Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1DEE378447311F1988D5B1BCF1D38B0.roa
File: F1DEE378447311F1988D5B1BCF1D38B0.roa (raw, json)
Hash identifier: xQsVJn2P3Bzfz50HXMIbf+lc/gg7Nb8lB/STm3oVmUw=
Subject key identifier: 4E:D7:B1:1B:F1:A7:D2:CA:97:9C:E2:06:C7:6B:40:95:84:9D:64:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C80D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1DEE378447311F1988D5B1BCF1D38B0.roa
Signing time: Thu 30 Apr 2026 09:07:00 +0000
ROA not before: Thu 30 Apr 2026 09:06:55 +0000
ROA not after: Wed 15 Jul 2026 09:06:55 +0000
asID: 135377
IP address blocks: 154.81.12.0/24 maxlen: 24
154.81.13.0/24 maxlen: 24
154.81.14.0/24 maxlen: 24
154.81.15.0/24 maxlen: 24
154.82.21.0/24 maxlen: 24
154.83.196.0/24 maxlen: 24
154.83.197.0/24 maxlen: 24
154.83.198.0/24 maxlen: 24
154.83.199.0/24 maxlen: 24
154.85.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116749 (0x1c80d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:06:55 2026 GMT
Not After : Jul 15 09:06:55 2026 GMT
Subject: CN=69f31bb4-4231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:44:24:2b:a1:55:7a:12:4b:93:72:c4:77:20:
5d:22:14:ad:98:dc:3f:2f:7b:63:9a:18:79:f4:ab:
b8:e6:28:59:f6:c9:4b:28:d2:35:ee:f0:de:04:8b:
e8:a2:7d:8a:af:ef:9c:a4:a9:5b:90:43:6f:77:cb:
ce:4b:36:33:82:e0:c7:d8:b7:cc:7b:0c:c9:47:33:
fb:59:0e:3e:c0:67:33:b9:3f:c2:0f:6e:8c:a0:7e:
c4:fc:a0:22:34:17:6a:c0:dc:03:62:e6:e0:7f:d5:
29:64:43:3c:da:e2:9d:95:9d:92:90:c2:0e:0c:46:
69:28:06:b2:78:89:bd:99:a4:7f:66:05:75:25:8c:
e4:cb:16:64:35:5e:03:f1:00:0d:b1:21:f2:b6:0a:
a5:87:3b:27:67:88:b1:19:a8:fe:c8:11:2a:41:82:
29:b5:83:75:39:eb:ca:a3:37:ee:f2:32:7b:d0:9e:
7f:1c:3a:ec:95:24:24:75:4d:af:68:8f:42:9b:40:
94:c3:1d:11:58:e9:63:f2:14:eb:2c:ef:fd:89:dd:
75:dd:45:97:08:c8:ca:a1:97:46:cb:60:7e:ae:6d:
63:da:c8:2b:b7:26:ca:ad:32:90:3c:89:fe:8b:28:
92:ca:4f:aa:61:ec:c0:50:d1:01:1e:b6:ef:79:c4:
73:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D7:B1:1B:F1:A7:D2:CA:97:9C:E2:06:C7:6B:40:95:84:9D:64:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1DEE378447311F1988D5B1BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.12.0/22
154.82.21.0/24
154.83.196.0/22
154.85.27.0/24
Signature Algorithm: sha256WithRSAEncryption
61:61:54:25:3c:81:2a:2a:72:27:51:ff:68:09:a7:78:da:bd:
22:90:f3:87:11:0b:c3:eb:b7:a7:28:68:56:7b:00:6c:bb:fa:
aa:da:9a:86:ec:3b:3d:81:07:cb:a1:23:bd:b7:e9:89:f1:fe:
5f:3f:58:b4:16:17:34:bd:71:48:aa:a2:63:02:8c:b4:93:0c:
6f:d2:e3:29:97:8c:06:8f:c5:32:84:5f:9b:ae:f8:25:c3:e0:
23:e4:d6:b5:42:01:cc:a7:2c:b1:02:cf:4a:78:38:d4:25:72:
24:a3:bc:a9:00:a1:53:f5:de:06:5a:87:97:0a:e4:3e:da:99:
05:d0:71:fe:ca:7a:c0:89:7e:a7:37:4d:dc:4d:83:8d:5e:7b:
b5:fe:33:27:a9:4d:c8:71:cd:1f:9f:f4:c1:b9:9a:4f:4e:4e:
2f:3a:35:cd:94:08:12:fe:5d:8e:cf:68:67:86:62:79:bd:f2:
4c:26:69:21:d4:2f:2a:10:e6:ac:b4:e1:9b:46:dc:1d:14:45:
55:f8:5d:6e:03:88:a6:1e:b1:4a:e6:82:58:d3:c3:c5:1c:b6:
a5:fd:15:10:a6:5b:24:1a:e3:00:89:f8:f0:ce:1c:1c:38:6c:
51:74:07:cf:3d:bd:d0:4e:e0:c4:ae:b3:52:02:63:61:c7:6b:
41:39:2c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:43 2026 by rpki-client