Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/140B8C663D0E11F186DBE6DCCE1D38B0.roa
File: 140B8C663D0E11F186DBE6DCCE1D38B0.roa (raw, json)
Hash identifier: 6DDpBy7lXB6Dd6EqSJd4Q7wdKw2dY79uQzliIoZNzh4=
Subject key identifier: 9C:FA:12:11:45:09:93:EA:2F:E0:30:3F:2E:40:9E:4A:AB:C6:9A:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C643
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/140B8C663D0E11F186DBE6DCCE1D38B0.roa
Signing time: Mon 20 Apr 2026 23:10:10 +0000
ROA not before: Tue 21 Apr 2026 23:10:05 +0000
ROA not after: Sun 24 May 2026 23:10:05 +0000
asID: 204770
IP address blocks: 154.88.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116291 (0x1c643)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 21 23:10:05 2026 GMT
Not After : May 24 23:10:05 2026 GMT
Subject: CN=69e6b252-7fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ca:c0:c2:99:bf:b0:35:88:15:9d:a9:00:33:
d3:68:92:af:a5:5d:9d:65:6e:4e:b8:22:ae:27:cf:
a4:43:e9:5b:f7:81:f7:66:aa:ab:5b:e1:bf:e3:bf:
bb:3d:6e:7d:26:71:20:be:72:09:5c:6f:8f:e7:63:
a8:1a:61:2e:bf:17:19:0d:97:58:5c:64:4f:30:70:
bf:f9:37:18:f5:47:cb:62:8e:5c:bc:87:60:53:f2:
7c:9a:6a:46:f6:9f:7d:10:7f:ae:a3:41:aa:52:29:
fc:e8:af:17:98:5a:d7:03:30:95:0d:cb:3f:e3:52:
ca:ad:5e:86:dc:47:f4:bf:d4:f8:68:8c:f5:ac:a0:
59:58:5b:39:4a:f7:ee:0d:a2:e1:67:87:d9:68:55:
32:ce:fd:93:81:51:8d:b2:8d:04:ea:82:fb:7b:3b:
20:67:32:87:90:60:4d:aa:ec:5d:b6:09:ef:2b:a3:
58:0e:b9:20:7c:7c:d7:18:92:31:d4:4b:6a:05:50:
4e:e4:61:d4:6b:9c:17:ec:4e:08:8f:3b:33:31:59:
ed:67:5e:fd:1f:a5:69:70:95:07:c8:f6:56:55:36:
8e:b1:80:85:71:82:9d:95:80:79:c8:0c:e0:33:f6:
db:65:59:2f:03:a0:fc:cb:9a:0d:e5:99:78:35:1b:
98:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FA:12:11:45:09:93:EA:2F:E0:30:3F:2E:40:9E:4A:AB:C6:9A:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/140B8C663D0E11F186DBE6DCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.3.0/24
Signature Algorithm: sha256WithRSAEncryption
83:53:1e:02:c8:6e:c7:35:58:e6:87:bf:df:63:58:9a:69:40:
58:20:7f:b8:d8:1f:33:8f:3a:77:86:96:9d:b5:48:be:1f:ec:
5d:00:01:16:7b:33:d1:44:cc:f9:26:5d:03:41:69:d8:06:16:
d8:92:25:33:fc:0e:9f:99:4c:c5:e3:78:94:03:62:28:fa:88:
f7:74:58:fe:c6:21:06:59:a6:c5:82:18:c2:15:6e:43:e0:48:
50:c3:31:22:fb:b1:ea:56:07:0a:7e:7b:9a:3f:81:04:81:e1:
fb:9c:9b:05:99:94:24:8a:5f:23:1c:6a:1c:99:52:e8:de:42:
da:ac:bd:71:06:71:c4:78:8e:75:a1:18:70:60:9d:c9:66:55:
1a:78:f0:52:3d:26:32:a2:da:f7:de:89:c4:e3:ae:3f:a0:a6:
fc:82:b8:ea:f1:b8:b6:b1:c7:3d:78:d2:2f:d3:ad:bd:38:34:
63:eb:13:ee:0f:0d:ed:07:d0:be:17:62:7b:09:46:28:7d:ca:
2d:ad:21:5e:41:72:8c:75:a1:a9:01:b3:02:ae:5d:77:9f:d1:
5c:e2:d6:ea:b1:7b:85:2c:73:86:04:07:c3:ab:d3:ed:2f:8d:
ef:07:fb:f9:2d:e1:ef:5f:42:d5:0c:db:e8:de:88:6c:03:2a:
3e:05:53:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:05 2026 by rpki-client