Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35E2FB6446C11F191F1D0F0CE1D38B0.roa
File: B35E2FB6446C11F191F1D0F0CE1D38B0.roa (raw, json)
Hash identifier: eODndFqrnCx/hSSZ7ZN+GUMqmNgkSb60DVcQvcoNAKA=
Subject key identifier: E1:31:0B:35:82:F3:12:A7:7D:DC:F8:D0:90:9A:99:7C:4B:0E:83:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C7FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35E2FB6446C11F191F1D0F0CE1D38B0.roa
Signing time: Thu 30 Apr 2026 08:15:08 +0000
ROA not before: Thu 30 Apr 2026 08:15:04 +0000
ROA not after: Mon 30 Apr 2029 08:15:04 +0000
asID: 17561
IP address blocks: 154.207.99.0/24 maxlen: 24
154.207.100.0/24 maxlen: 24
154.207.101.0/24 maxlen: 24
154.207.104.0/24 maxlen: 24
154.207.105.0/24 maxlen: 24
154.207.126.0/24 maxlen: 24
154.207.127.0/24 maxlen: 24
154.207.142.0/24 maxlen: 24
154.207.143.0/24 maxlen: 24
154.207.188.0/24 maxlen: 24
154.207.189.0/24 maxlen: 24
154.207.190.0/24 maxlen: 24
154.207.191.0/24 maxlen: 24
154.207.220.0/24 maxlen: 24
154.207.221.0/24 maxlen: 24
154.207.222.0/24 maxlen: 24
154.207.223.0/24 maxlen: 24
154.207.226.0/24 maxlen: 24
154.207.227.0/24 maxlen: 24
154.207.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116731 (0x1c7fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 08:15:04 2026 GMT
Not After : Apr 30 08:15:04 2029 GMT
Subject: CN=69f30f8c-8276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:70:33:96:33:c2:a6:e2:98:a2:86:b0:83:61:
1e:d1:ef:bd:c8:a9:08:96:11:3e:b2:7d:cd:58:0a:
cc:f0:f7:3d:13:30:9d:45:51:be:83:d1:07:33:8c:
ab:38:a7:cc:e7:b7:c7:6f:92:63:8b:a5:ee:48:e9:
9b:6d:10:be:72:88:3e:0f:2e:5e:93:a5:09:7f:5c:
82:3f:26:f2:67:b5:90:23:96:03:5b:3c:8d:a2:11:
86:be:cb:6f:2e:cd:1a:47:f8:11:4d:ff:23:f6:b5:
46:03:3b:58:40:f8:ba:d5:c2:63:08:22:9c:93:4a:
1e:2c:6e:55:9f:c2:26:06:2a:2b:55:1e:71:a9:31:
82:53:e3:76:c3:55:dd:10:7a:7a:64:b8:b2:ae:4e:
f5:1b:1b:30:45:0d:6e:0e:de:d3:4d:05:2a:e8:fb:
f6:8a:c5:c5:e5:2b:0d:f7:39:b4:2d:e0:b3:90:69:
10:9c:b9:b0:28:f5:c7:e2:51:37:27:4e:90:40:6a:
94:50:b4:25:87:5f:bf:4c:76:af:61:01:59:7f:1b:
6b:91:48:b0:0d:3d:0c:a8:c4:34:0e:c1:eb:d0:de:
2a:1b:d6:d1:bb:8e:97:4f:d8:a8:3a:ef:c5:31:9c:
c9:78:1b:20:1a:9b:cf:d2:8c:53:80:a1:cf:27:02:
ff:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:31:0B:35:82:F3:12:A7:7D:DC:F8:D0:90:9A:99:7C:4B:0E:83:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35E2FB6446C11F191F1D0F0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.99.0-154.207.101.255
154.207.104.0/23
154.207.126.0/23
154.207.142.0/23
154.207.188.0/22
154.207.220.0/22
154.207.226.0/23
154.207.252.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:83:08:53:69:d6:36:37:84:c9:1b:b3:b0:06:28:b3:bf:08:
e5:ce:51:24:dd:65:24:b6:04:c1:c2:49:44:ee:62:94:10:5f:
a9:90:15:36:88:44:7a:f7:70:91:09:af:ae:6d:9c:68:fa:b3:
fc:4a:e7:6f:b4:4a:c0:31:6f:89:48:73:b2:0c:39:d6:fd:c8:
9d:cc:99:d1:d4:04:08:00:a0:66:ec:18:8d:cb:85:f1:9d:17:
70:ec:75:a2:36:8f:3c:48:94:1b:fb:e6:d9:f0:3c:4a:90:1d:
75:41:82:8e:ae:ca:31:5a:1f:92:b9:d9:34:5e:71:84:c7:59:
99:b8:7e:de:7b:f2:e7:a8:6c:16:05:e9:18:44:60:99:21:2b:
17:4e:9a:46:25:35:b7:4d:00:0b:9f:f1:0c:60:cf:23:3a:16:
3a:7b:db:7c:a5:6f:58:4d:44:f9:2b:45:68:6d:51:1c:27:ac:
76:19:dc:6c:ce:7b:c3:a3:2e:83:67:0d:10:0d:73:73:22:d7:
30:ff:52:34:8b:66:a9:aa:97:ac:89:ff:b1:ce:76:26:61:0e:
6a:a8:92:49:9f:d4:a1:c3:c3:6a:27:c7:6a:2a:2c:7c:61:78:
ba:f7:09:c4:a4:5a:8a:52:a4:96:66:74:aa:77:2e:c9:29:55:
4b:6c:69:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:11 2026 by rpki-client