Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E2D5C605B4211F18EAB72DFCE1D38B0.roa
File: 4E2D5C605B4211F18EAB72DFCE1D38B0.roa (raw, json)
Hash identifier: QSGlhvu6M2SIFjoGGsIYeDG4TJBKjazezprAiir4fsg=
Subject key identifier: 49:96:16:44:EE:EB:0E:D9:67:0F:10:DA:F1:28:B5:FD:79:9C:DE:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D066
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E2D5C605B4211F18EAB72DFCE1D38B0.roa
Signing time: Fri 29 May 2026 09:39:37 +0000
ROA not before: Fri 29 May 2026 09:39:32 +0000
ROA not after: Thu 02 Jul 2026 09:39:32 +0000
asID: 49505
IP address blocks: 154.205.244.0/24 maxlen: 24
154.205.245.0/24 maxlen: 24
154.205.246.0/24 maxlen: 24
154.205.247.0/24 maxlen: 24
154.223.198.0/24 maxlen: 24
154.223.199.0/24 maxlen: 24
154.223.200.0/24 maxlen: 24
154.223.201.0/24 maxlen: 24
154.223.202.0/24 maxlen: 24
154.223.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 00:07:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118886 (0x1d066)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 09:39:32 2026 GMT
Not After : Jul 2 09:39:32 2026 GMT
Subject: CN=6a195ed8-b261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:93:46:25:a5:6a:05:e1:42:d4:90:9b:80:35:
f1:6e:a0:61:f5:27:85:7f:cd:0c:64:23:76:bd:a3:
f6:9b:f6:46:54:02:0f:c8:bd:26:01:d2:45:4d:ac:
b1:21:b7:27:0d:bd:1a:05:8e:29:b3:6f:02:a5:23:
95:b8:e9:6d:ab:cc:43:27:21:2f:21:89:bd:82:37:
a1:a9:46:41:f2:ef:dc:ca:f4:59:a2:08:a5:9f:88:
f4:ee:6e:54:93:ec:82:8f:73:d7:bc:72:eb:64:37:
c6:a2:38:38:07:d8:ee:88:5d:0e:50:1b:8c:b4:d7:
11:80:ce:85:a0:c4:09:47:7b:65:b3:23:ae:90:d1:
4e:8d:83:9a:26:c6:54:f2:ab:18:73:59:f7:f1:13:
8d:26:fc:62:35:fc:39:fe:2d:e5:72:5e:54:f5:c8:
b7:3c:c4:31:0f:b3:91:8f:73:e4:9a:d4:9f:a1:5e:
66:d8:af:e9:c1:36:76:8f:84:e9:12:6a:6d:17:62:
3a:2a:5b:ff:cd:ed:ff:66:d3:96:02:3d:e9:c3:9a:
9d:db:83:d1:fc:c1:8e:58:bf:48:5c:1c:6c:f6:c4:
a4:81:17:3d:57:c1:50:dd:3a:c0:d2:07:52:30:aa:
0c:92:05:6d:95:e5:7a:56:0e:fb:e8:c3:42:d0:e6:
16:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:96:16:44:EE:EB:0E:D9:67:0F:10:DA:F1:28:B5:FD:79:9C:DE:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E2D5C605B4211F18EAB72DFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/22
154.223.198.0-154.223.203.255
Signature Algorithm: sha256WithRSAEncryption
82:27:0b:47:1e:00:b3:28:b5:98:70:3b:95:c8:74:f7:3a:03:
b8:55:92:de:e8:55:a9:0e:36:2e:ea:89:09:e4:2a:32:a0:88:
d8:de:c8:36:b5:b8:98:78:b1:80:2f:01:d6:13:08:78:c7:25:
38:66:86:bc:fb:33:ff:6b:81:63:87:7a:9b:dd:1e:a4:c3:4b:
a6:3d:ca:3a:73:c0:6e:77:e1:d7:f8:d4:6e:37:d6:28:8e:f9:
e4:c7:cc:93:d2:c4:b6:76:2a:ee:e1:63:83:25:7c:2a:99:56:
93:be:1b:41:dd:5c:b5:f2:c5:7c:d1:41:c4:a1:c4:4e:5c:af:
0a:4f:48:5f:44:0e:bb:5b:77:76:cb:ad:0d:d8:fa:49:89:7d:
47:9f:c6:16:82:38:cc:f1:ac:0d:92:96:76:95:0f:ac:7d:d3:
e8:c8:de:25:9a:83:f0:1f:8c:42:46:14:16:09:80:67:e6:d8:
b5:2b:83:f4:bd:13:85:76:69:8d:a3:13:a1:3f:c7:7c:7c:89:
74:91:09:45:f6:96:56:fe:ce:e9:9c:70:fd:65:a0:16:04:5f:
87:e7:c6:53:c5:2d:22:ee:0a:b9:07:8a:a7:ed:05:78:19:a1:
96:c1:65:3e:1c:7a:c2:99:31:59:43:e8:32:32:f4:d0:c0:b8:
98:b6:0b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 22:51:46 2026 by rpki-client