Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9918E724A7811F1A2A74AA8CE1D38B0.roa
File: E9918E724A7811F1A2A74AA8CE1D38B0.roa (raw, json)
Hash identifier: TnAN1IumT4l59/AmZsj3M8K5WH2vv9SbdkMrWZkiIGA=
Subject key identifier: BA:61:E7:91:17:E3:F1:55:36:8C:DB:95:03:18:6A:C5:45:8E:77:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA0C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9918E724A7811F1A2A74AA8CE1D38B0.roa
Signing time: Fri 08 May 2026 00:57:40 +0000
ROA not before: Fri 08 May 2026 00:00:35 +0000
ROA not after: Mon 07 May 2029 00:00:35 +0000
asID: 17561
IP address blocks: 154.95.171.0/24 maxlen: 24
154.95.172.0/24 maxlen: 24
154.95.173.0/24 maxlen: 24
154.95.174.0/24 maxlen: 24
154.95.175.0/24 maxlen: 24
154.95.176.0/24 maxlen: 24
154.95.177.0/24 maxlen: 24
154.95.178.0/24 maxlen: 24
154.95.179.0/24 maxlen: 24
154.95.180.0/24 maxlen: 24
154.95.181.0/24 maxlen: 24
154.95.182.0/24 maxlen: 24
154.95.183.0/24 maxlen: 24
154.95.184.0/24 maxlen: 24
154.95.185.0/24 maxlen: 24
154.95.186.0/24 maxlen: 24
154.95.187.0/24 maxlen: 24
154.95.188.0/24 maxlen: 24
154.95.189.0/24 maxlen: 24
154.95.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117260 (0x1ca0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 00:00:35 2026 GMT
Not After : May 7 00:00:35 2029 GMT
Subject: CN=69fd3504-8ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:6e:a4:f3:d2:f3:65:06:2a:6f:a0:20:d0:
38:b4:a3:0e:83:0e:e2:b7:db:3e:71:45:cb:ec:0d:
5e:cf:74:67:b8:37:0e:ca:18:f4:05:1d:66:12:a5:
10:99:4a:e4:40:2e:3e:26:18:e0:8b:75:3e:33:19:
0a:d7:a0:87:75:ae:4d:65:6c:76:66:44:c0:53:88:
ca:59:7e:b5:1c:c2:69:b2:01:2e:78:f1:6c:37:b6:
b7:af:90:12:7f:ee:c5:54:cc:d2:bd:98:da:25:7f:
8d:d3:b7:35:9b:b7:d7:5e:28:fb:f6:4c:c3:61:85:
fb:2d:c1:51:c0:c0:4d:d5:3d:8f:4d:ae:ca:99:ee:
d0:4f:d0:25:4a:c1:5e:42:74:5f:80:a3:82:bc:5f:
89:42:66:65:1b:fe:68:c1:2b:fe:1d:ce:b8:38:6b:
93:28:66:5c:8a:ca:ac:d0:c9:79:0c:34:b3:75:5c:
a7:8d:37:bf:93:41:25:ac:b8:bb:63:0d:21:91:ab:
22:8d:1c:c2:c0:5e:b0:d7:51:a0:ef:63:53:c1:ec:
0e:9e:91:ab:d2:c5:db:2d:58:74:12:dd:72:6b:b1:
aa:a2:2b:4b:9f:84:c2:40:15:a2:e8:bd:90:42:69:
98:11:90:6c:a7:69:ab:93:02:6d:79:8f:4f:18:bf:
2d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:61:E7:91:17:E3:F1:55:36:8C:DB:95:03:18:6A:C5:45:8E:77:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9918E724A7811F1A2A74AA8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.171.0-154.95.190.255
Signature Algorithm: sha256WithRSAEncryption
25:02:da:64:f2:f9:72:0f:64:22:3a:2e:af:a4:44:0f:9e:72:
dc:9f:d2:7f:5e:ba:2c:f1:d6:ee:10:ff:d2:31:42:4e:09:9a:
96:9e:72:e7:9a:63:9a:40:2e:b2:87:2f:6e:17:db:df:2f:73:
99:04:d3:92:5b:5f:db:ba:50:63:97:d4:40:0a:f9:d1:fb:74:
61:9a:6e:47:06:6f:4a:ef:45:d7:1b:87:ca:f7:42:57:7f:2a:
05:97:1d:0a:5e:a6:06:0c:ff:e8:af:ea:96:ae:20:74:b3:dc:
d9:1e:f9:46:57:b9:80:6a:13:b8:8c:0b:d2:12:2a:76:4e:3b:
d8:ff:07:3e:da:fe:52:bd:a7:ea:cc:ab:20:41:5d:5b:b5:1a:
ab:60:61:3a:6e:83:f0:e4:53:9f:73:d5:d7:9a:78:7d:85:33:
b0:44:68:5f:12:78:64:a8:c5:e3:a1:56:d2:48:e2:9b:de:58:
61:5e:1d:7f:51:1d:98:18:03:49:81:2c:34:c9:3f:e7:12:20:
9c:3f:41:56:a2:94:0c:d6:95:1c:f4:5d:27:4e:43:0a:51:4d:
36:d4:cd:8b:c7:e3:81:37:c9:5c:6d:9b:66:3b:93:e0:a5:f2:
5a:fd:54:da:be:17:71:1b:3c:f2:35:73:a3:56:92:08:dd:94:
7a:39:6c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:03:40 2026 by rpki-client