Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC36203A3FC211F18B98E606CF1D38B0.roa
File: FC36203A3FC211F18B98E606CF1D38B0.roa (raw, json)
Hash identifier: YH61prWcLRbvIjgiGQBh/bK3VF/vSCi7qVOAw5yy1EE=
Subject key identifier: A0:56:1E:8C:EF:2F:DC:BB:43:07:AC:A3:54:04:06:19:B2:41:9E:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C72F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC36203A3FC211F18B98E606CF1D38B0.roa
Signing time: Fri 24 Apr 2026 09:50:12 +0000
ROA not before: Fri 24 Apr 2026 09:50:07 +0000
ROA not after: Sun 31 May 2026 09:50:07 +0000
asID: 62240
IP address blocks: 154.195.137.0/24 maxlen: 24
154.195.138.0/24 maxlen: 24
154.195.140.0/24 maxlen: 24
154.196.32.0/24 maxlen: 24
154.196.34.0/24 maxlen: 24
154.196.35.0/24 maxlen: 24
154.196.37.0/24 maxlen: 24
154.196.38.0/24 maxlen: 24
154.196.39.0/24 maxlen: 24
154.196.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116527 (0x1c72f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 09:50:07 2026 GMT
Not After : May 31 09:50:07 2026 GMT
Subject: CN=69eb3cd3-acba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:18:01:b0:dc:2d:32:ec:2a:ec:ae:9e:ca:67:
0c:b8:c0:49:0d:9c:86:23:1c:91:80:d2:4e:d9:7c:
e0:64:7c:4c:e0:f7:97:b0:15:b3:2d:d2:6b:99:de:
71:5f:65:e3:b7:1d:9d:29:3c:0e:a1:60:5b:73:10:
2f:de:bf:85:18:48:b4:73:b3:dc:5c:40:4f:5b:cf:
49:83:74:71:cb:bb:e5:7f:5f:c1:54:b0:4e:d2:2e:
cd:9e:fc:69:10:fa:09:b6:ff:08:ba:39:b4:5c:7d:
38:52:2b:0c:06:5c:d4:5c:d6:53:3e:f9:ed:0a:9c:
3b:c8:f6:e6:01:e7:96:3f:09:05:bb:44:39:cc:ec:
b3:38:d3:17:b1:d6:1b:86:72:ff:55:34:87:dc:3b:
ca:b2:57:cf:62:f3:e3:36:17:f2:27:1b:50:ae:22:
39:6e:06:d5:40:b9:71:3f:d4:95:85:95:a8:e3:b5:
28:da:e2:b3:73:de:91:02:db:1b:b3:ff:ab:8c:22:
2e:6c:b4:09:ac:0a:6b:31:1e:e4:38:b7:61:68:f6:
95:b2:de:05:63:7c:b9:01:a6:4a:53:00:1b:e9:a5:
69:83:4c:63:ce:ce:00:90:0b:55:69:6a:5a:cf:83:
a2:9e:c1:17:c2:5b:0e:ac:9b:1b:05:8c:60:88:19:
ca:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:56:1E:8C:EF:2F:DC:BB:43:07:AC:A3:54:04:06:19:B2:41:9E:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC36203A3FC211F18B98E606CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.137.0-154.195.138.255
154.195.140.0/24
154.196.32.0/24
154.196.34.0/23
154.196.37.0-154.196.39.255
154.196.89.0/24
Signature Algorithm: sha256WithRSAEncryption
97:e2:c5:be:74:82:40:57:47:32:f3:8d:13:9b:67:71:e1:2d:
0b:30:44:c8:41:00:c9:22:f2:f6:4f:16:34:69:7d:94:ec:82:
d7:30:b8:85:44:3a:07:62:53:49:45:9d:20:aa:b9:ba:8f:d8:
b4:7d:68:06:ad:34:64:e9:02:91:bb:87:d0:d3:1d:6e:bb:5a:
93:82:b7:83:39:34:00:3d:77:08:e5:1f:cd:f9:bd:cb:4d:84:
a7:62:1e:59:06:e6:26:8a:c1:cf:bb:73:de:9e:0f:79:46:fc:
d1:f9:11:4e:88:77:f8:46:09:46:f1:c0:c2:87:a9:09:ce:99:
64:c7:be:a5:cd:06:78:14:81:3c:af:04:be:da:ac:4e:51:9f:
9b:fa:bc:6a:bd:10:8c:28:a0:bd:be:aa:20:13:09:d5:c5:c0:
a9:73:e8:8c:5b:97:00:1e:df:85:4d:98:98:b2:50:7b:8d:c6:
19:11:50:ea:c2:cc:f0:e7:fd:fe:b5:1f:cc:9e:06:02:0e:41:
40:bb:e6:3c:00:d6:46:b7:66:75:c4:4e:88:03:ec:61:92:84:
bd:54:63:3e:c2:aa:7c:e6:4c:3e:67:27:9c:97:64:be:1c:a4:
31:e2:c0:6c:e9:37:23:3f:b6:41:0d:e6:a7:ad:31:6e:2e:b8:
44:9b:5a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:03 2026 by rpki-client