Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1740FA7E57E411F1A6B382DDCE1D38B0.roa
File: 1740FA7E57E411F1A6B382DDCE1D38B0.roa (raw, json)
Hash identifier: Ng4EZK99WHUrypoB5QSHZVSQpOy9Nmf30FpyxzClZEg=
Subject key identifier: A4:B6:C8:EC:E3:FB:89:8D:87:93:21:99:4D:41:B7:82:7D:06:20:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CF2B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1740FA7E57E411F1A6B382DDCE1D38B0.roa
Signing time: Mon 25 May 2026 02:47:38 +0000
ROA not before: Mon 25 May 2026 02:47:34 +0000
ROA not after: Mon 06 Jul 2026 02:47:34 +0000
asID: 20326
IP address blocks: 154.83.152.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118571 (0x1cf2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 25 02:47:34 2026 GMT
Not After : Jul 6 02:47:34 2026 GMT
Subject: CN=6a13b84a-b441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:91:61:ee:41:1a:75:15:a3:b1:5d:27:9c:a0:
f1:21:8d:02:fa:da:ef:38:dd:c5:fe:bc:8a:90:da:
05:44:4e:f4:8f:d9:19:6f:45:2d:1d:ae:c5:12:32:
d4:cc:23:5d:ad:66:df:e5:c7:c0:19:1e:6c:9e:6c:
a7:0c:57:28:04:1b:11:23:f2:81:24:2a:38:55:30:
d7:92:88:6c:e8:ae:35:1d:fe:43:65:ea:e1:4a:2d:
e9:f6:e4:20:6b:3d:0b:7c:49:34:5a:fd:b9:c7:e2:
88:b5:80:f7:01:ef:af:5f:93:dc:b6:42:c0:ae:e9:
7d:a6:00:76:2e:5d:3d:1e:3b:a4:63:d2:85:0b:e9:
64:05:64:a9:bd:06:3a:a7:8b:61:40:f7:6d:b2:7b:
65:fd:10:f7:d8:12:85:e2:06:f7:fd:3d:15:32:b5:
c3:c0:c4:27:3f:bc:25:0c:20:6d:cf:8f:22:45:0e:
0f:02:bc:9c:7c:45:08:72:0a:dc:04:62:a7:9a:7a:
98:9e:1d:97:e7:3a:1b:7a:42:0f:e6:1e:39:be:38:
02:01:40:a8:69:b2:5a:17:6c:54:37:b3:ae:fe:ae:
a6:cc:75:55:25:aa:c2:1b:6e:b4:26:79:0a:2b:d7:
1e:4c:ce:77:7b:8e:9f:dc:c8:50:11:3c:d7:02:b0:
4e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B6:C8:EC:E3:FB:89:8D:87:93:21:99:4D:41:B7:82:7D:06:20:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1740FA7E57E411F1A6B382DDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.152.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:6f:39:21:a8:1e:bc:91:1a:1a:0a:77:f5:d9:4f:b2:83:e2:
07:4d:4e:65:0e:f0:c1:84:21:4f:13:47:a3:69:15:0a:5f:6a:
74:e4:4e:ab:93:ed:24:f7:1c:cb:44:16:fd:31:82:39:5f:91:
25:83:0c:f9:10:ca:a4:08:3e:9e:86:f2:5c:fe:12:3c:ab:f1:
46:52:03:2f:61:7c:1c:1e:cf:1e:d5:1c:43:dc:b4:95:4f:9d:
30:09:e6:e0:12:0c:1f:0a:a0:46:7a:1a:04:55:e5:15:5b:a2:
6a:0e:5f:e6:04:94:9a:69:d4:cc:23:33:ca:d3:07:9d:e4:2b:
e3:00:9d:bb:21:58:ae:94:b2:bb:34:5f:67:3c:73:03:fd:4b:
81:3a:55:a2:2e:f9:f1:4f:53:22:71:27:ec:f8:33:89:d0:96:
33:83:47:46:57:4f:00:44:0d:d1:0b:a2:e6:60:e9:bb:36:bb:
03:f0:ff:4f:b5:1e:13:22:0e:af:b3:23:bc:ca:8a:a7:06:d6:
26:13:b5:37:25:96:b9:47:4b:ec:8e:1f:7b:76:fc:b1:01:37:
d8:1f:3f:55:c7:31:d5:d3:66:c1:50:8b:ba:b4:fc:df:02:49:
0f:c7:7c:0e:89:dc:62:f7:86:b4:c2:cb:74:bb:cc:d2:b4:09:
df:98:de:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:30:54 2026 by rpki-client