlen: 24
154.93.86.0/24 maxlen: 24
154.93.92.0/24 maxlen: 24
154.93.93.0/24 maxlen: 24
154.93.100.0/23 maxlen: 24
154.93.104.0/23 maxlen: 24
154.93.126.0/24 maxlen: 24
154.93.127.0/24 maxlen: 24
154.94.86.0/24 maxlen: 24
154.94.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116282 (0x1c63a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 20 15:43:23 2026 GMT
Not After : May 27 15:43:23 2026 GMT
Subject: CN=69e649a0-f229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ff:f5:49:52:c4:97:02:26:e1:92:a3:d2:fb:
8a:d5:ee:c2:59:2a:bc:cb:ae:1d:b4:31:2c:64:ce:
78:02:3b:10:d9:8d:b6:12:2d:e4:07:ed:a8:7a:96:
3c:1b:85:e9:9b:be:0e:b9:dc:c6:9e:c2:0e:b8:bd:
1c:d8:0a:de:9e:ba:b3:a7:f4:e7:ee:b5:79:2b:77:
57:98:c1:51:f9:d2:8d:75:b4:b6:28:36:b7:fa:ba:
f6:e3:9b:05:eb:6b:16:f4:5d:27:50:e7:9a:94:3c:
44:9c:e8:74:2c:7e:38:38:f6:98:3f:cb:af:4f:92:
0e:6e:10:32:c1:20:c2:36:2e:0a:f2:2f:a7:fa:56:
fc:66:4d:4c:7c:e2:0d:57:4e:85:ba:9c:a5:45:22:
22:01:63:28:a7:ad:68:f0:f7:72:57:7b:85:5b:63:
17:e1:41:7b:64:b2:e9:4d:ab:cd:b3:d6:dc:29:5b:
18:0f:6e:7e:06:39:17:4f:a1:d5:60:ac:7f:e2:72:
89:47:8c:79:b1:37:68:5e:86:43:df:97:b3:b5:3c:
4c:32:4a:9d:9a:f1:8d:90:34:2a:31:01:83:3f:c6:
67:83:ae:0a:a4:23:0b:5c:52:0d:60:ba:76:7b:6b:
0a:63:be:19:64:eb:3a:40:bd:e5:fa:94:80:c0:db:
9c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:A9:4D:66:7F:63:72:D1:9D:93:D3:1F:B6:E9:E1:DB:43:3F:DB:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACE94BBA3CCF11F19A1791D9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.84.0-154.93.86.255
154.93.92.0/23
154.93.100.0/23
154.93.104.0/23
154.93.126.0/23
154.94.86.0/24
154.94.116.0/24
Signature Algorithm: sha256WithRSAEncryption
73:21:4c:f2:aa:af:63:c3:8c:c2:eb:fc:6d:fd:04:85:d2:e7:
c0:25:fa:bb:ea:6d:11:8a:d8:d1:4b:3f:58:39:89:ae:42:cf:
59:86:f0:6d:e4:05:34:56:9b:5d:2d:9c:8b:73:a8:76:e1:a3:
80:ae:82:4d:07:e6:b3:86:c4:6f:b7:70:ef:1c:18:35:a1:41:
ea:70:d5:9b:30:03:24:b0:9a:ba:e4:70:96:e8:5b:5e:c9:7e:
0b:bc:0a:c7:0f:92:7f:d1:d3:77:18:86:8d:30:19:18:4b:5c:
c4:75:f1:72:da:3b:72:d6:30:64:6e:f4:0d:02:6b:26:88:c0:
33:df:a4:cf:ad:78:f8:eb:f7:3b:72:6e:a1:76:9d:0b:6f:17:
94:43:c8:ba:1f:b5:c8:07:c0:40:27:ee:75:14:c2:c6:22:f7:
51:36:f5:e5:12:09:0c:a1:7f:2f:b1:69:97:6a:48:d4:a9:71:
15:32:63:84:79:f8:d9:b8:16:fc:85:3b:8d:fd:58:73:23:da:
14:4b:3a:e6:5a:a9:5d:be:29:f0:6f:20:8c:e5:f2:d8:f2:c3:
75:b1:33:bb:f3:1f:21:84:b6:c6:75:9e:cb:ab:db:e9:a7:e5:
f1:88:2a:26:f0:69:d5:67:e0:cb:76:b3:32:bc:80:74:81:d2:
1e:5c:94:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 10:59:53 2026 by rpki-client