Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E9951056C511F1837B380CCF1D38B0.roa
File: 07E9951056C511F1837B380CCF1D38B0.roa (raw, json)
Hash identifier: j1AVaobyerwMbhODxuwMEpNv6nAZ6+N6kkaQhOIyBeA=
Subject key identifier: E0:E1:B7:99:2B:64:88:71:AE:18:39:F3:07:D4:07:CB:BF:66:3C:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE7E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E9951056C511F1837B380CCF1D38B0.roa
Signing time: Sat 23 May 2026 16:32:47 +0000
ROA not before: Sat 23 May 2026 16:32:41 +0000
ROA not after: Fri 26 Jun 2026 16:32:41 +0000
asID: 140666
IP address blocks: 154.93.87.0/24 maxlen: 24
154.93.88.0/22 maxlen: 24
154.93.94.0/24 maxlen: 24
154.93.100.0/23 maxlen: 24
154.94.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118398 (0x1ce7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 16:32:41 2026 GMT
Not After : Jun 26 16:32:41 2026 GMT
Subject: CN=6a11d6af-8a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:81:58:08:08:50:88:db:d0:33:f3:c1:27:
9e:0c:62:56:c6:6f:6a:8f:38:69:33:76:14:65:16:
a1:87:e2:0f:f5:ba:59:c9:32:f2:c3:0b:50:c8:cb:
de:ba:c6:42:72:6a:dd:4f:ee:1c:af:4f:9c:5f:da:
92:61:27:69:a9:67:63:4c:3d:ac:44:4d:39:9c:91:
72:37:5c:58:a1:ac:ab:6f:78:31:a9:73:b5:be:75:
7c:b6:9d:f5:40:67:f8:5b:2e:54:94:a7:aa:5f:d0:
da:a9:ed:ca:49:7c:b2:aa:f8:91:d0:1c:76:5a:53:
5b:d8:22:66:54:2a:b4:47:d9:fc:00:18:4c:d8:e8:
7f:e0:d9:c4:1c:ae:29:81:49:51:14:ae:4f:61:d4:
5b:bd:2e:1e:30:4e:a2:89:f7:a6:35:75:32:a2:d3:
fe:17:f2:67:82:a0:b5:fe:78:4f:d7:f8:e3:3c:23:
77:a6:80:9b:96:2e:1e:bd:c1:28:0b:d4:20:6c:54:
70:03:62:21:8c:ad:c0:42:31:e1:82:5e:a9:09:e4:
3c:6d:4b:73:d4:cd:f1:b2:44:d0:75:96:e5:94:45:
38:ff:b1:c9:a9:31:9a:65:cb:b1:30:58:27:f1:da:
f6:e2:06:39:77:1c:4d:ba:a8:40:33:a9:24:8f:ef:
f9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E1:B7:99:2B:64:88:71:AE:18:39:F3:07:D4:07:CB:BF:66:3C:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E9951056C511F1837B380CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.87.0-154.93.91.255
154.93.94.0/24
154.93.100.0/23
154.94.68.0/24
Signature Algorithm: sha256WithRSAEncryption
56:52:f8:1d:3c:d2:5a:9d:24:34:f5:70:75:c1:36:9f:2e:a9:
81:b4:e4:31:7b:56:e8:0e:d0:29:c2:5c:7e:c8:9f:f4:35:19:
22:57:99:40:88:83:98:a8:42:6b:91:d2:1d:b7:16:ec:f5:5a:
b1:4e:36:2f:bb:22:56:21:76:6b:a0:e7:d0:88:73:1b:3b:6e:
c0:d0:e5:27:12:89:3f:d4:43:be:8e:9b:a2:bb:d7:06:96:bd:
87:ad:57:3d:49:8b:10:80:8b:1b:45:cf:6a:a6:a3:32:b8:67:
a9:c3:58:55:c5:c2:ef:9e:a6:d1:59:80:36:a7:cc:98:62:84:
08:75:51:c8:05:5d:c0:00:09:d0:ce:1d:48:03:5f:1f:52:cb:
43:b3:5b:17:6a:84:b7:c1:e5:a8:ac:31:ff:c4:ab:87:16:83:
6b:95:70:11:45:88:cf:68:6a:7a:85:0d:7c:8d:52:7f:42:be:
ef:83:6e:4a:04:1c:e6:e2:f6:94:46:c9:d1:9a:a1:ee:1a:e9:
67:ca:32:3d:63:0a:21:9e:9d:fa:85:80:ce:f0:f8:5d:86:4b:
1f:1d:18:08:b3:9c:5b:b5:02:a1:ef:3f:e4:0c:62:18:c3:51:
40:78:fa:f0:2e:ed:61:e2:f7:0c:d4:e5:0c:48:8c:99:84:6e:
e5:4d:5d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 22:11:39 2026 by rpki-client