Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1E3B0963EFC11F1A5AF83CACE1D38B0.roa
File: F1E3B0963EFC11F1A5AF83CACE1D38B0.roa (raw, json)
Hash identifier: PAmP6HstAqRGvcqZiQGL4C/0tMKv/sCA93s7L0MbNIk=
Subject key identifier: 61:D9:A3:E3:87:FD:5A:E0:1E:07:5C:15:F4:35:71:53:6B:2B:49:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6D9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1E3B0963EFC11F1A5AF83CACE1D38B0.roa
Signing time: Thu 23 Apr 2026 10:12:34 +0000
ROA not before: Thu 23 Apr 2026 10:12:29 +0000
ROA not after: Sat 30 May 2026 10:12:29 +0000
asID: 9304
IP address blocks: 154.82.134.0/24 maxlen: 24
154.82.148.0/24 maxlen: 24
154.82.153.0/24 maxlen: 24
154.82.158.0/24 maxlen: 24
154.82.196.0/24 maxlen: 24
154.83.67.0/24 maxlen: 24
154.90.134.0/24 maxlen: 24
154.90.136.0/24 maxlen: 24
154.90.137.0/24 maxlen: 24
154.90.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116441 (0x1c6d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 10:12:29 2026 GMT
Not After : May 30 10:12:29 2026 GMT
Subject: CN=69e9f092-cc52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0c:f0:44:d1:01:66:e9:ed:51:9a:51:74:2d:
ee:76:29:c1:f8:b6:36:89:59:5b:1a:7a:43:36:7c:
9f:95:0e:86:09:7f:ac:ec:85:2b:21:c3:14:ee:d7:
05:5d:26:73:98:8a:f9:65:c5:29:7e:39:51:45:50:
d3:b9:23:13:ce:c9:36:29:e9:33:27:ff:7a:83:91:
4d:bb:f5:ac:94:63:82:eb:54:a9:6b:4b:da:90:e5:
b8:ab:3c:38:3f:eb:49:9f:37:b1:98:f4:4a:9b:0d:
31:8b:3a:6a:ac:07:f1:e4:07:04:12:e9:49:72:fd:
a7:11:9a:2b:68:27:50:83:ef:c1:99:00:92:2f:77:
d7:1d:97:60:2b:38:74:26:63:87:c5:8f:7f:d6:b0:
97:85:78:3d:82:18:f1:68:58:98:a6:84:5f:4e:0e:
3e:5a:66:c6:af:d1:3f:19:0b:01:7f:34:22:22:59:
af:91:fe:8e:fb:45:aa:a0:d0:7d:84:28:2a:0b:34:
7e:28:c8:b2:3d:9d:61:4f:71:33:77:d7:e5:04:ca:
01:8b:13:ec:a1:ec:ad:84:b0:99:8d:b1:2a:d7:eb:
1e:7c:97:1c:03:93:21:c6:d0:43:77:81:34:e0:66:
34:fa:24:12:12:2a:14:59:d5:e2:4e:e3:19:a6:ed:
16:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D9:A3:E3:87:FD:5A:E0:1E:07:5C:15:F4:35:71:53:6B:2B:49:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1E3B0963EFC11F1A5AF83CACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.134.0/24
154.82.148.0/24
154.82.153.0/24
154.82.158.0/24
154.82.196.0/24
154.83.67.0/24
154.90.134.0/24
154.90.136.0/23
154.90.140.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:1c:f9:eb:8f:ba:65:05:1e:e6:38:dd:24:51:c3:fc:00:b9:
c0:f7:01:3e:ca:67:26:68:84:54:f8:08:03:61:04:34:97:72:
0f:f3:39:82:1a:e4:2f:08:43:42:97:27:0f:ad:ab:a0:da:46:
ac:95:78:aa:a3:5b:df:bc:cc:6a:91:89:99:6c:6e:10:96:ec:
3d:0d:33:8e:fa:c4:51:27:fd:ce:00:6c:02:1b:3c:0c:7c:b6:
fb:57:8b:aa:50:0c:cd:7f:de:bc:dd:08:26:79:ef:4e:89:05:
9c:1b:ab:f6:09:b2:e6:50:6e:5b:ae:2a:17:df:1d:94:8c:6f:
9b:83:e1:f8:86:b6:e2:fb:a4:59:dd:5c:96:2b:91:f1:df:4e:
d0:6f:3c:19:85:92:e1:af:a8:9d:f6:cb:c7:05:8f:a8:60:72:
d1:7e:40:7e:80:b1:61:2a:9a:1e:37:69:27:d1:ea:85:04:a7:
03:af:3b:dc:6a:97:0f:59:9b:0c:c1:1e:70:da:6e:a4:29:6a:
7d:71:78:80:36:fb:5b:7d:d5:cf:1e:dd:6d:5c:5e:d7:da:a4:
41:d9:91:4a:5b:3c:9e:53:4c:b4:34:64:7d:41:7b:01:f2:85:
8e:b2:8b:9e:bc:68:a2:66:d9:ae:03:46:71:bc:b1:69:6b:c0:
99:5c:7a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:13 2026 by rpki-client