Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/471CE0B6448711F18F4D420ECF1D38B0.roa
File: 471CE0B6448711F18F4D420ECF1D38B0.roa (raw, json)
Hash identifier: JqJO0ok1/UuMqvNFomG47zYw2QfTDxbAUtZkgTe7X5w=
Subject key identifier: 9B:07:56:FA:0D:BC:62:D7:13:33:8B:15:50:F3:D7:8C:BC:18:05:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C81F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/471CE0B6448711F18F4D420ECF1D38B0.roa
Signing time: Thu 30 Apr 2026 11:25:23 +0000
ROA not before: Thu 30 Apr 2026 11:25:19 +0000
ROA not after: Fri 05 Jun 2026 11:25:19 +0000
asID: 44559
IP address blocks: 154.209.141.0/24 maxlen: 24
154.209.142.0/24 maxlen: 24
154.209.143.0/24 maxlen: 24
154.209.147.0/24 maxlen: 24
154.209.149.0/24 maxlen: 24
154.209.150.0/24 maxlen: 24
154.209.151.0/24 maxlen: 24
154.209.156.0/24 maxlen: 24
154.209.159.0/24 maxlen: 24
154.209.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116767 (0x1c81f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 11:25:19 2026 GMT
Not After : Jun 5 11:25:19 2026 GMT
Subject: CN=69f33c23-3336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9d:fd:45:0f:48:f0:00:1e:6a:fa:b2:45:6a:
71:c4:27:c8:35:b8:d0:9e:d2:55:58:c4:23:d4:bd:
29:a7:e7:3c:65:90:42:93:0a:2a:f8:2c:15:05:2e:
75:f9:5f:df:ca:1a:69:ec:82:6f:53:0d:65:ca:f7:
f6:cb:d6:d6:bf:f5:30:f6:db:f8:12:18:b9:e7:c0:
d1:cb:d9:a4:80:12:43:66:49:b8:19:cb:61:ac:9a:
95:70:8d:52:ca:68:74:ac:e6:a1:fe:89:29:c0:68:
6f:f2:1d:51:ea:c9:58:fb:0f:62:7b:33:7c:35:a3:
ff:73:a8:ae:33:05:92:c2:f6:42:40:72:8d:73:c0:
64:a3:54:62:53:99:bc:f8:8b:9c:64:08:d8:d3:a5:
9f:f0:11:ee:da:9b:db:a0:db:21:9d:5b:84:d6:fe:
fb:d9:1a:b5:e2:0e:ea:e5:4d:9d:87:a0:fb:ce:bc:
50:71:22:c0:5c:ba:cb:72:1f:a4:33:43:72:52:e0:
76:8e:45:bd:55:d6:91:83:e6:75:fe:7b:6b:e2:4c:
7c:d0:00:56:45:ec:5c:7d:b6:5a:20:a9:52:8e:48:
73:fd:0f:92:8b:08:59:24:17:91:08:95:1c:80:e1:
28:05:38:d8:e4:f1:7f:f6:22:0f:eb:29:84:0c:af:
a1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:07:56:FA:0D:BC:62:D7:13:33:8B:15:50:F3:D7:8C:BC:18:05:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/471CE0B6448711F18F4D420ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.141.0-154.209.143.255
154.209.147.0/24
154.209.149.0-154.209.151.255
154.209.156.0/24
154.209.159.0/24
154.209.192.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ab:06:6c:b3:b5:1d:2f:83:bf:aa:0d:45:f0:d1:3a:5d:2b:
b2:15:2f:e3:16:1d:79:d3:34:86:ef:7b:6d:8b:e1:74:0a:81:
d9:7c:1e:08:c5:84:e8:a6:ca:85:c9:e2:99:d0:00:92:b4:52:
13:97:30:a6:7b:f3:77:24:79:a1:d5:45:6f:dd:e6:3f:fa:a3:
4c:a3:2b:4a:fe:ce:e7:7e:f0:01:08:3f:e6:38:29:38:9a:dc:
5a:b7:07:a9:bf:4c:0a:ca:f8:c0:09:d0:25:75:27:39:22:bb:
9b:7f:55:d5:35:5a:d0:95:f0:b1:33:05:f1:d8:f2:c5:6e:57:
de:d7:63:c3:10:5f:2c:69:1d:74:03:c7:1c:93:99:7e:ca:dd:
f0:5d:f5:1c:6b:95:bf:2a:90:ae:90:c2:fa:50:1f:51:43:16:
fc:08:13:6f:b2:29:b5:50:86:c3:31:51:ef:95:83:52:93:99:
df:38:d0:a8:4c:70:43:95:fc:f4:04:bb:ae:e5:2c:05:df:4e:
c9:b4:2c:fe:dd:99:10:ca:5f:42:33:98:84:7c:c6:19:e5:75:
c1:b6:ef:f0:21:75:dc:b4:36:d4:ae:87:ce:ff:8d:a8:71:0f:
27:00:4b:3d:db:1b:da:58:5e:db:b0:fc:94:70:4e:10:38:24:
6f:77:e0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:57:16 2026 by rpki-client