Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF99E4FE458111F199C6F4FBCE1D38B0.roa
File: AF99E4FE458111F199C6F4FBCE1D38B0.roa (raw, json)
Hash identifier: G5YslGvEV1lotJLSdF3FYW16T2xaB07TVWK2eX68ExU=
Subject key identifier: 0B:25:70:A3:B7:91:B4:D8:56:74:BF:13:6C:0B:26:D2:E4:74:20:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8C9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF99E4FE458111F199C6F4FBCE1D38B0.roa
Signing time: Fri 01 May 2026 17:17:53 +0000
ROA not before: Fri 01 May 2026 17:17:47 +0000
ROA not after: Fri 05 Jun 2026 17:17:47 +0000
asID: 49505
IP address blocks: 154.209.208.0/24 maxlen: 24
154.209.209.0/24 maxlen: 24
154.209.210.0/24 maxlen: 24
154.209.211.0/24 maxlen: 24
154.209.212.0/24 maxlen: 24
154.209.213.0/24 maxlen: 24
154.209.214.0/24 maxlen: 24
154.209.215.0/24 maxlen: 24
154.209.216.0/24 maxlen: 24
154.209.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116937 (0x1c8c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 17:17:47 2026 GMT
Not After : Jun 5 17:17:47 2026 GMT
Subject: CN=69f4e041-5519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:03:fc:46:a0:b1:65:69:24:87:d0:53:f1:c2:
0d:a5:26:d6:c4:0f:34:f8:49:2f:e6:47:55:15:b7:
60:29:cb:92:89:ae:db:68:59:38:4b:46:10:e8:39:
b1:cd:68:e4:16:e5:87:94:8a:9e:9b:f7:d3:ca:86:
47:60:73:08:7e:db:cd:d3:a7:7b:5b:d9:c3:d8:df:
2f:84:ac:cb:73:4a:98:ca:55:63:3b:60:b9:37:3f:
43:fa:92:02:74:87:96:39:fb:e0:21:5e:60:e3:70:
2f:24:e8:00:b0:89:4e:3d:c3:47:3f:45:19:dd:3f:
c6:d2:b7:83:9c:59:27:15:f6:6a:ec:45:d3:49:3a:
be:3d:e4:ab:09:a1:4d:3f:bf:ab:65:0d:c8:1f:2b:
d0:68:69:19:78:39:00:f5:83:9f:f8:91:5b:58:bd:
e6:7d:5d:0e:85:27:be:27:36:ab:67:b4:95:e5:30:
27:70:20:df:cd:58:3f:2d:1e:bd:a5:90:b6:b3:62:
e7:a8:53:9a:0f:00:d0:9a:e2:d7:6a:09:e8:87:95:
80:ca:5d:bc:02:0d:3a:e1:c1:0e:d4:e0:a1:04:70:
ec:0c:15:14:fb:a0:97:6d:0d:af:3d:49:22:4f:82:
53:83:d1:49:b7:7a:83:23:79:65:d0:3a:95:70:38:
9a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:25:70:A3:B7:91:B4:D8:56:74:BF:13:6C:0B:26:D2:E4:74:20:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF99E4FE458111F199C6F4FBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.208.0-154.209.217.255
Signature Algorithm: sha256WithRSAEncryption
77:8d:64:79:bc:d3:e4:8c:0c:1c:0f:3c:22:09:12:19:4b:2a:
86:6b:c7:47:c2:41:89:18:ab:7a:be:44:2e:32:9f:ab:28:69:
63:44:8b:ff:e2:ae:68:18:c9:83:5c:2f:40:e1:c8:d2:4b:f3:
57:e0:86:0b:7b:cd:f3:fe:d7:b2:bf:cf:d4:d8:b1:12:f6:c6:
8e:6e:72:6e:23:23:fb:ef:05:05:79:5d:a5:3f:ee:3d:a0:38:
a4:4b:75:88:dc:d5:55:f4:07:c8:68:98:fb:10:bf:bc:ce:8a:
48:de:0d:7b:65:86:8b:bf:df:b1:98:c8:03:94:43:16:39:43:
db:a8:a4:5a:db:c4:29:57:c0:d9:ea:24:81:21:ab:78:cd:40:
7c:a0:99:4f:1a:08:39:54:43:e4:52:9c:96:40:2d:49:c5:6a:
35:5f:7b:c1:cd:51:20:1f:e1:12:e5:eb:84:d3:c9:82:4e:d6:
2f:04:c9:db:df:c0:fe:8d:2b:0a:7e:6a:5d:09:70:d8:84:7d:
a1:69:2b:de:d5:93:96:7c:3d:f4:c7:06:49:09:e8:b6:68:b7:
2b:18:d9:73:23:f8:67:03:06:a5:13:09:e8:ca:9c:c2:e0:d3:
7c:70:54:61:b1:de:ab:a4:2f:f2:8a:3c:3d:03:3b:8c:e9:ff:
a8:57:27:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 10:59:55 2026 by rpki-client