Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56FCCCBE699711F1BB06ECF2CE1D38B0.roa
File: 56FCCCBE699711F1BB06ECF2CE1D38B0.roa (raw, json)
Hash identifier: pdXQbSSNM7bVb+GK0geNk5prOPCYdwL2COkRS3a4VI4=
Subject key identifier: 36:0F:7A:07:29:2E:CE:97:E5:AC:48:2C:1D:9B:BB:68:87:89:A3:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D35B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56FCCCBE699711F1BB06ECF2CE1D38B0.roa
Signing time: Tue 16 Jun 2026 15:23:35 +0000
ROA not before: Tue 16 Jun 2026 15:23:30 +0000
ROA not after: Fri 24 Jul 2026 15:23:30 +0000
asID: 214413
IP address blocks: 154.194.226.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119643 (0x1d35b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 15:23:30 2026 GMT
Not After : Jul 24 15:23:30 2026 GMT
Subject: CN=6a316a77-9089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:9a:54:87:4c:69:03:6f:2d:a9:a2:e3:4d:0a:
22:99:cb:43:37:6e:55:bb:b2:e1:e8:e6:79:22:5f:
08:8d:c4:6a:96:7b:ac:d2:02:2e:ce:5f:0e:e3:60:
e8:7d:8d:3c:b0:3b:d9:e1:f2:eb:91:15:f5:e5:19:
61:48:55:4c:ee:62:f2:35:c3:ce:35:7d:dd:6d:03:
d2:88:1c:af:29:12:a5:24:97:a7:55:19:b8:3b:d7:
3b:8d:62:39:52:e9:d7:e9:7f:48:2a:20:74:c3:8c:
5a:1a:14:05:7d:f4:cf:59:42:c1:25:b7:45:3d:7a:
54:66:68:5b:d0:58:1e:34:d0:52:4c:0b:71:76:0e:
34:84:64:30:3a:ff:12:5e:c6:69:61:9f:4a:1a:86:
0c:dc:20:79:bc:d0:f0:1d:7b:3f:db:e2:53:38:d2:
0a:1b:4e:5e:10:d8:b4:ed:8c:84:bc:89:5d:a6:91:
56:7c:d2:5a:8a:b2:02:d5:7d:32:3c:fa:38:7b:e5:
9b:cc:fe:1d:90:ad:de:a7:41:c8:5b:89:e1:7b:88:
fe:39:7b:96:bb:ae:0f:68:78:62:1a:ec:d8:d8:94:
df:67:39:90:e7:76:52:fa:81:cf:23:b9:30:73:6e:
ad:2f:ae:43:ff:b2:3b:d4:86:a4:0d:25:f0:40:62:
6a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0F:7A:07:29:2E:CE:97:E5:AC:48:2C:1D:9B:BB:68:87:89:A3:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56FCCCBE699711F1BB06ECF2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.226.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:6c:b5:ca:ec:67:45:a2:77:69:01:e8:15:b6:0a:3c:1f:87:
dd:c6:c6:ba:04:a8:5d:ca:40:15:2b:1a:40:1a:76:4b:aa:8b:
b8:ad:d2:c0:e3:53:fb:42:86:1f:b2:b6:27:32:68:28:31:0d:
33:55:8e:34:78:2d:53:40:f2:93:51:6c:a7:b3:95:2a:94:3c:
cb:7e:ab:97:50:a4:5e:06:e5:58:dc:10:cb:01:06:c0:b1:d9:
1b:10:52:2b:be:10:ec:c5:e2:fe:e2:b0:af:ba:04:8e:a8:4b:
70:cb:30:53:5e:0b:20:b0:b7:db:a5:c8:c0:e8:aa:47:be:2c:
7b:a6:49:d8:fe:ba:43:03:e9:5c:e4:b5:3c:ac:83:74:f8:3a:
8f:18:41:89:fc:27:f9:ac:d5:73:b2:48:7f:ff:cc:4e:85:e3:
0a:2f:1b:86:5f:06:fd:e7:2c:c4:a6:7d:b0:41:f4:b3:7c:0a:
d2:b9:d1:58:61:d7:d4:19:8b:b8:34:c6:04:0c:ce:4e:8a:92:
4d:2e:c4:fd:0f:aa:07:1b:14:49:f3:66:b6:2b:65:c6:2b:d7:
f7:50:21:8e:3e:e3:32:35:28:f8:a3:54:9b:5e:d2:ef:f4:de:
5d:97:1f:45:6f:9c:e4:40:7a:bc:6f:a4:cf:90:d4:9f:b9:f9:
5e:3f:51:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:05 2026 by rpki-client