Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E39BD0A584111F1B6452017CF1D38B0.roa
File: 0E39BD0A584111F1B6452017CF1D38B0.roa (raw, json)
Hash identifier: HIF7EKJ2dpk7fKlE221mvCwFJsDmBQSCkcJwpg9KOf0=
Subject key identifier: 93:CC:3B:1D:7E:07:93:D8:03:77:C3:E0:A8:74:50:CA:A9:7C:A8:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CF7F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E39BD0A584111F1B6452017CF1D38B0.roa
Signing time: Mon 25 May 2026 13:53:06 +0000
ROA not before: Mon 25 May 2026 13:53:02 +0000
ROA not after: Tue 30 Jun 2026 13:53:02 +0000
asID: 9304
IP address blocks: 154.82.134.0/24 maxlen: 24
154.82.148.0/24 maxlen: 24
154.82.153.0/24 maxlen: 24
154.82.158.0/24 maxlen: 24
154.82.196.0/24 maxlen: 24
154.82.197.0/24 maxlen: 24
154.82.198.0/24 maxlen: 24
154.82.199.0/24 maxlen: 24
154.83.65.0/24 maxlen: 24
154.83.67.0/24 maxlen: 24
154.89.132.0/24 maxlen: 24
154.90.65.0/24 maxlen: 24
154.90.67.0/24 maxlen: 24
154.90.128.0/24 maxlen: 24
154.90.134.0/24 maxlen: 24
154.90.136.0/24 maxlen: 24
154.90.137.0/24 maxlen: 24
154.90.140.0/24 maxlen: 24
154.90.189.0/24 maxlen: 24
154.92.216.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118655 (0x1cf7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 25 13:53:02 2026 GMT
Not After : Jun 30 13:53:02 2026 GMT
Subject: CN=6a145442-44d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:76:4d:cf:76:1c:07:24:db:85:9e:25:fc:bf:
28:f4:4a:76:66:ab:90:ac:2d:62:3b:95:7e:5a:4f:
d0:7d:3a:6d:84:0a:cc:c7:08:89:4a:0f:c5:e3:7d:
6e:71:5b:d6:90:7a:a7:fd:1d:0b:fa:1f:f3:ea:53:
61:98:d4:02:6c:dc:e3:89:91:7e:a6:a6:8a:91:62:
62:00:85:35:a9:d2:33:1e:ab:fb:67:97:0f:db:72:
ff:2d:57:23:28:94:ae:27:a8:29:7e:03:a8:f7:a3:
cd:9e:c7:63:54:9b:1c:77:38:f9:87:16:a4:65:15:
20:5e:21:b8:dc:4a:47:5c:8d:b8:6e:8e:8f:b6:7e:
e2:30:9d:3e:85:41:57:3f:19:ba:e4:a2:74:02:6a:
a1:39:34:d7:d8:e3:dc:b2:08:54:63:60:c8:5c:96:
f5:d0:90:0a:17:de:42:c7:eb:e6:c8:35:8d:70:53:
9c:2a:e4:db:1c:ab:4a:31:cd:67:94:7e:5c:61:e2:
19:d6:dc:95:d2:3d:ae:31:a1:60:34:fe:ce:fe:a0:
71:23:25:8d:71:a4:37:90:9c:c5:7b:d2:e4:fc:d1:
c0:27:25:63:96:39:4c:9f:41:51:40:a1:48:4e:db:
a4:a5:7d:15:19:05:fe:9e:19:f3:c5:f5:e7:53:a2:
4f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CC:3B:1D:7E:07:93:D8:03:77:C3:E0:A8:74:50:CA:A9:7C:A8:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E39BD0A584111F1B6452017CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.134.0/24
154.82.148.0/24
154.82.153.0/24
154.82.158.0/24
154.82.196.0/22
154.83.65.0/24
154.83.67.0/24
154.89.132.0/24
154.90.65.0/24
154.90.67.0/24
154.90.128.0/24
154.90.134.0/24
154.90.136.0/23
154.90.140.0/24
154.90.189.0/24
154.92.216.0/21
Signature Algorithm: sha256WithRSAEncryption
73:43:ba:f8:b9:cb:ff:0c:a8:c5:c8:ae:f3:58:d2:22:44:8e:
65:3d:ad:3b:12:af:c3:15:a0:78:f0:f1:b9:ab:4d:85:2a:04:
65:81:6c:5e:bc:5f:70:48:66:0b:c9:91:be:2f:7a:27:c2:c0:
c1:4c:26:91:11:a9:b7:16:a3:9c:ba:37:90:2e:b3:08:c9:89:
6d:e3:a5:0d:1c:c5:3f:6c:86:da:a2:bd:36:d4:82:9c:7c:8c:
c3:9f:08:82:55:db:b1:23:3f:01:b7:84:5d:a8:1d:05:41:c8:
e7:4a:17:9f:9f:ec:05:b0:c1:d2:d9:c4:1a:97:02:81:f3:44:
02:93:f4:2d:87:68:4b:f2:4e:d9:43:48:fc:24:22:82:cf:2a:
9a:e9:a8:24:90:be:1e:aa:0f:3e:24:45:00:36:24:1b:4f:47:
d1:54:96:ec:03:7b:6e:24:c0:8b:14:b7:51:32:73:b1:4d:95:
a8:e9:b7:a8:a0:81:3a:ee:0f:1e:f6:ec:7d:20:f0:0d:be:fc:
0f:ca:b4:5b:64:21:22:fb:05:85:1a:a0:6c:5d:44:9b:7f:c9:
ff:14:f6:07:84:2c:ca:67:d6:2b:2e:a9:f2:5e:1b:82:9d:aa:
bd:43:5e:b0:18:3d:f4:0d:35:9d:fb:63:42:ec:1a:98:2c:ad:
4e:90:0a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 20:51:12 2026 by rpki-client