Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB0041DA457611F1B775E5BBCE1D38B0.roa
File: CB0041DA457611F1B775E5BBCE1D38B0.roa (raw, json)
Hash identifier: mqNPw9En/A04RrtZk9VM6FB/FMUjBisCI03IQmP8Kuo=
Subject key identifier: EF:38:CD:05:B5:1A:EB:C2:6E:EC:9D:F3:B6:88:A0:49:35:4B:8D:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB0041DA457611F1B775E5BBCE1D38B0.roa
Signing time: Fri 01 May 2026 15:59:54 +0000
ROA not before: Fri 01 May 2026 15:59:49 +0000
ROA not after: Fri 05 Jun 2026 15:59:49 +0000
asID: 44559
IP address blocks: 154.209.193.0/24 maxlen: 24
154.209.194.0/24 maxlen: 24
154.209.197.0/24 maxlen: 24
154.209.198.0/24 maxlen: 24
154.209.199.0/24 maxlen: 24
154.209.200.0/24 maxlen: 24
154.209.201.0/24 maxlen: 24
154.209.202.0/24 maxlen: 24
154.209.203.0/24 maxlen: 24
154.209.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 06:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116913 (0x1c8b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 15:59:49 2026 GMT
Not After : Jun 5 15:59:49 2026 GMT
Subject: CN=69f4cdfa-408f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:c0:d3:b3:7b:61:a5:23:64:01:4d:b0:00:b2:
15:ad:8e:e7:07:2e:e0:c5:5d:81:67:b5:1c:ab:b6:
d6:52:53:0d:26:a7:72:96:fe:3c:33:14:1a:5d:c4:
ef:fd:f2:c8:a5:df:53:51:f3:2e:2c:08:66:31:38:
b0:5f:44:8e:22:58:2d:33:11:17:4d:ca:0a:aa:c5:
b6:31:4b:83:9f:12:ef:27:52:17:fa:a6:bb:82:12:
78:34:3c:30:dc:25:2e:0f:b9:ab:bd:71:2b:15:33:
cc:87:de:69:c5:76:1c:13:88:cb:a5:0b:60:43:e4:
82:9e:a1:25:b9:e5:32:ae:05:cd:fa:71:68:67:23:
85:39:b7:11:e9:6e:a1:f1:e5:24:28:82:d5:f5:7e:
d8:e1:9c:04:70:44:02:1d:c3:ea:4e:77:e4:4e:38:
fd:42:9c:2b:8a:2e:50:1a:d2:5b:6f:b4:5c:5c:f1:
12:3d:43:97:3c:1d:88:b3:12:e9:5d:40:69:e2:94:
8b:43:da:bb:98:39:6d:5c:28:69:2e:9a:62:20:51:
e4:6e:c3:f0:23:a0:21:cb:58:46:83:bc:52:b3:c7:
a1:f2:fe:2d:01:0f:23:0f:20:1a:e2:4f:5b:97:96:
92:92:fe:5b:d2:fa:8b:06:b4:5d:6e:5d:f6:9c:e7:
ec:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:38:CD:05:B5:1A:EB:C2:6E:EC:9D:F3:B6:88:A0:49:35:4B:8D:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB0041DA457611F1B775E5BBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.193.0-154.209.194.255
154.209.197.0-154.209.204.255
Signature Algorithm: sha256WithRSAEncryption
27:0a:21:20:23:3b:29:38:d5:6d:86:32:e9:ec:79:92:78:4d:
02:0d:db:84:78:e3:e0:e3:28:e0:fe:c5:9b:9d:bb:cd:4d:39:
3a:1c:12:10:e1:21:16:6d:4f:00:7f:39:4c:4e:ad:d8:61:96:
8f:80:e2:22:1e:98:b8:6d:b3:e7:ba:43:aa:7b:aa:56:f1:3b:
a9:f0:a1:98:a7:3f:19:4a:89:a6:d9:b9:4c:ca:03:3d:15:29:
90:94:44:8b:a5:44:12:a7:b2:80:7a:d9:29:41:4c:7d:f7:15:
a2:cc:63:9c:15:9e:71:54:d8:0a:eb:70:20:3b:9a:14:23:9a:
a6:02:df:0d:a8:31:79:9b:4e:fe:5b:61:82:7f:1c:99:02:85:
7d:af:ab:0a:4d:7e:42:f0:82:86:32:de:20:7f:d1:8d:40:c2:
02:8d:c6:58:25:c3:41:df:4c:81:4a:2b:0e:24:78:1d:22:72:
36:47:7c:31:25:c4:d0:4b:f8:29:95:e3:01:56:34:50:0b:ab:
29:22:6b:67:9c:eb:8f:ef:4e:9d:e7:87:5c:b2:41:4a:8a:e3:
e4:ba:e7:50:3f:97:28:b1:a0:23:b2:ae:1e:35:fb:49:f7:80:
cd:fa:3b:ff:ba:c0:82:36:64:b3:5d:e1:92:73:97:ae:d8:08:
d1:4e:80:18
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed May 13 16:49:18 2026 by rpki-client