Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AC0AFC0506011F1959DB019CF1D38B0.roa
File: 3AC0AFC0506011F1959DB019CF1D38B0.roa (raw, json)
Hash identifier: zdMjRfkG9e3lWOogBmThmawbC4HEYVFUMU9RYWlocZc=
Subject key identifier: B0:34:82:B3:C5:8E:72:57:22:30:AC:BD:24:11:E7:34:CE:17:11:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CBB4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AC0AFC0506011F1959DB019CF1D38B0.roa
Signing time: Fri 15 May 2026 13:16:06 +0000
ROA not before: Fri 15 May 2026 13:16:01 +0000
ROA not after: Tue 16 Jun 2026 13:16:01 +0000
asID: 17497
IP address blocks: 154.196.216.0/21 maxlen: 24
154.196.216.0/24 maxlen: 24
154.196.217.0/24 maxlen: 24
154.196.218.0/24 maxlen: 24
154.196.219.0/24 maxlen: 24
154.196.220.0/24 maxlen: 24
154.196.221.0/24 maxlen: 24
154.196.222.0/24 maxlen: 24
154.196.223.0/24 maxlen: 24
154.197.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 00:07:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117684 (0x1cbb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 13:16:01 2026 GMT
Not After : Jun 16 13:16:01 2026 GMT
Subject: CN=6a071c96-7875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:97:2e:b8:ce:b7:90:73:87:f9:b6:fe:e5:
fc:0e:13:4c:2c:1d:ba:4c:9b:93:b4:73:66:e9:f4:
bf:99:c2:f1:31:82:f9:d0:61:d6:ac:41:90:58:bd:
0d:65:4e:69:5c:dc:f7:59:59:b0:dd:b5:e2:b0:64:
08:b0:2b:e1:4c:38:00:2b:0b:fb:e7:56:c0:57:c4:
55:a5:11:df:67:cd:c8:66:f4:bd:45:27:a0:7e:fe:
41:0a:87:48:92:92:5f:c0:d9:d1:90:a8:b4:4b:48:
ed:c8:5d:95:24:76:da:b6:b3:ce:d4:b2:58:a1:a6:
c6:bd:be:b2:16:7c:88:76:9f:85:8e:5f:98:e1:e7:
ef:11:ec:1b:46:1c:a4:86:f3:69:6e:6d:f1:a6:6f:
d6:b8:c5:d8:10:49:b1:1d:cc:0a:72:15:f0:77:b2:
9a:f4:d6:b0:40:cb:ba:96:a3:df:45:0b:50:d1:1f:
ac:36:fe:d2:7a:92:d3:53:32:4e:e0:05:c6:62:90:
e8:9b:1c:db:33:8a:a2:f7:e8:ba:a2:45:6d:55:f5:
68:dd:6a:54:b2:7d:d8:00:ac:23:7d:5f:b9:7c:17:
a6:57:5c:60:35:d0:d3:4f:f1:86:a5:dd:59:62:4d:
30:b1:12:4c:25:a9:3a:c2:71:fa:47:69:45:99:51:
e6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:34:82:B3:C5:8E:72:57:22:30:AC:BD:24:11:E7:34:CE:17:11:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AC0AFC0506011F1959DB019CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.216.0/21
154.197.27.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:47:4e:d5:9a:1c:e5:3c:ee:8c:b4:91:51:56:b0:6b:33:ee:
33:ac:42:03:4d:b0:70:0c:a0:e4:c8:73:3a:9b:0e:21:85:cd:
62:1d:2e:c6:fe:3b:31:5e:4b:cd:02:b9:69:71:c2:e5:31:6f:
c5:d2:4a:03:c3:de:62:7e:c5:46:8d:53:a9:cb:c2:b2:5a:8c:
56:45:10:4b:2e:60:74:55:8f:28:6e:f3:f1:61:bc:94:18:a1:
54:0b:38:e4:10:61:81:8d:2d:9d:10:9c:3b:da:7e:d7:d9:e8:
35:0f:2d:bc:e0:3b:d0:3f:f7:fc:09:0d:44:be:a4:5c:7a:7a:
ef:6e:f7:25:a3:83:20:b6:23:fa:ed:84:db:c1:3c:f5:bf:4f:
5e:b7:4c:14:8f:a9:89:77:d8:43:d6:be:09:b6:eb:59:2c:09:
ca:b5:5a:92:d9:42:78:7b:cc:7a:ab:98:89:66:49:a6:e1:5b:
12:7c:1b:30:f7:73:19:24:66:86:06:cf:be:5f:73:07:8d:1f:
9e:83:5f:60:b7:3d:bc:e1:e7:f5:13:26:a8:b9:dc:ed:dd:d2:
1e:c2:60:95:56:1c:23:f1:3d:38:59:74:30:28:1f:4b:07:3f:
ac:05:d5:3f:7e:79:dd:c7:e7:fd:e0:1a:58:8d:1a:da:35:6b:
a5:9a:33:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 11:55:04 2026 by rpki-client