Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/429A231055C511F1911DBDF7CE1D38B0.roa
File: 429A231055C511F1911DBDF7CE1D38B0.roa (raw, json)
Hash identifier: zbspsQ5H6mH6GXOs2OsUapfXDfou1Iy3idogVLXN5gc=
Subject key identifier: 0F:AF:5C:FC:89:99:AA:B5:69:F7:C1:33:78:4E:60:3F:2B:24:AF:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CDEE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/429A231055C511F1911DBDF7CE1D38B0.roa
Signing time: Fri 22 May 2026 10:01:54 +0000
ROA not before: Fri 22 May 2026 10:01:49 +0000
ROA not after: Wed 19 Aug 2026 10:01:49 +0000
asID: 400619
IP address blocks: 154.91.48.0/20 maxlen: 24
154.91.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118254 (0x1cdee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 10:01:49 2026 GMT
Not After : Aug 19 10:01:49 2026 GMT
Subject: CN=6a102992-d2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1d:5b:7b:93:83:c1:a3:94:bc:79:8c:aa:2c:
01:62:a1:1a:8b:d8:a6:a1:89:83:90:98:bc:a7:47:
0e:46:b4:7e:93:a3:ff:2c:00:4f:03:0a:9a:d2:4e:
1e:23:4e:de:77:36:48:e5:50:ea:a2:01:e5:b3:9f:
bd:12:49:08:9b:7e:05:d0:2e:26:c2:0f:b2:8a:a5:
3a:29:40:cf:ff:43:4b:da:0d:21:5e:9a:f8:93:72:
a4:91:04:a2:6f:54:ed:cd:1b:06:de:90:e8:aa:95:
5e:6c:6b:1a:ff:1f:08:75:71:6d:e5:08:f5:43:22:
5c:a5:d4:82:bd:d2:fb:d3:df:ad:49:37:2a:30:15:
de:f1:1b:8d:d7:1e:b4:7a:bd:7e:db:71:82:a3:7d:
5c:d8:be:d8:89:ac:84:ed:ae:69:85:6b:5b:be:8b:
31:96:74:03:be:2d:61:bd:da:de:6a:20:52:29:eb:
4a:c7:07:7c:0f:3b:ae:73:34:75:6d:7e:7b:c6:65:
f9:c0:d0:1a:71:7e:7d:58:ec:87:81:28:16:fd:a9:
2e:fd:1f:33:33:cf:5d:ee:22:47:7c:ad:21:ad:c8:
4c:6b:37:44:c5:84:5d:b5:22:7a:f3:d2:4b:2f:15:
8a:d0:ca:e7:40:2f:01:44:ed:2d:8b:8b:c2:da:5f:
2a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AF:5C:FC:89:99:AA:B5:69:F7:C1:33:78:4E:60:3F:2B:24:AF:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/429A231055C511F1911DBDF7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.48.0/20
154.91.176.0/20
Signature Algorithm: sha256WithRSAEncryption
8b:ce:df:4e:1a:63:60:3d:2d:a3:92:5f:45:27:a5:a4:26:a3:
a8:51:84:21:77:10:d8:de:23:c9:42:2c:a3:ee:aa:36:10:fc:
fd:52:11:14:0a:62:f8:4a:fa:31:6a:ca:f2:32:9f:d1:52:05:
7d:e4:f4:fa:54:5c:5c:66:64:d3:4e:62:bd:da:38:d6:5d:35:
a7:0e:49:73:f4:3e:7a:b5:81:47:b9:ff:a9:6b:40:ee:ec:7a:
37:39:a5:71:33:4a:fc:d5:80:10:12:54:0c:d8:1f:24:dc:35:
38:6e:fb:bc:00:58:e0:81:56:b7:e3:14:c1:3b:42:41:94:54:
6c:d2:cc:dc:0d:d1:5e:da:79:0d:30:49:ab:40:da:9e:02:cf:
c5:82:ff:dd:1c:63:c7:d4:4e:5c:44:44:88:d6:50:9b:dc:9e:
16:fd:86:99:9b:c5:26:26:48:02:0f:ed:1f:24:c8:b7:d6:79:
74:e5:0f:29:24:00:d6:7d:0c:bb:fc:38:af:0f:ae:19:3c:1c:
8e:b1:97:04:49:96:f9:c7:ea:59:55:7f:8c:c3:a6:a8:53:ea:
5e:5e:79:1a:fa:44:7b:ce:13:95:de:dd:53:1e:68:17:fa:bc:
55:b4:c6:ee:02:43:2f:77:7c:3a:2f:4e:d2:ca:3a:a6:19:c8:
74:90:96:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 10:48:09 2026 by rpki-client