Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AB56E466EFA11F195C227FACE1D38B0.roa
File: 2AB56E466EFA11F195C227FACE1D38B0.roa (raw, json)
Hash identifier: AovUgjfX4YlxMyg3Pk1CaNQhJ/X78jvIrqBYPlWnte0=
Subject key identifier: FE:58:66:1C:27:72:F6:2D:39:B1:A0:B4:A1:96:DC:4D:EE:A2:38:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D49E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AB56E466EFA11F195C227FACE1D38B0.roa
Signing time: Tue 23 Jun 2026 11:53:37 +0000
ROA not before: Tue 23 Jun 2026 11:53:32 +0000
ROA not after: Sun 09 Aug 2026 11:53:32 +0000
asID: 32043
IP address blocks: 154.82.162.0/23 maxlen: 24
154.82.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119966 (0x1d49e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 11:53:32 2026 GMT
Not After : Aug 9 11:53:32 2026 GMT
Subject: CN=6a3a73c0-2cd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7d:61:90:6b:11:9c:02:30:83:7b:60:5e:9a:
bb:ed:df:15:d8:da:d2:32:bc:1e:cc:1b:ed:d4:99:
80:e9:94:8f:e6:40:14:c9:01:a0:30:32:1d:99:b2:
32:7b:df:4d:8a:bf:e3:f5:5b:e6:b3:38:94:99:7a:
32:14:5c:06:8e:41:cf:9c:e2:3b:b8:29:20:1a:ba:
c3:8f:df:32:43:df:d2:44:ef:a1:66:25:a5:69:bc:
fd:e8:48:39:25:69:2d:d4:c3:7b:6b:62:a2:34:ac:
28:c7:57:2a:62:55:c0:30:fe:ee:32:89:ae:58:ee:
c2:2e:bb:7f:e7:51:29:fb:0e:37:cd:92:a9:16:5a:
26:02:0a:15:05:81:56:07:05:3c:68:a4:c5:b8:fa:
c2:ce:3e:5e:ad:e4:a5:44:1f:4c:d1:de:57:fd:5f:
d0:0c:bd:75:1f:84:02:52:27:c6:f0:2f:fb:f5:b0:
ec:95:1f:93:e0:34:e5:28:08:3c:02:3c:b8:6f:a1:
4c:14:64:40:17:0b:e1:0e:1c:d2:e5:f9:7a:f9:68:
8b:b2:44:67:02:31:41:02:76:64:67:65:a4:01:cd:
5b:88:2f:e3:ba:9f:bd:a8:81:e2:3b:66:3f:19:25:
0a:71:ea:c8:d0:8f:d7:bd:94:d6:3c:b0:1c:08:fe:
9b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:58:66:1C:27:72:F6:2D:39:B1:A0:B4:A1:96:DC:4D:EE:A2:38:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AB56E466EFA11F195C227FACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.162.0-154.82.167.255
Signature Algorithm: sha256WithRSAEncryption
21:e1:85:64:2b:38:17:ad:41:9c:e6:88:24:6e:f7:26:f3:f1:
a3:f7:53:13:d0:29:bb:7a:12:8d:fe:58:df:ae:0f:ab:a2:29:
42:5b:76:ae:55:a0:96:22:31:62:ca:3f:60:c6:a3:19:54:1e:
0d:01:86:9c:6b:7d:18:57:67:3e:86:f1:66:06:65:ce:5c:1b:
01:82:46:95:9c:83:c9:28:0c:e7:73:b5:2c:7f:86:64:b6:f7:
6e:06:7b:8e:b3:fb:4e:98:bf:27:99:85:cd:1a:b9:81:2a:f8:
b1:15:87:62:2f:b9:10:aa:4f:1e:83:23:33:98:cb:e8:75:f8:
ea:56:96:ff:44:cc:2c:3b:13:a7:97:fa:df:c0:fa:c3:76:88:
1c:42:0f:64:a9:91:cb:3c:be:15:27:fb:ed:6a:ac:0b:8a:76:
62:da:6a:86:6c:0f:30:07:3e:2c:f6:8d:e5:ff:df:4d:b4:c8:
1a:59:5e:3d:bc:81:c2:24:c9:ea:66:90:f1:94:60:f6:d5:bf:
8a:7e:bc:b0:e9:52:ab:ee:25:fd:38:0c:94:70:19:aa:3b:6b:
a8:88:fc:2a:50:a5:8b:96:8c:c8:d4:95:19:c7:ff:9e:d4:c7:
17:07:c4:7b:b3:f9:98:94:0f:d3:c6:e6:ee:82:26:ff:20:35:
5d:68:f6:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:55 2026 by rpki-client