Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA49670829D211F1AB3403A9DAE4EC9C.roa
File: DA49670829D211F1AB3403A9DAE4EC9C.roa (raw, json)
Hash identifier: xe+sEgsJ3WFVc+YhbdeaaRQ+8xQVUhHNDN1sBVMX4r4=
Subject key identifier: B2:DA:64:CE:1E:83:7C:79:C0:50:CF:56:B6:4A:FE:C5:C8:C2:9C:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C12A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA49670829D211F1AB3403A9DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 11:48:21 +0000
ROA not before: Fri 27 Mar 2026 11:48:16 +0000
ROA not after: Sun 10 May 2026 11:48:16 +0000
asID: 395793
IP address blocks: 154.83.8.0/24 maxlen: 24
154.83.9.0/24 maxlen: 24
154.83.10.0/24 maxlen: 24
154.83.11.0/24 maxlen: 24
154.83.24.0/24 maxlen: 24
154.93.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114986 (0x1c12a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 27 11:48:16 2026 GMT
Not After : May 10 11:48:16 2026 GMT
Subject: CN=69c66e85-7dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:43:cf:49:43:9c:ba:f6:fb:a7:18:55:f3:4a:
33:27:7b:0d:27:dd:11:db:f8:e5:22:c0:ba:c8:7e:
d7:3c:b6:ef:17:c8:28:5a:b0:82:6f:3c:d5:5d:45:
b5:b0:11:b1:05:96:c2:d5:f2:a5:cf:da:7f:1e:82:
fa:81:bb:6b:0a:56:be:2b:74:2a:11:65:06:f6:0e:
d9:6d:55:1f:e9:fa:6d:f9:92:5e:25:7e:78:01:ca:
31:4b:c1:a8:f3:5e:0a:ae:6d:d9:b0:b6:e2:30:d7:
8c:cc:4c:da:d7:80:6c:87:8b:fc:e8:a9:3e:1f:ff:
db:bc:d0:a0:f6:ec:f7:ad:4f:11:99:77:ca:e0:0c:
53:38:03:e8:83:35:62:9c:5e:7f:d9:5d:ae:c7:a4:
12:ff:59:25:07:dd:2b:47:b6:77:28:6d:1b:f2:e2:
8f:5a:10:f3:fa:74:e5:c8:2d:aa:9b:fa:06:c6:40:
32:b4:4a:5a:f2:a2:87:ad:5b:30:5e:89:32:64:a9:
35:78:40:eb:2b:a0:81:e2:90:07:fa:44:5c:57:3d:
21:36:5b:57:1b:43:4b:77:9f:d2:bc:47:51:a0:e3:
5f:e1:bf:5b:04:48:7d:37:de:84:5a:fc:d6:35:a5:
9d:e2:eb:c0:0f:86:df:be:32:64:1a:20:61:09:c7:
a5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DA:64:CE:1E:83:7C:79:C0:50:CF:56:B6:4A:FE:C5:C8:C2:9C:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA49670829D211F1AB3403A9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.8.0/22
154.83.24.0/24
154.93.0.0/24
Signature Algorithm: sha256WithRSAEncryption
12:05:2a:90:0a:9c:50:56:fe:5b:e1:27:91:9a:f3:cc:4d:e2:
56:b9:23:fe:f7:0e:d6:79:2e:fa:2a:35:50:95:42:37:87:c8:
70:7c:9e:6c:e8:ca:7f:5e:71:22:01:0b:4d:d5:a5:a7:1f:12:
bb:b5:9e:e5:5b:27:00:fc:6a:d1:11:ad:bc:11:bd:cd:70:00:
71:d9:90:db:1d:7d:a2:4c:87:aa:06:33:71:ce:14:7c:de:3c:
68:45:c2:b0:48:a0:ad:bf:eb:31:1c:b4:37:5c:3d:9d:7d:c0:
cc:cd:ac:55:17:c5:6e:b8:f3:7e:51:cc:0f:9b:ec:c4:6e:ee:
ef:d8:98:67:11:09:de:ce:0f:8f:76:78:dc:41:cf:6c:c4:08:
eb:e6:fa:cc:0d:4c:99:4d:5c:49:8c:af:5f:de:19:4e:dd:59:
9e:63:fa:44:4f:a7:c2:5b:35:4e:b3:58:7d:ff:b0:6d:22:3a:
b5:dd:56:1b:47:64:5f:ee:e0:ec:ae:db:e3:8a:22:63:3a:50:
6b:27:c5:3f:78:09:6b:55:32:cc:2a:a4:1b:23:08:94:ca:ae:
98:30:92:26:5e:13:7f:8b:41:82:94:8d:c9:61:47:d4:ef:04:
8b:42:77:9f:e9:b5:bc:3c:07:4c:43:56:c7:59:94:ed:52:6c:
24:0d:4d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 18:17:55 2026 by rpki-client