Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA76D394458C11F198FAB8BECE1D38B0.roa
File: CA76D394458C11F198FAB8BECE1D38B0.roa (raw, json)
Hash identifier: psLTSHGRpn0oM9ApNEzOSXL95nQnk4I6rZKtgUpRRn0=
Subject key identifier: 95:43:AA:B5:50:90:E0:DE:6A:57:75:90:26:87:D4:B5:D7:EB:A5:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA76D394458C11F198FAB8BECE1D38B0.roa
Signing time: Fri 01 May 2026 18:37:22 +0000
ROA not before: Fri 01 May 2026 18:37:17 +0000
ROA not after: Fri 05 Jun 2026 18:37:17 +0000
asID: 202656
IP address blocks: 154.219.225.0/24 maxlen: 24
154.219.226.0/24 maxlen: 24
154.219.227.0/24 maxlen: 24
154.219.228.0/24 maxlen: 24
154.219.229.0/24 maxlen: 24
154.219.231.0/24 maxlen: 24
154.219.233.0/24 maxlen: 24
154.219.234.0/24 maxlen: 24
154.219.235.0/24 maxlen: 24
154.219.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116961 (0x1c8e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 18:37:17 2026 GMT
Not After : Jun 5 18:37:17 2026 GMT
Subject: CN=69f4f2e2-7a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d6:34:b7:11:56:cf:ba:d1:50:74:f0:6a:ba:
9e:52:88:02:ea:bb:cf:ac:a6:c9:26:82:bc:b6:f4:
75:09:41:25:f1:f3:de:2c:0e:39:73:17:86:89:7e:
34:b1:73:2a:7e:73:25:b7:80:78:ac:6f:57:05:a9:
52:d5:26:16:98:4a:88:4f:e7:ae:a0:4d:e6:cb:ec:
e7:36:64:50:10:c8:93:fc:93:29:4f:25:05:53:33:
f2:53:2b:6e:32:3e:4e:9d:79:4d:21:71:44:48:8e:
eb:f2:e6:cb:0e:57:7a:1e:2f:35:37:1c:1c:b4:35:
57:f0:f6:57:61:a7:dc:b8:d9:44:49:ce:c8:4b:7b:
d1:99:38:8c:ff:d9:68:8a:46:70:ab:ab:b2:bd:b0:
df:05:59:26:c5:b5:6c:ea:08:3d:f4:5b:01:bd:bd:
3d:69:96:2a:0f:c2:93:02:a9:81:35:05:d1:36:cf:
4f:ee:af:8d:35:e7:79:92:9c:75:84:10:f3:ef:b4:
1a:bf:57:a1:af:83:a8:46:bb:da:55:47:4e:58:06:
6e:77:e7:83:4e:86:f2:2a:63:66:f7:82:ae:e0:c6:
80:2c:1a:34:85:9f:87:44:be:50:47:bf:79:c8:1b:
80:7c:43:ad:29:d7:4b:c7:b7:35:a2:ee:7a:54:77:
8f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:43:AA:B5:50:90:E0:DE:6A:57:75:90:26:87:D4:B5:D7:EB:A5:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA76D394458C11F198FAB8BECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.225.0-154.219.229.255
154.219.231.0/24
154.219.233.0-154.219.236.255
Signature Algorithm: sha256WithRSAEncryption
a1:d3:7d:a5:54:62:7a:44:ce:7a:ed:7c:80:12:70:75:e1:29:
5b:2a:62:10:9b:c1:1f:83:60:63:ad:d6:fe:4b:0d:cf:85:a7:
f6:19:44:7d:0a:bc:b6:a0:f8:63:5f:43:8a:ce:e7:dd:45:08:
bd:68:af:48:77:28:3c:f8:9e:51:d9:6f:f6:93:6f:11:d6:a0:
d2:d2:ef:81:2a:ac:a8:0c:7c:ea:d9:5a:2e:dc:f4:25:67:1e:
5d:1a:fd:94:1f:12:38:91:8f:a9:81:fb:ba:a2:cd:57:7f:a7:
c1:bf:4f:87:10:a4:04:d1:d2:c8:1f:af:00:48:1f:f8:e0:61:
48:e0:18:f8:cb:26:14:ce:23:17:a6:fa:5a:40:3e:3f:2a:61:
9f:5c:84:b6:1b:90:99:a0:42:ba:a8:cb:ee:05:35:60:8a:60:
c7:e9:8c:f2:c3:c6:ad:9b:70:cb:e3:a1:43:78:17:11:1a:a8:
55:cf:56:3f:99:08:87:88:e6:07:0a:31:64:ff:49:80:5e:60:
f5:26:89:80:a9:36:c6:47:5f:28:ac:b2:99:8b:44:55:0c:23:
56:40:00:be:e7:46:71:40:fe:33:c8:54:2a:ee:66:22:4b:0b:
ac:f5:81:d7:9f:85:1d:7f:37:0c:8a:06:84:cf:64:57:f3:fd:
4c:a3:a2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:18 2026 by rpki-client