Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D28C5CDA3FB911F1ACDC46D1CE1D38B0.roa
File: D28C5CDA3FB911F1ACDC46D1CE1D38B0.roa (raw, json)
Hash identifier: Gr8owe8xz4GrTAq6PD6LAxmEnqWN/qDW8sTbH2XypS8=
Subject key identifier: 9F:22:A8:24:00:32:33:67:3C:EE:2B:AD:E1:7E:B5:B9:D4:E0:7E:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C719
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D28C5CDA3FB911F1ACDC46D1CE1D38B0.roa
Signing time: Fri 24 Apr 2026 08:44:36 +0000
ROA not before: Fri 24 Apr 2026 08:44:32 +0000
ROA not after: Sun 31 May 2026 08:44:32 +0000
asID: 62240
IP address blocks: 154.194.4.0/24 maxlen: 24
154.194.81.0/24 maxlen: 24
154.195.106.0/24 maxlen: 24
154.195.109.0/24 maxlen: 24
154.195.110.0/24 maxlen: 24
154.195.114.0/24 maxlen: 24
154.195.115.0/24 maxlen: 24
154.195.119.0/24 maxlen: 24
154.196.83.0/24 maxlen: 24
154.196.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116505 (0x1c719)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 08:44:32 2026 GMT
Not After : May 31 08:44:32 2026 GMT
Subject: CN=69eb2d74-5542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7f:48:bf:ac:2a:c7:16:7f:d5:81:b9:8f:5d:
99:43:8c:40:d0:90:b1:17:60:4a:ef:c6:41:ae:95:
3f:b8:f5:e8:c4:1a:7d:c0:04:aa:87:56:57:34:56:
7b:47:5e:bc:91:1b:1b:25:cf:1a:f8:14:bd:e7:59:
3a:69:cc:23:6e:40:98:09:8c:28:00:10:71:e9:f3:
ae:22:54:8f:51:9b:dd:13:69:04:e6:ad:3d:69:62:
ab:72:44:84:95:63:f9:35:dc:07:4b:d0:c8:e8:46:
9f:09:c0:56:f1:4b:15:33:ee:37:bb:ce:ec:a7:94:
b1:2b:3c:a1:0b:a1:71:b4:4d:76:ce:13:91:45:39:
0d:d2:66:12:76:92:9e:ed:41:dd:f8:58:21:39:7d:
bf:59:86:e8:87:18:23:c2:d5:d1:02:01:db:8d:9f:
09:d0:21:ab:79:4d:ab:12:7f:80:2b:33:cc:be:a7:
97:9a:49:38:4e:06:7d:26:25:e7:35:24:71:7c:aa:
e2:1e:c0:fc:4a:70:36:51:d2:08:c3:f3:83:03:81:
33:68:9e:ce:71:5f:76:25:63:09:65:78:62:18:09:
81:72:41:7d:e1:8d:1c:b2:ea:61:3d:07:ea:30:73:
1c:71:9b:66:3e:7f:c5:0b:c8:9a:36:af:81:52:d7:
96:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:22:A8:24:00:32:33:67:3C:EE:2B:AD:E1:7E:B5:B9:D4:E0:7E:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D28C5CDA3FB911F1ACDC46D1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.4.0/24
154.194.81.0/24
154.195.106.0/24
154.195.109.0-154.195.110.255
154.195.114.0/23
154.195.119.0/24
154.196.83.0/24
154.196.88.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:28:c9:92:f3:bb:79:0d:30:22:ab:3c:22:3e:a3:fe:b9:c0:
b6:f7:d4:63:52:db:18:eb:77:ac:15:f7:d1:55:57:27:5f:dd:
81:b2:1a:2b:12:fa:c7:6e:bd:50:0f:6e:41:ff:ab:53:c9:52:
d0:55:9d:e3:49:d2:a5:17:34:52:58:0c:98:36:39:b8:b6:8d:
ae:88:cb:39:58:28:cd:33:32:62:99:52:0d:2a:ad:22:2d:ab:
0d:31:af:7f:4a:ba:93:65:45:95:5c:95:50:2a:51:3f:7f:da:
40:75:67:de:5d:ba:72:0c:3e:82:43:1a:52:8c:af:e1:1b:cd:
04:c5:14:ce:95:55:2e:76:21:c3:b0:f4:cd:7e:3c:75:8e:2e:
19:92:0f:71:44:98:b3:94:d5:d6:78:e3:4a:13:06:4a:03:bd:
6e:52:05:8f:1b:d8:50:9c:00:26:03:bb:22:ac:56:82:e3:08:
9f:93:3d:34:30:f4:84:7e:c9:87:12:b6:0f:92:79:d2:78:1a:
fe:c2:3e:3d:8f:29:56:53:1c:6f:bb:70:ff:a8:46:00:2e:34:
88:65:ae:df:62:32:be:7c:2d:c1:fa:69:95:a5:49:4a:d8:01:
27:86:4a:70:a1:62:0c:81:ae:02:e8:b9:91:db:b2:e6:07:30:
c9:54:3d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:24 2026 by rpki-client