Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5DDA198409211F1979435FDCE1D38B0.roa
File: E5DDA198409211F1979435FDCE1D38B0.roa (raw, json)
Hash identifier: X5vTQv3Go2+zH2YvMIh+6Ezdm/L0DHNY45/c7LhDL7w=
Subject key identifier: 10:6E:49:8B:68:C3:86:C2:64:8B:C7:9D:6A:A8:67:61:F0:1C:BF:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C775
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5DDA198409211F1979435FDCE1D38B0.roa
Signing time: Sat 25 Apr 2026 10:38:30 +0000
ROA not before: Sat 25 Apr 2026 10:38:24 +0000
ROA not after: Mon 01 Jun 2026 10:38:24 +0000
asID: 49505
IP address blocks: 154.205.244.0/24 maxlen: 24
154.205.245.0/24 maxlen: 24
154.205.246.0/24 maxlen: 24
154.205.247.0/24 maxlen: 24
154.223.198.0/24 maxlen: 24
154.223.199.0/24 maxlen: 24
154.223.200.0/24 maxlen: 24
154.223.201.0/24 maxlen: 24
154.223.202.0/24 maxlen: 24
154.223.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 Apr 2026 00:07:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116597 (0x1c775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 10:38:24 2026 GMT
Not After : Jun 1 10:38:24 2026 GMT
Subject: CN=69ec99a5-3f88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a2:3e:ea:37:0d:c2:07:32:53:14:41:4c:ad:
0a:fd:dc:38:6e:63:47:51:6b:46:41:e9:a2:93:4e:
9a:99:79:c5:10:82:d6:0a:10:f7:9c:fb:ae:4e:07:
a2:8c:a2:b1:30:b7:9d:00:e6:e4:a1:4c:4b:1c:3d:
7d:dc:8e:f6:17:b4:07:2a:6e:56:48:06:69:a0:8e:
d8:fa:43:c8:63:c7:22:34:5d:3b:42:1b:02:ca:6c:
66:0c:b9:fb:05:1e:3e:5c:5a:80:00:ee:9e:c4:83:
08:54:c3:d2:7b:fa:a2:17:5a:53:1f:86:86:0b:62:
ac:75:df:53:e6:31:40:9d:bd:1a:fd:d8:ee:de:41:
a4:b9:a2:9e:44:23:e2:8b:de:d9:01:c7:ab:1c:e1:
33:82:2b:5e:58:3c:35:35:ae:79:a0:92:95:aa:30:
a8:3f:bd:76:8b:e4:43:aa:8f:09:7a:a4:c9:87:5e:
5a:0c:d3:90:bc:0d:f2:5e:8a:45:ea:a2:aa:da:cb:
f9:0d:3a:52:00:99:b3:fe:e0:f9:77:f5:60:72:c7:
a9:a7:97:b8:55:54:4a:c1:40:6b:52:d7:5b:a0:b0:
92:41:00:dd:ba:ae:09:6c:c9:56:99:8c:9c:47:40:
51:6d:9c:db:c7:12:40:ca:03:92:b8:64:25:e4:53:
53:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:6E:49:8B:68:C3:86:C2:64:8B:C7:9D:6A:A8:67:61:F0:1C:BF:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5DDA198409211F1979435FDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/22
154.223.198.0-154.223.203.255
Signature Algorithm: sha256WithRSAEncryption
4f:80:58:8f:d5:5b:66:59:9b:ef:e6:ad:d8:76:85:da:43:8f:
c5:d9:3c:12:cb:ab:5c:e4:24:28:f3:21:d2:0d:9f:8d:4f:79:
96:35:b9:50:3b:73:ce:b5:03:62:09:fd:0b:59:47:bb:66:90:
b5:40:d5:bf:94:d3:85:42:a1:ba:bf:e2:b1:92:dd:10:28:e3:
79:56:ed:28:4f:44:09:01:fd:4d:32:1a:45:e1:ec:a6:ab:68:
c9:bd:f5:f0:5c:5a:19:c2:85:7e:c6:ae:f6:0c:41:fd:56:39:
3b:b0:f0:9c:3d:76:7a:30:39:4a:ec:78:01:0d:a0:da:de:65:
ac:95:32:21:b1:30:f4:56:82:2b:25:9a:25:ab:c1:5e:94:a7:
df:d0:cd:d3:64:a2:e0:bc:02:87:39:4f:8e:73:e1:f0:a1:0f:
6d:b9:37:05:8e:98:0b:d7:b0:35:4a:0a:be:20:00:a0:ec:95:
a9:0f:4f:45:d2:46:0a:f0:61:7a:67:66:52:1d:ab:e0:3e:8a:
21:cd:5a:3a:ce:d5:cd:31:14:74:57:6e:1c:dd:d7:52:d9:1c:
3f:25:ac:7a:ad:74:04:79:b3:3d:74:d2:32:cc:54:42:b1:80:
7e:41:69:de:59:bd:29:8e:01:4d:da:15:cb:d5:e2:dd:24:45:
68:48:42:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 11:15:47 2026 by rpki-client