Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B08F66A507111F19C14B601CF1D38B0.roa
File: 4B08F66A507111F19C14B601CF1D38B0.roa (raw, json)
Hash identifier: WZzmogdAGMDNe7JAXp8gJ8Cdicz0cdRSzDnaaA1pdss=
Subject key identifier: D6:7E:0C:BE:77:E6:74:DD:9B:38:EF:DB:1A:69:79:49:68:18:E3:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CBC8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B08F66A507111F19C14B601CF1D38B0.roa
Signing time: Fri 15 May 2026 15:18:15 +0000
ROA not before: Fri 15 May 2026 15:18:10 +0000
ROA not after: Mon 22 Jun 2026 15:18:10 +0000
asID: 8796
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117704 (0x1cbc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 15:18:10 2026 GMT
Not After : Jun 22 15:18:10 2026 GMT
Subject: CN=6a073937-83ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7f:3d:ad:c1:f3:44:cd:67:aa:4a:cc:d5:33:
6b:fd:42:64:e0:16:d1:be:e0:1c:4b:b7:0d:79:6a:
84:c5:b8:a9:63:d8:24:88:1b:fd:7d:9c:8d:4f:17:
dd:aa:6e:61:c6:4d:87:54:b0:e7:61:84:b7:22:43:
82:24:90:79:9a:3e:ee:93:f8:70:8d:c6:5e:e0:07:
69:a5:31:17:a5:7c:e4:c0:ad:73:4e:ee:44:54:3a:
19:a0:69:b0:0e:5c:e4:1f:f1:c2:cf:5a:aa:a8:94:
9b:f8:62:a3:fe:ba:18:39:11:15:6a:fc:e9:8a:93:
f7:a7:ad:ee:84:dc:90:cf:44:80:37:6e:0d:6f:83:
15:33:b2:a6:54:7c:93:a7:47:92:5f:53:e7:7f:7e:
90:6b:50:d3:2d:4f:c3:51:2c:c4:43:5e:0d:49:cb:
1b:96:e0:a4:7b:50:5e:01:86:1d:6b:29:88:41:62:
82:e3:1a:d2:ca:e0:4c:42:3d:8e:3b:f7:90:0b:c4:
6e:79:63:25:01:76:cd:5f:07:2e:35:e7:f3:f8:3c:
af:e6:44:fc:14:db:69:c9:94:23:a9:ce:91:0c:b5:
c7:f0:6f:a6:ea:e3:7e:a4:cd:de:35:f0:b2:c7:00:
b5:22:4c:f5:d8:4f:e3:a2:22:7b:87:bb:d6:19:bf:
ab:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7E:0C:BE:77:E6:74:DD:9B:38:EF:DB:1A:69:79:49:68:18:E3:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B08F66A507111F19C14B601CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
91:1e:be:c2:a6:26:66:cf:bd:f6:81:95:06:5e:df:03:e7:1a:
61:76:29:a3:95:3a:65:2d:e5:69:2d:e5:67:d8:a8:db:da:6c:
2c:5f:e7:f9:04:7b:09:d7:3d:71:75:64:69:cc:eb:38:dd:61:
32:69:1a:61:4d:29:6d:35:63:60:c4:df:fd:9a:78:1a:c0:23:
e2:1f:95:3f:31:f4:a9:28:27:dc:2b:3c:8b:7c:f0:d5:f7:be:
54:d7:07:8f:1c:69:98:b8:32:a2:0a:38:6c:c6:43:62:5c:ea:
d7:72:4c:cb:73:f7:24:3f:5f:ae:f1:d7:69:9f:bf:1c:d3:b9:
c0:bc:7a:d3:dc:16:51:0b:91:68:13:60:1c:b7:43:56:94:de:
37:be:d4:73:ae:4f:0a:71:bf:d7:53:89:a9:bf:46:23:27:cf:
82:bc:0d:ec:6d:c6:07:5e:66:60:e7:ea:31:bf:80:eb:59:50:
79:29:2e:a4:f0:b9:e7:fd:04:c3:9a:8b:22:13:4e:92:1a:9f:
05:9a:72:8b:15:ba:59:6e:9e:fa:1f:4f:12:88:9d:4a:f9:cf:
73:1f:14:7c:df:3e:92:11:b6:bc:cf:bd:b3:1a:10:d5:89:4f:
ac:39:c5:fd:c6:ed:27:4a:e1:fd:b9:74:e4:ea:82:f7:ef:63:
9a:21:3f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 05:21:55 2026 by rpki-client