Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ABAD52C6C8911F1825DF5D9CE1D38B0.roa
File: 5ABAD52C6C8911F1825DF5D9CE1D38B0.roa (raw, json)
Hash identifier: UQMB4jZpthePCACt7Qcm1D9ONM0gBIsRInHT29Clp/Q=
Subject key identifier: 47:1D:0E:54:98:2D:5D:05:F8:CF:F3:B6:57:FA:FB:B6:97:10:64:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D41D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ABAD52C6C8911F1825DF5D9CE1D38B0.roa
Signing time: Sat 20 Jun 2026 09:21:02 +0000
ROA not before: Sat 20 Jun 2026 09:20:57 +0000
ROA not after: Mon 27 Jul 2026 09:20:57 +0000
asID: 138915
IP address blocks: 154.203.128.0/23 maxlen: 24
154.203.130.0/23 maxlen: 24
154.203.132.0/24 maxlen: 24
154.203.133.0/24 maxlen: 24
154.203.134.0/24 maxlen: 24
154.203.136.0/24 maxlen: 24
154.203.165.0/24 maxlen: 24
154.203.178.0/24 maxlen: 24
154.203.181.0/24 maxlen: 24
154.206.118.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119837 (0x1d41d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 09:20:57 2026 GMT
Not After : Jul 27 09:20:57 2026 GMT
Subject: CN=6a365b7e-6359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:76:1a:30:ff:88:e6:db:a5:aa:e7:83:02:44:
d5:48:6f:92:03:a3:6e:d8:4b:ff:05:36:25:5c:6f:
b4:6c:9c:a3:9a:e1:91:11:c2:99:72:c2:2f:49:b3:
70:2c:6b:a1:46:68:0d:14:aa:47:bb:3c:44:4c:e0:
f0:40:db:c1:02:ac:e3:a9:e4:c8:2f:14:d0:14:4e:
88:de:67:82:8f:82:67:9c:c4:dc:96:bf:61:db:99:
50:e0:ba:06:96:5f:37:d0:e2:1c:9e:4e:85:9f:aa:
30:9d:d2:5f:ff:ce:9e:b1:b3:84:b7:94:db:bb:2c:
1b:8c:6b:4f:52:7f:0c:46:d0:65:f9:d1:79:22:cb:
9b:c0:e1:9a:47:e8:30:99:28:57:5f:1f:ac:78:2d:
20:9e:02:2f:75:19:ed:24:f7:50:51:97:a5:df:d6:
ee:07:9e:5a:b9:df:3b:75:c2:10:7a:b1:64:a9:21:
65:30:c9:52:65:ff:ac:60:39:d5:cc:9e:37:2e:f2:
95:5b:c6:d0:04:5a:e2:17:9b:75:b6:b7:32:2b:be:
51:30:e1:fd:33:c8:d6:6f:cd:59:4e:bb:cd:ac:c6:
f0:76:8e:1f:3c:f5:88:a4:26:3b:6a:c3:29:10:33:
1b:4c:3e:2e:5d:5c:b0:c4:6b:cc:ac:49:5b:3f:c4:
1a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1D:0E:54:98:2D:5D:05:F8:CF:F3:B6:57:FA:FB:B6:97:10:64:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ABAD52C6C8911F1825DF5D9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.128.0-154.203.134.255
154.203.136.0/24
154.203.165.0/24
154.203.178.0/24
154.203.181.0/24
154.206.118.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:02:25:66:62:84:74:51:2a:06:6b:f0:21:ce:99:50:ef:f8:
27:cf:f1:b4:72:c4:b5:d6:17:a3:17:5d:83:3d:ef:87:fd:af:
36:64:0f:7a:4b:5e:d8:5b:7d:af:fb:1a:e2:ac:a4:91:20:e9:
bb:e5:11:c5:6d:ea:97:f7:c0:a7:41:81:ed:dd:e5:11:fc:56:
6e:93:d1:00:20:38:67:23:78:3b:a9:12:66:ad:d1:02:c3:07:
46:c9:cb:ac:19:b8:10:d9:0c:a8:82:71:69:80:14:09:d5:d2:
65:76:46:3d:2b:70:32:30:d0:ba:80:43:41:d6:54:92:5f:f8:
9d:f4:df:05:b6:20:d4:78:16:e0:d8:b3:20:bb:78:c7:a9:16:
4e:56:f8:32:28:62:bc:49:8a:47:c7:39:73:f3:e7:0a:1d:70:
4c:ea:b3:e8:52:6e:f0:89:f0:78:2a:6c:5e:6b:59:25:c4:91:
32:e3:06:b2:1d:e4:33:96:a5:95:e2:41:2a:e5:46:0d:ea:d8:
7a:6e:07:78:08:cc:32:fa:9c:ac:71:12:c9:0a:77:a3:33:7c:
0a:38:d2:88:2b:86:15:7e:92:9c:5c:1a:5e:88:e8:42:a2:10:
50:5c:af:17:9a:26:66:d4:c4:75:0f:e9:f5:68:5d:fd:a9:f4:
1b:4f:29:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:03 2026 by rpki-client