Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27B480EE555311F1BFB6D2B6CE1D38B0.roa
File: 27B480EE555311F1BFB6D2B6CE1D38B0.roa (raw, json)
Hash identifier: GeP/aAPBYtoqZ8DqUBLkQWp3mrHYMbi21wsCYa8QLfw=
Subject key identifier: CD:DB:AF:E0:C2:40:22:D0:41:50:4A:A6:DA:E2:1E:76:57:B2:7C:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CDCF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27B480EE555311F1BFB6D2B6CE1D38B0.roa
Signing time: Thu 21 May 2026 20:25:07 +0000
ROA not before: Thu 21 May 2026 20:25:02 +0000
ROA not after: Fri 26 Jun 2026 20:25:02 +0000
asID: 138915
IP address blocks: 154.205.145.0/24 maxlen: 24
154.205.148.0/24 maxlen: 24
154.205.149.0/24 maxlen: 24
154.205.150.0/24 maxlen: 24
154.205.151.0/24 maxlen: 24
154.205.152.0/24 maxlen: 24
154.205.153.0/24 maxlen: 24
154.205.154.0/24 maxlen: 24
154.205.155.0/24 maxlen: 24
154.205.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118223 (0x1cdcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 20:25:02 2026 GMT
Not After : Jun 26 20:25:02 2026 GMT
Subject: CN=6a0f6a22-e449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c5:96:44:3d:b8:5b:69:0c:4b:ad:54:7c:04:
a7:f2:d9:44:5f:42:57:76:56:47:a1:ba:29:9d:af:
97:d3:dd:50:e1:78:50:bc:95:1c:c6:1a:df:fa:98:
db:d8:61:ba:6d:08:ce:3b:26:df:60:2c:6e:dc:2e:
91:4e:13:32:68:f8:b9:b6:b3:2d:bd:23:d6:d7:b5:
07:02:1a:8a:08:33:0c:ab:73:32:b5:65:99:4f:4f:
7a:be:23:7d:ac:fe:f7:ac:a1:e5:15:57:af:53:5d:
a4:c2:e6:3b:20:10:09:b1:5c:fa:71:24:6e:94:98:
6b:16:03:bc:61:d6:89:b0:9e:ce:89:29:dc:fa:ec:
92:f3:f4:06:11:7a:50:2e:83:ef:49:cf:96:22:53:
af:34:87:b0:b2:21:9d:14:4f:36:0e:ef:d9:60:63:
ea:7e:d4:84:78:1e:93:6f:9f:50:fe:6f:ef:ef:53:
e1:24:2e:58:d4:dd:1f:e2:e0:db:57:af:14:09:b5:
ae:30:de:31:d0:df:2a:7a:80:1e:c9:ee:7d:f7:48:
77:af:ee:30:34:96:ba:e9:34:b0:10:b1:a7:53:3a:
e4:d2:a1:6e:bd:fc:f6:c8:16:89:df:bf:69:e0:ee:
79:ae:91:97:89:fe:95:55:ae:2c:02:c0:91:20:11:
c3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DB:AF:E0:C2:40:22:D0:41:50:4A:A6:DA:E2:1E:76:57:B2:7C:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27B480EE555311F1BFB6D2B6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.145.0/24
154.205.148.0-154.205.156.255
Signature Algorithm: sha256WithRSAEncryption
7e:02:7c:b6:13:25:ed:b5:c7:92:f9:af:05:3b:42:eb:ac:ec:
ce:70:8c:c2:82:d3:b0:bb:95:2c:81:f8:b8:d0:a6:31:4f:17:
71:d1:ca:8c:26:d3:3e:e5:5a:34:3a:99:c7:e7:11:e8:61:d4:
86:6d:02:3b:2b:a4:a4:d9:23:07:7c:92:7e:99:3f:96:b1:6c:
50:68:29:32:39:03:eb:94:4c:92:54:89:10:46:e2:b6:23:70:
1a:f7:61:06:36:78:9c:35:8a:6c:91:56:b7:04:c1:4d:19:d8:
3b:59:50:55:70:f0:5e:be:f9:2a:a9:de:b8:a8:c1:6e:51:b0:
12:ea:e2:7f:d0:f3:4f:7b:07:76:66:ca:43:55:bf:44:db:ce:
8d:d5:66:22:b2:59:61:58:d4:26:b8:bc:0a:90:25:3b:b3:3a:
4c:2b:2d:15:7c:3f:40:77:57:4a:99:2a:7c:7c:94:95:aa:91:
bb:e1:72:a9:a0:b3:bc:c8:c9:ed:07:f6:30:16:5c:19:a6:59:
ee:1d:cf:86:46:b4:89:35:62:42:91:f6:74:bd:d9:41:ed:c6:
d1:cb:8c:39:65:10:26:19:52:f4:8e:ba:2d:c4:22:87:4c:51:
21:0f:a1:00:a7:68:8d:83:c4:f7:2f:b2:b9:e0:ea:7d:28:3a:
8b:40:cc:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:12:41 2026 by rpki-client