Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB62832A449211F1913520D4CE1D38B0.roa
File: CB62832A449211F1913520D4CE1D38B0.roa (raw, json)
Hash identifier: o47MxIlQcZhXQn3qAAja9rQdXjq5p0V+l+2rpAWSdXI=
Subject key identifier: 50:46:17:07:2D:71:7F:A1:F8:2E:77:38:C9:75:12:5A:4F:BC:D8:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C839
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB62832A449211F1913520D4CE1D38B0.roa
Signing time: Thu 30 Apr 2026 12:47:50 +0000
ROA not before: Thu 30 Apr 2026 12:47:45 +0000
ROA not after: Fri 05 Jun 2026 12:47:45 +0000
asID: 202656
IP address blocks: 154.219.29.0/24 maxlen: 24
154.222.40.0/24 maxlen: 24
154.222.41.0/24 maxlen: 24
154.222.42.0/24 maxlen: 24
154.222.193.0/24 maxlen: 24
154.222.194.0/24 maxlen: 24
154.222.195.0/24 maxlen: 24
154.222.196.0/24 maxlen: 24
154.222.198.0/24 maxlen: 24
154.222.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116793 (0x1c839)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 12:47:45 2026 GMT
Not After : Jun 5 12:47:45 2026 GMT
Subject: CN=69f34f75-9d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:31:65:19:84:cc:32:9b:cb:16:1c:0b:a0:54:
e0:23:c2:48:93:05:25:b9:d6:9c:99:ff:ae:9c:76:
86:5c:dc:72:7b:d9:41:c1:08:fd:18:72:18:62:3a:
54:b4:26:32:d5:8e:71:93:8e:5f:3b:a1:b1:85:62:
6b:70:bd:ac:3c:11:9e:a7:1c:45:bc:b4:94:0b:81:
fe:dd:d1:d3:37:94:5e:93:82:5a:71:08:12:c0:97:
50:1c:60:37:76:0a:8a:82:88:46:2d:0b:79:a0:94:
f5:6e:af:d8:9c:2e:c7:cf:cb:de:c3:8d:a6:7e:f5:
37:0a:b0:6b:5f:42:bc:b6:7f:2e:3e:0c:9a:f3:4b:
c2:89:b3:56:86:f3:e8:68:c7:4a:2a:69:99:0b:70:
90:46:55:b1:bc:69:03:7c:71:2d:0b:1b:27:84:22:
ed:d4:98:8e:f6:ab:c5:fd:e9:a2:8e:2b:e0:5a:9d:
7e:87:7d:ec:97:53:21:47:c5:ff:c0:07:d1:74:ec:
4c:81:e8:6a:58:f3:74:77:57:fb:b6:b0:45:5a:39:
f5:81:19:38:95:28:d0:05:33:bf:e4:8b:04:89:3f:
d7:36:a4:9b:15:3a:fa:84:8f:7d:39:48:53:e3:f6:
12:99:ac:36:8c:23:7b:00:0c:64:ea:03:1d:d2:ae:
39:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:46:17:07:2D:71:7F:A1:F8:2E:77:38:C9:75:12:5A:4F:BC:D8:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB62832A449211F1913520D4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.29.0/24
154.222.40.0-154.222.42.255
154.222.193.0-154.222.196.255
154.222.198.0/23
Signature Algorithm: sha256WithRSAEncryption
43:fe:80:65:bf:8d:43:94:7e:9a:82:54:ca:67:5d:8d:7a:70:
4c:7c:3c:ff:a1:92:ea:63:a9:b5:1b:26:d9:02:12:5d:14:bf:
e4:19:7c:32:e4:44:68:91:9e:32:2b:ea:85:1f:e0:02:72:0c:
57:b1:99:4d:25:08:6b:5a:1a:53:98:4e:07:9a:e8:8e:d3:54:
91:0c:b3:13:45:43:b1:d0:ca:9a:03:98:60:e6:a2:a8:ff:73:
e1:27:b4:ae:37:f8:8f:fd:18:1f:f2:45:a7:3a:e1:5a:7e:08:
a3:1a:90:09:8b:46:61:88:27:46:08:a6:9f:98:3d:ed:c0:49:
33:8b:80:d2:ec:47:37:6a:f5:fd:39:10:be:58:17:30:15:fc:
cd:52:9b:9f:1a:70:1c:7e:7b:0c:cd:0c:72:2b:f0:47:fc:aa:
0b:62:64:6a:3f:1e:c3:1f:36:dc:ca:4a:5f:d1:16:d1:ea:3b:
eb:5a:a2:57:7d:84:8d:b1:22:f5:cf:fa:f0:43:38:98:64:35:
9c:d5:89:0e:0b:e9:34:0a:30:58:fd:10:3c:2d:e1:57:24:7c:
f9:24:88:6a:84:1f:b9:05:95:77:9d:b3:6b:d8:65:76:11:21:
d0:15:ae:b1:fc:f0:d2:b9:26:85:29:5d:09:d4:15:40:0a:9c:
2f:cc:a3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:47 2026 by rpki-client