Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/828D10424B8C11F1B7198DC9CE1D38B0.roa
File: 828D10424B8C11F1B7198DC9CE1D38B0.roa (raw, json)
Hash identifier: ABy/h1C6vy7QYHWm68cKxhjsbNHVd/WuHQ6MsigfeSA=
Subject key identifier: 8F:6C:66:27:0B:1F:B7:62:54:84:CF:CF:62:90:32:5C:99:20:AC:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CAA0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/828D10424B8C11F1B7198DC9CE1D38B0.roa
Signing time: Sat 09 May 2026 09:50:29 +0000
ROA not before: Sat 09 May 2026 09:50:24 +0000
ROA not after: Sun 21 Jun 2026 09:50:24 +0000
asID: 9304
IP address blocks: 154.196.15.0/24 maxlen: 24
154.203.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 06:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117408 (0x1caa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 09:50:24 2026 GMT
Not After : Jun 21 09:50:24 2026 GMT
Subject: CN=69ff0364-f31c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:97:b3:e7:54:14:0c:63:ee:58:17:27:60:40:
a7:2a:a2:dd:c3:1e:36:fd:67:af:00:59:c5:bc:e9:
09:24:61:6d:6c:ed:be:c2:84:17:70:03:fb:69:dc:
88:d0:2d:2e:ed:fc:a4:bf:02:6e:f7:e2:1f:65:66:
11:8c:69:8f:e7:2f:62:58:b5:85:0e:27:19:8d:e9:
21:9c:59:98:4a:23:9f:b6:3c:bd:c0:87:af:24:82:
e4:1e:c8:09:59:f9:03:12:a5:24:a8:b4:74:f6:c8:
2e:e4:e1:56:05:32:da:fc:7b:19:11:28:5e:73:c6:
17:09:77:c3:5f:c4:e6:a1:55:52:95:e0:2c:a9:32:
cd:fa:41:fa:2e:3d:d7:49:65:ee:f2:99:4b:62:36:
42:6d:fd:8b:5e:4b:84:02:80:17:4c:d2:11:9d:58:
09:c6:a7:dd:45:c3:43:30:25:97:7d:52:46:99:cb:
96:1b:b7:65:e6:fb:d2:55:25:4a:ac:62:75:f7:ad:
dc:81:87:2f:bf:1c:3e:8c:36:b9:58:67:3a:68:23:
3d:b8:1b:bd:31:48:b5:50:40:e3:c4:e1:fd:b7:7d:
bf:62:10:e2:dc:43:ce:20:c2:4b:52:86:a3:59:b0:
01:a0:f6:60:f8:21:45:f6:bc:60:63:60:64:ee:67:
cb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6C:66:27:0B:1F:B7:62:54:84:CF:CF:62:90:32:5C:99:20:AC:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/828D10424B8C11F1B7198DC9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.15.0/24
154.203.2.0/24
Signature Algorithm: sha256WithRSAEncryption
78:55:72:f6:79:1c:7c:8e:b4:c8:c9:94:82:a9:e9:da:24:66:
d3:f0:58:cc:fb:1d:fc:f1:d8:5d:0e:c4:56:6e:b0:1e:88:e1:
df:7f:39:0d:6b:42:7c:9e:4f:fd:40:c1:2f:3e:cc:d5:4d:3c:
fc:d6:8a:71:40:f2:96:15:12:52:00:45:43:5d:cc:01:93:37:
83:45:af:4a:bd:68:97:5f:d5:71:2a:43:7f:86:a8:a9:fd:b9:
5e:75:21:c0:ab:51:8c:55:43:c7:50:8a:47:85:d6:65:c8:f6:
24:da:42:a4:88:f2:28:9e:2c:f1:09:8e:88:3f:7a:04:0b:66:
14:c2:96:5b:2d:27:df:d6:cf:57:ae:a2:cc:d3:ef:23:f4:77:
a9:d1:ec:d1:de:32:94:31:26:92:60:f3:f5:03:58:a4:77:c2:
b2:1f:82:77:5e:9e:b3:72:4f:b6:bd:88:11:8f:2b:a4:0e:07:
b9:a1:3a:d5:ba:f4:4e:1a:83:3a:a0:54:d5:34:c1:59:1f:b0:
4f:0a:7c:ca:d2:94:49:75:84:af:a3:60:fc:81:39:15:82:6c:
ee:d0:3c:30:32:d9:32:ea:c5:33:03:f7:c8:35:33:eb:1d:c7:
6a:26:ab:28:f5:77:8e:d3:d4:f8:46:a3:fd:52:d1:66:9f:5c:
b1:4e:1d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:08:39 2026 by rpki-client