Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCF6550C493511F1A799140ACF1D38B0.roa
File: CCF6550C493511F1A799140ACF1D38B0.roa (raw, json)
Hash identifier: M4TWLaDu8nTQsy6xmkGeOZUkR9zXOTnSpMUNmmi0so0=
Subject key identifier: B3:DC:DE:3B:EE:3D:58:BA:72:20:91:47:4A:F2:C8:2B:A4:5D:7D:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C995
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCF6550C493511F1A799140ACF1D38B0.roa
Signing time: Wed 06 May 2026 10:24:45 +0000
ROA not before: Wed 06 May 2026 10:24:40 +0000
ROA not after: Sun 06 May 2029 10:24:40 +0000
asID: 17561
IP address blocks: 154.85.168.0/24 maxlen: 24
154.85.169.0/24 maxlen: 24
154.85.170.0/24 maxlen: 24
154.85.171.0/24 maxlen: 24
154.85.172.0/24 maxlen: 24
154.85.173.0/24 maxlen: 24
154.85.174.0/24 maxlen: 24
154.85.175.0/24 maxlen: 24
154.85.176.0/24 maxlen: 24
154.85.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117141 (0x1c995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 10:24:40 2026 GMT
Not After : May 6 10:24:40 2029 GMT
Subject: CN=69fb16ed-b214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:98:ba:e7:6c:dc:07:21:ae:00:d8:c7:5a:ac:
e5:6f:ba:d4:b7:81:36:48:a4:98:03:e8:c2:de:54:
f7:a2:3a:b2:e9:d9:89:b5:05:91:af:fe:3e:63:3c:
64:15:92:07:c7:c7:c3:28:c5:01:d5:e6:aa:0c:6a:
e9:b2:3c:80:83:5a:e4:04:58:1c:ec:b6:91:b6:bc:
36:49:88:d2:c3:bd:a4:6d:a8:73:f3:0c:9b:b0:0a:
ee:b6:98:b5:82:30:71:3b:6c:9f:70:bb:06:e4:dd:
ec:38:61:8c:5f:cc:7f:8f:80:58:56:3c:39:e6:ac:
71:85:64:0c:e4:7c:63:e9:21:2c:71:ff:b8:d5:9c:
34:e5:02:f9:ba:7f:db:e7:ea:1d:20:9a:23:e7:0c:
20:59:b7:66:19:e2:dc:cf:bd:d2:5c:dc:3e:ed:b7:
80:ef:95:a2:1f:5b:06:f2:b6:82:36:08:86:f9:9d:
2e:3b:0a:ae:bb:64:a5:d3:ef:77:33:f0:e8:3f:00:
c4:bf:92:01:0e:15:4b:2a:74:13:99:3c:be:e6:08:
78:df:74:94:e6:de:39:c3:2f:12:08:4a:04:fd:a1:
b0:53:9f:6f:55:36:19:58:9f:a9:d5:95:af:50:5a:
36:bd:9c:f8:b6:9a:99:1b:1d:d5:f0:7b:e2:1f:cd:
fc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:DC:DE:3B:EE:3D:58:BA:72:20:91:47:4A:F2:C8:2B:A4:5D:7D:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCF6550C493511F1A799140ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.168.0-154.85.177.255
Signature Algorithm: sha256WithRSAEncryption
28:39:cd:bb:d8:6b:05:43:0f:7c:c4:32:1e:26:05:c6:2a:e7:
56:3c:03:6f:7e:49:89:b1:a4:7e:bc:7f:5b:70:bf:9f:3f:17:
7e:a1:b2:a0:7a:68:07:ce:4c:07:84:0a:f5:63:c8:e2:29:c7:
f2:a6:47:87:e4:36:be:1f:35:9a:80:81:d8:ff:73:81:99:65:
43:68:cc:4f:02:3f:93:47:98:30:a0:1f:3d:0e:74:ba:fe:5b:
52:57:80:65:37:8c:53:45:47:dd:5c:df:13:77:74:d6:ce:16:
b5:12:f7:2e:dc:64:8c:43:69:3b:fd:c4:aa:ff:24:07:5e:36:
df:84:27:fd:0c:e6:4f:e4:a4:b1:ca:64:05:43:8d:21:5d:27:
0a:dc:e5:a1:9c:31:09:ef:3c:46:5a:16:8a:fe:cd:65:45:f2:
85:0d:c7:8d:4d:cb:07:1a:1f:72:d7:30:13:94:1b:63:41:31:
13:c3:e2:71:d9:e2:f0:4b:a3:0b:4b:35:bb:7b:d6:da:53:de:
21:c0:48:1a:43:28:e7:42:57:72:74:5a:35:10:8a:1f:07:bc:
73:d9:46:c0:cc:03:4f:50:99:01:77:58:bc:94:d0:ec:25:2f:
6b:78:00:44:8a:7b:25:86:ac:b2:c4:41:39:de:9a:49:25:03:
04:38:1b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:51 2026 by rpki-client