Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AAC2A6C56DC11F19636F414CF1D38B0.roa
File: 0AAC2A6C56DC11F19636F414CF1D38B0.roa (raw, json)
Hash identifier: zSN858X9Kwz/TVHoVUtcGBFKLXDMZDJmlqLrum4FfO8=
Subject key identifier: 49:8F:A6:40:26:D7:75:4D:72:3A:22:04:AF:0C:3E:04:54:A0:B7:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE9E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AAC2A6C56DC11F19636F414CF1D38B0.roa
Signing time: Sat 23 May 2026 19:17:30 +0000
ROA not before: Sat 23 May 2026 19:17:25 +0000
ROA not after: Mon 29 Jun 2026 19:17:25 +0000
asID: 59187
IP address blocks: 154.221.32.0/22 maxlen: 24
154.221.32.0/23 maxlen: 24
154.221.32.0/24 maxlen: 24
154.221.33.0/24 maxlen: 24
154.221.34.0/23 maxlen: 24
154.221.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118430 (0x1ce9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 19:17:25 2026 GMT
Not After : Jun 29 19:17:25 2026 GMT
Subject: CN=6a11fd4a-1fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7c:f5:a1:af:83:51:ee:ef:50:1b:af:10:6b:
91:98:a1:05:a7:8b:d6:ca:9e:05:a9:16:bd:3a:3e:
53:ad:4e:d0:ef:12:2d:b5:7b:3a:80:17:c0:91:5a:
f7:1d:cb:19:28:d1:50:eb:fb:3d:fa:cf:24:96:ea:
8b:6a:49:ab:ff:da:b4:bf:f3:a8:61:83:d6:08:1e:
dd:9c:e7:19:4d:99:c1:35:7b:ff:ae:e5:bd:5c:0e:
ec:ce:61:f4:b6:18:2a:ea:cf:92:f7:70:47:f4:e1:
b2:23:4f:fe:d7:f9:c3:3a:77:c3:1f:74:6e:44:22:
ce:82:70:6e:f8:b2:a3:e9:24:48:c7:73:90:ed:b2:
e2:72:e3:49:b1:c9:5d:70:b7:05:cc:06:07:b9:68:
5f:4a:60:47:00:ef:73:56:4c:95:84:99:fc:47:b8:
f6:07:2e:cd:63:2f:21:47:6c:37:60:36:48:04:41:
00:97:b0:8d:3a:7b:a4:0a:73:ee:17:c2:84:26:18:
39:01:4d:55:d8:bd:31:97:32:6a:3b:6c:cd:c6:fa:
7e:75:d0:11:03:77:06:69:ac:0b:28:00:4b:b9:33:
31:d0:45:a6:a9:ab:59:91:2d:5b:ef:9f:6f:ec:4a:
cd:3c:35:ba:19:0e:67:b9:c7:1d:44:fd:fa:2d:9a:
6f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8F:A6:40:26:D7:75:4D:72:3A:22:04:AF:0C:3E:04:54:A0:B7:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AAC2A6C56DC11F19636F414CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.32.0/22
Signature Algorithm: sha256WithRSAEncryption
46:7c:7f:0e:77:5d:44:a4:0e:82:3e:14:7a:07:6d:84:4d:59:
a5:e5:93:5e:05:a2:b2:85:a8:7f:a4:bc:25:5f:8c:86:83:dc:
d6:ef:88:ac:e1:e6:8f:50:3a:3c:f3:31:2a:b1:0e:a4:8f:74:
4e:fc:9c:02:f1:fe:8c:cd:bb:b3:72:34:49:ee:5c:75:dc:3f:
74:5d:08:18:6f:ff:58:6d:06:f6:d7:dc:c0:6b:dc:4a:14:91:
3c:c5:a7:1b:90:e9:59:46:e9:1b:a2:43:f4:cb:40:4c:e0:45:
9d:0b:d9:0f:01:00:b7:fe:07:ba:ce:cc:10:68:7a:4a:16:9b:
b6:cf:75:1b:df:9a:cb:14:6f:b6:60:8f:88:95:73:fc:26:7b:
46:9e:d6:5c:a7:e3:09:4f:25:2c:48:7a:0e:0a:33:82:c0:5c:
10:17:22:db:f0:39:de:7d:a5:99:fe:86:99:6b:0f:e9:96:96:
f1:d5:ed:27:42:d0:10:95:76:9a:e6:f9:78:a1:b6:6b:0e:57:
11:ed:a4:fa:96:9c:e4:a3:03:e9:f9:ae:ac:d0:2d:5c:d9:ec:
f2:cd:3d:55:e7:b7:bf:62:f7:c4:58:e0:73:e7:9e:1b:a3:aa:
64:fd:c1:7a:d8:46:7c:4b:e9:da:73:49:d5:87:41:d6:1c:93:
e2:0d:76:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:35:58 2026 by rpki-client