Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC5EC62C4AB211F18C75531CCF1D38B0.roa
File: DC5EC62C4AB211F18C75531CCF1D38B0.roa (raw, json)
Hash identifier: aIs/WWgdLwSj+rQEMFGnK3uVyfNgNAZ4/htJFpH/IpQ=
Subject key identifier: 43:C3:C6:18:CD:43:88:FA:91:03:71:A1:8D:7E:A0:C8:D5:F6:DA:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA4B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC5EC62C4AB211F18C75531CCF1D38B0.roa
Signing time: Fri 08 May 2026 07:52:29 +0000
ROA not before: Fri 08 May 2026 07:52:23 +0000
ROA not after: Wed 07 Jul 2027 07:52:23 +0000
asID: 328608
IP address blocks: 154.200.166.0/24 maxlen: 24
154.200.167.0/24 maxlen: 24
154.200.168.0/24 maxlen: 24
154.200.169.0/24 maxlen: 24
154.200.170.0/24 maxlen: 24
154.200.171.0/24 maxlen: 24
154.200.172.0/24 maxlen: 24
154.200.173.0/24 maxlen: 24
154.200.174.0/24 maxlen: 24
154.200.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117323 (0x1ca4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 07:52:23 2026 GMT
Not After : Jul 7 07:52:23 2027 GMT
Subject: CN=69fd963d-da62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c1:db:98:60:4f:12:53:3d:56:4b:45:18:fe:
91:16:11:b0:c5:49:6a:f7:56:b2:ae:93:f6:09:0a:
02:ce:d2:12:c9:8b:df:bf:e5:2b:0d:41:0c:47:b7:
74:7a:11:68:7d:29:8b:ba:a3:98:f4:d5:f2:99:23:
27:60:af:47:38:80:dd:52:02:07:3b:38:67:5e:82:
65:3b:97:bb:b3:e0:23:cb:48:9d:52:ef:4a:15:84:
a0:07:51:60:9a:e3:10:67:c2:4c:72:fd:de:1c:e6:
a9:85:35:41:2f:1e:3b:bb:23:24:fc:67:c7:4f:96:
33:f8:7f:96:7e:51:be:cb:fb:5d:51:ee:51:0d:9f:
c5:f8:90:d1:72:b8:43:f5:3c:7f:23:a0:be:a8:a3:
2a:f9:77:0b:ff:7b:7e:03:50:ea:70:d7:21:2f:47:
e1:a2:19:31:50:56:d2:9c:db:4a:35:7e:7d:9a:0e:
bd:fd:cd:64:7c:79:c7:68:4f:3b:79:7e:03:37:10:
8e:08:f3:07:70:e3:50:3b:f1:88:0e:b0:ef:9b:59:
bf:b4:cc:4e:61:24:53:77:65:df:90:c9:b9:8d:28:
81:d1:4e:6f:d5:35:48:9e:f1:00:db:1b:df:13:54:
bf:8a:84:4e:b5:b8:ba:34:44:4a:a4:ca:f6:74:2a:
5e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C3:C6:18:CD:43:88:FA:91:03:71:A1:8D:7E:A0:C8:D5:F6:DA:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC5EC62C4AB211F18C75531CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.166.0-154.200.175.255
Signature Algorithm: sha256WithRSAEncryption
3e:16:af:fc:15:c2:d3:62:42:7e:c1:b6:6e:1b:b7:c1:40:1e:
b7:ac:13:c6:56:a0:80:5a:cb:8e:33:41:2a:8a:71:fa:fa:22:
c4:f9:17:19:0f:81:df:6c:94:2b:e3:a9:39:8d:27:0d:68:fe:
74:ca:e8:2a:4f:88:67:26:ee:e5:c4:2c:3b:59:2a:40:b5:27:
47:e9:85:a8:09:7e:52:a0:db:15:07:29:a4:ca:3b:79:2c:56:
42:93:6f:74:1e:74:7a:65:31:fa:03:e1:5f:be:b2:91:5f:85:
2d:8f:dc:73:a0:e5:b8:79:57:0b:bc:31:45:fa:f0:60:80:af:
46:63:5b:73:ab:7b:0a:b3:6b:87:81:68:66:10:5b:cd:05:11:
9c:b2:2b:e4:96:0c:61:ef:7f:2b:52:1f:2e:53:c4:96:6f:93:
b9:38:0e:88:31:47:f3:cf:ca:1a:7d:6d:e2:18:11:25:9b:97:
22:d0:51:bf:e9:5f:1b:ec:e3:ca:d5:b6:c6:b0:c7:0f:7b:9c:
4a:8e:94:dc:4a:4f:02:a5:d6:a8:73:55:3a:38:76:88:30:93:
f1:1b:59:93:b1:86:3b:8d:ea:4c:ab:42:34:c5:40:e1:e9:37:
95:99:33:6f:70:46:d4:d5:33:74:92:6a:cb:8d:de:ae:d1:7f:
0f:b8:2c:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:24 2026 by rpki-client