Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4557B18269B411F1AC32511ECF1D38B0.roa
File: 4557B18269B411F1AC32511ECF1D38B0.roa (raw, json)
Hash identifier: 81LNUy4P8QA0oDF4EBQRykdbzTRVWyvicEZ7zNscgEM=
Subject key identifier: 87:78:6B:10:A7:40:07:90:10:3F:C0:AF:7B:65:CD:ED:B5:19:CD:84
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D387
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4557B18269B411F1AC32511ECF1D38B0.roa
Signing time: Tue 16 Jun 2026 18:50:41 +0000
ROA not before: Tue 16 Jun 2026 18:50:36 +0000
ROA not after: Fri 24 Jul 2026 18:50:36 +0000
asID: 214413
IP address blocks: 154.82.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119687 (0x1d387)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 18:50:36 2026 GMT
Not After : Jul 24 18:50:36 2026 GMT
Subject: CN=6a319b01-2240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b2:af:e4:5b:89:02:3e:b6:8d:54:68:d8:eb:
e7:db:2f:15:de:89:58:f5:e3:49:b6:6a:51:32:4c:
d0:36:81:b7:64:22:0a:4f:1d:a3:9f:a9:53:e8:73:
58:6d:12:cd:87:78:82:5a:57:f2:42:85:90:2f:ae:
d1:67:1d:11:10:94:0c:a1:23:c7:0e:c5:f7:e1:3e:
5f:df:33:02:b5:8e:0a:74:66:3b:fc:3d:01:4f:ed:
d4:98:7a:62:58:40:b5:61:2a:ef:aa:81:f2:1a:6a:
24:1b:36:5a:6c:7f:03:c7:59:1a:b3:e3:c3:b7:92:
72:5f:b3:19:f0:5a:19:87:bb:96:13:8f:50:a6:31:
fe:68:e9:ca:a7:99:3b:f8:13:60:66:6a:1f:ed:ed:
f9:f7:35:04:fc:4b:c8:fd:18:e2:63:57:d0:a7:15:
34:60:cf:67:e7:b3:fb:1a:d7:53:d8:a6:9a:0c:7f:
fe:8e:13:78:ab:3f:7d:95:70:4e:7f:5a:cb:0c:46:
c2:d4:6e:da:6f:77:04:11:f3:4c:cc:62:6b:c9:d9:
82:ee:f1:27:ac:c3:9d:40:8f:cb:73:06:97:51:e5:
cf:f8:12:66:32:4a:4a:9e:0d:91:a4:b8:02:d5:f0:
e8:0c:a7:ce:5f:39:24:3c:73:b7:39:63:e2:c7:96:
5e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:78:6B:10:A7:40:07:90:10:3F:C0:AF:7B:65:CD:ED:B5:19:CD:84
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4557B18269B411F1AC32511ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.0.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:a7:ad:e6:88:03:df:91:5c:5a:3d:7b:3e:4c:66:26:b5:7b:
95:7e:74:77:a5:a7:c1:23:94:2a:98:68:5e:47:d4:a0:49:16:
7c:1a:86:65:b5:48:b2:a9:1c:29:18:2b:fc:06:d9:a4:a0:48:
48:e3:0b:27:77:b4:3b:5b:83:3a:1e:5a:90:0e:8f:c8:af:f1:
da:ec:13:67:38:0e:00:65:47:7d:99:af:7c:f8:69:5f:c3:2d:
e4:ae:51:e5:30:4f:79:1b:71:bb:6d:b7:7c:94:75:09:8c:2a:
85:be:b3:94:e6:1a:58:fe:4a:aa:83:28:0c:97:82:ee:35:e8:
11:6e:83:61:96:7b:3b:c7:24:af:ad:0a:6b:81:a5:6f:e3:4f:
b0:0f:f5:0a:76:7a:25:1d:ca:b2:11:bf:87:19:4e:0d:1b:3d:
87:79:fa:1d:83:54:4c:f5:e2:e0:06:2a:c1:a2:a0:15:af:7c:
4d:f1:8c:d3:97:db:aa:9c:ed:a3:0d:98:2b:1a:74:c4:c7:a2:
29:43:6f:ab:5c:16:c3:04:6f:b7:cc:3a:bf:23:1f:28:25:55:
a8:54:d2:0b:0e:9f:52:58:60:3e:68:ff:fe:fe:0a:59:1b:ad:
8f:47:cd:0f:23:d0:7b:43:69:e6:44:cc:3e:c0:71:78:92:57:
ee:48:81:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:54 2026 by rpki-client