Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B085591A3FC411F194C5350FCF1D38B0.roa
File: B085591A3FC411F194C5350FCF1D38B0.roa (raw, json)
Hash identifier: dKZAxegbRX+IlbxjcQJpg2T1Frcl6D/nuYV6IrqgWCo=
Subject key identifier: 90:FE:5F:7B:9D:8B:EF:F0:86:ED:CE:DA:59:FD:65:D5:43:2A:52:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C733
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B085591A3FC411F194C5350FCF1D38B0.roa
Signing time: Fri 24 Apr 2026 10:02:24 +0000
ROA not before: Fri 24 Apr 2026 10:02:19 +0000
ROA not after: Sun 31 May 2026 10:02:19 +0000
asID: 62240
IP address blocks: 154.195.157.0/24 maxlen: 24
154.195.158.0/24 maxlen: 24
154.195.159.0/24 maxlen: 24
154.195.160.0/24 maxlen: 24
154.195.161.0/24 maxlen: 24
154.195.162.0/24 maxlen: 24
154.195.163.0/24 maxlen: 24
154.195.164.0/24 maxlen: 24
154.195.165.0/24 maxlen: 24
154.195.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116531 (0x1c733)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 10:02:19 2026 GMT
Not After : May 31 10:02:19 2026 GMT
Subject: CN=69eb3faf-ce34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:65:18:10:c9:6d:34:1d:9b:12:c6:55:6f:a2:
44:36:a0:2b:da:5e:73:9e:32:d4:91:c5:f4:6f:c1:
ed:78:1e:d7:b5:15:7a:a5:22:4a:47:4e:d6:18:de:
10:d9:42:76:bf:ad:ce:b0:37:cb:ce:1d:13:8e:29:
b9:23:e8:f5:19:df:9d:6d:d9:39:20:6c:85:4a:9b:
0c:0b:43:df:00:a1:cc:d2:59:b1:ce:b1:81:33:45:
8d:bf:7c:20:0e:a5:70:ce:20:17:62:a9:b8:ed:f8:
d5:1e:3c:4e:dd:67:05:db:84:ba:14:12:0b:c3:0c:
24:48:c1:3b:36:91:5d:c3:a0:b2:d1:74:a1:2d:7b:
90:63:b3:4c:6d:07:2c:e0:30:29:29:d4:b3:b0:59:
e8:52:16:19:d5:fb:51:73:6f:aa:83:2d:15:cf:ce:
57:20:67:46:08:24:1b:15:b1:9e:0c:5e:0e:1b:aa:
cd:5e:01:49:34:0f:57:d8:fc:54:20:02:9f:4b:16:
c3:48:c9:c4:32:34:6e:99:1c:8c:5b:70:77:22:bf:
bd:3c:3e:f6:12:54:eb:c0:7a:cf:f6:49:5f:9c:16:
dd:a7:c8:fa:23:09:80:ce:c9:d2:3e:05:e1:37:f6:
41:c3:bc:96:ad:0a:e7:62:59:91:22:d8:b7:f8:27:
9c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FE:5F:7B:9D:8B:EF:F0:86:ED:CE:DA:59:FD:65:D5:43:2A:52:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B085591A3FC411F194C5350FCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.157.0-154.195.166.255
Signature Algorithm: sha256WithRSAEncryption
52:9d:8d:05:b9:63:b1:0a:a2:6e:04:93:6a:ce:3b:25:0e:1a:
88:ad:ef:7c:61:10:d2:a9:e4:f6:ff:9e:4c:a6:b5:d3:d0:35:
1f:e2:0d:e8:e1:16:10:cb:f5:18:a7:6e:83:1e:d0:42:92:64:
4c:59:eb:45:46:a0:1b:41:a7:67:82:94:47:e7:31:22:a0:d2:
ef:1b:04:00:89:c4:09:f3:5b:1a:1d:86:cd:8b:4f:b1:17:d3:
34:72:9a:32:6c:68:1d:ee:50:c4:4a:17:66:19:bf:06:63:35:
73:2e:3c:cf:15:38:a2:da:ed:ca:9d:f0:55:da:f1:32:bb:be:
3d:d1:29:ac:c7:51:a2:6a:22:bf:06:3d:fc:63:80:a7:47:73:
f2:53:9c:7a:70:46:a2:87:40:ad:de:56:0e:ca:7a:8c:7e:6d:
b6:04:fc:36:81:bd:a5:3c:c7:ed:a4:fd:54:1c:11:a5:20:d5:
f3:ad:85:d0:50:df:81:a7:e1:30:23:49:01:f3:67:4c:9c:76:
98:5d:4d:ff:c4:8d:cf:64:91:aa:11:96:7f:f0:72:68:4b:16:
2d:95:33:18:6a:9a:00:81:7f:25:ef:7c:a3:d0:54:d3:71:11:
ad:98:83:a4:c5:b3:6a:bc:05:f8:dd:0f:0b:7c:12:fc:ad:6e:
5e:0f:69:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:31 2026 by rpki-client