Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB97FC80460911F1A3ABF6C4CE1D38B0.roa
File: CB97FC80460911F1A3ABF6C4CE1D38B0.roa (raw, json)
Hash identifier: MNit9Kmn4yoHykymFt3/hiMa4iJPw5ijxQp4bRTva48=
Subject key identifier: 9C:54:5B:65:FB:20:09:FA:D9:95:1B:17:23:0E:4A:A6:D6:CE:E3:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C925
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB97FC80460911F1A3ABF6C4CE1D38B0.roa
Signing time: Sat 02 May 2026 09:32:11 +0000
ROA not before: Sat 02 May 2026 09:32:07 +0000
ROA not after: Tue 09 Jun 2026 09:32:07 +0000
asID: 138915
IP address blocks: 154.90.46.0/23 maxlen: 24
154.93.32.0/24 maxlen: 24
154.93.33.0/24 maxlen: 24
154.93.34.0/23 maxlen: 24
154.93.36.0/23 maxlen: 24
154.93.38.0/23 maxlen: 24
154.93.40.0/23 maxlen: 24
154.93.42.0/23 maxlen: 24
154.93.44.0/24 maxlen: 24
154.93.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117029 (0x1c925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 09:32:07 2026 GMT
Not After : Jun 9 09:32:07 2026 GMT
Subject: CN=69f5c49b-ddca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:90:71:cf:8c:f4:85:52:5d:fc:a3:13:56:12:
b9:6e:b6:ed:6a:04:8f:25:a8:d5:6d:54:41:0b:4e:
22:9e:5d:c2:76:64:55:c4:b9:dd:36:9c:19:2a:c4:
9f:4c:15:7a:29:b8:78:e0:0e:cb:d4:a6:28:1e:aa:
86:0e:c6:47:86:2b:a7:0f:ca:b1:d2:27:1e:c1:9c:
51:c8:62:c3:64:dd:f4:e0:4d:0e:75:71:2a:c8:34:
a9:37:cc:c9:29:02:6f:0f:08:6d:03:51:a2:2b:ba:
53:38:42:19:fb:3d:55:e5:68:80:ed:a6:b6:fd:19:
8a:ef:e2:72:53:ea:b2:e4:c6:2e:92:7a:30:fb:8c:
f7:64:f0:ce:3c:0d:80:3d:6c:30:29:95:34:1d:b5:
56:69:f2:48:d8:f8:61:ad:04:2a:c2:44:ee:04:09:
bd:c1:30:9f:48:a9:3d:fb:b5:15:f7:73:f7:47:3f:
ca:88:6d:c6:1c:09:5c:39:c4:02:04:83:56:b2:e2:
b8:fd:b9:a9:a6:07:33:a9:cd:ff:09:ce:bb:c3:be:
9c:2c:64:c9:eb:13:bc:26:0a:9f:29:9e:51:72:53:
4b:52:9f:f1:a3:00:80:25:87:b6:fc:94:c5:aa:33:
63:86:83:e1:e2:4c:ba:23:d1:7f:df:e1:a1:60:2f:
84:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:54:5B:65:FB:20:09:FA:D9:95:1B:17:23:0E:4A:A6:D6:CE:E3:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB97FC80460911F1A3ABF6C4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.46.0/23
154.93.32.0-154.93.45.255
Signature Algorithm: sha256WithRSAEncryption
2e:60:b2:d2:24:3e:db:35:02:6a:4d:93:67:c7:e7:4f:2d:99:
8f:d9:90:6f:86:7a:ca:4c:db:55:49:97:2f:47:88:a1:e5:26:
39:a0:ec:b9:9d:91:59:93:03:db:7a:93:3e:dd:27:d5:ca:85:
c8:9d:4d:82:a5:f9:57:df:1d:7d:9f:d7:e1:1e:4e:53:6b:86:
79:e8:fe:d8:63:1c:3d:81:ec:ed:bb:ff:34:5a:46:00:54:09:
5f:61:cd:c2:7e:a4:8a:00:ca:0b:65:fc:44:3a:42:e6:dd:af:
84:f7:cd:e9:d9:24:0f:74:28:38:c8:af:d7:8d:de:6c:f8:75:
3b:31:bb:70:f6:ed:0f:98:09:7d:2e:b7:df:74:5a:2f:92:9e:
d8:ab:80:fa:80:ed:2f:df:6e:da:71:c3:a8:03:60:71:08:71:
a0:e1:e6:37:46:a4:2f:26:58:6e:ea:9c:27:86:ae:f9:c5:66:
0b:a6:99:0f:26:53:c4:e3:e5:e3:49:c8:ae:49:23:21:e4:7c:
6f:e3:67:82:df:11:02:3e:ce:7f:b8:61:11:07:e9:cd:f2:3b:
9b:10:b3:54:86:53:5d:0f:96:eb:37:b4:c0:8b:1d:de:1e:e2:
4a:0c:ab:9b:4a:54:a3:70:da:16:24:85:b8:59:48:39:b1:06:
10:18:8a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:22 2026 by rpki-client