Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B18CC3763EEC11F18AF5B5E9CE1D38B0.roa
File: B18CC3763EEC11F18AF5B5E9CE1D38B0.roa (raw, json)
Hash identifier: AdSfaPH+Ay47zgPxpI3U/yNML4KWTEd4X7G5SXOlIUc=
Subject key identifier: 22:39:41:70:64:9D:92:88:77:46:55:C9:80:74:F5:91:28:57:4B:8A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6CD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B18CC3763EEC11F18AF5B5E9CE1D38B0.roa
Signing time: Thu 23 Apr 2026 08:16:14 +0000
ROA not before: Thu 23 Apr 2026 08:16:08 +0000
ROA not after: Sat 30 May 2026 08:16:08 +0000
asID: 9304
IP address blocks: 154.200.37.0/24 maxlen: 24
154.200.46.0/24 maxlen: 24
154.200.48.0/24 maxlen: 24
154.200.53.0/24 maxlen: 24
154.200.54.0/24 maxlen: 24
154.200.60.0/24 maxlen: 24
154.200.131.0/24 maxlen: 24
154.200.140.0/24 maxlen: 24
154.200.142.0/24 maxlen: 24
154.200.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116429 (0x1c6cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:16:08 2026 GMT
Not After : May 30 08:16:08 2026 GMT
Subject: CN=69e9d54e-81cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:92:2d:c7:66:dd:ff:d0:59:a5:b7:26:19:21:
e0:53:d5:86:59:5c:4a:86:a2:6a:d3:55:18:ce:70:
18:37:e6:83:f9:26:9e:06:f9:66:ad:89:aa:33:33:
dc:04:ad:d0:98:2d:2d:c5:3a:2b:38:e0:75:fb:c3:
ac:d4:1d:9b:e2:bb:ab:1d:7d:09:71:d3:9d:61:45:
c4:05:e2:e7:a9:d6:85:95:a7:45:5c:48:76:2c:ee:
86:eb:e8:ca:01:54:ff:03:1d:78:16:09:e6:3d:b7:
a0:0e:a3:0a:a1:32:33:c3:eb:7b:9a:d0:34:7d:ab:
ca:23:ec:cd:5e:8d:36:9f:a1:fb:6a:2f:5a:06:f4:
87:3f:8e:2b:24:40:5b:99:28:3f:dd:92:86:5a:af:
e2:ef:e7:82:6a:df:a6:46:b6:7c:51:56:ee:06:e1:
b2:6e:13:9f:d0:f8:30:60:fe:6d:6c:55:9b:5a:88:
d1:4a:04:5c:52:4c:51:7f:5b:47:d4:2b:4f:b2:b6:
11:cf:88:03:28:52:cb:60:66:1f:8d:e7:92:49:9b:
bf:76:56:a3:08:08:68:92:81:5a:90:1f:65:ec:23:
fd:b5:8c:f4:05:c9:40:05:7b:9b:06:02:2b:18:87:
18:ed:7e:c5:7a:88:5b:b8:c8:71:cb:d5:08:79:96:
ea:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:39:41:70:64:9D:92:88:77:46:55:C9:80:74:F5:91:28:57:4B:8A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B18CC3763EEC11F18AF5B5E9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.37.0/24
154.200.46.0/24
154.200.48.0/24
154.200.53.0-154.200.54.255
154.200.60.0/24
154.200.131.0/24
154.200.140.0/24
154.200.142.0/24
154.200.160.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:68:6f:e9:4b:6c:f0:d6:7f:c9:a8:ea:74:a5:42:e8:5a:1e:
00:04:b7:89:3f:d8:24:65:94:36:e8:5c:0b:b9:a5:a4:d0:e0:
e1:37:ce:98:4c:78:80:0c:a1:62:80:ba:c0:89:7f:73:d9:09:
ad:ea:90:7a:5b:ee:2a:76:9c:ba:ec:94:7c:98:8e:99:e4:d4:
55:cb:08:f5:d5:d2:e7:a3:7c:9e:24:71:4e:32:67:3a:ff:6d:
b7:ff:55:f4:6f:20:ca:54:e9:39:55:15:36:18:c9:4b:f6:0e:
f3:e5:1a:78:c3:ea:ba:33:80:02:bc:9f:d3:d5:55:02:10:49:
48:79:83:3d:1f:09:89:d4:3a:51:2c:72:34:a6:c6:ce:ae:3f:
af:e3:4b:a3:d3:67:a2:2a:e0:df:fb:59:88:bc:a3:8e:35:55:
53:bd:2d:fe:ff:de:47:dd:47:11:73:21:46:d3:06:6c:62:e5:
cf:fe:cb:8f:08:ee:91:2f:34:76:6f:e3:a1:3d:a9:9a:ac:de:
e4:df:c1:b9:f3:f4:d6:11:46:cd:7f:f8:ca:73:68:9c:ed:03:
e9:fc:ce:25:50:4b:28:43:1b:ce:a6:3c:85:a9:57:7c:9d:06:
fc:20:0b:a2:a8:8d:e2:1e:91:38:27:65:6a:47:2d:bc:86:48:
4d:f8:49:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:22 2026 by rpki-client