Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6183CFA46EC211F18E2DFEAACE1D38B0.roa
File: 6183CFA46EC211F18E2DFEAACE1D38B0.roa (raw, json)
Hash identifier: vfmWbvf3Clq2fwnhFORI6G8lSSa0EW7TEpndrrOH/gU=
Subject key identifier: B1:CB:CE:A3:AD:14:E1:E5:28:39:14:DC:30:4C:1D:A9:72:55:F9:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D470
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6183CFA46EC211F18E2DFEAACE1D38B0.roa
Signing time: Tue 23 Jun 2026 05:14:17 +0000
ROA not before: Tue 23 Jun 2026 05:14:12 +0000
ROA not after: Tue 30 Jun 2026 05:14:12 +0000
asID: 399077
IP address blocks: 154.211.111.0/24 maxlen: 24
154.211.112.0/24 maxlen: 24
154.211.113.0/24 maxlen: 24
154.211.114.0/24 maxlen: 24
154.211.115.0/24 maxlen: 24
154.211.116.0/24 maxlen: 24
154.211.117.0/24 maxlen: 24
154.211.118.0/24 maxlen: 24
154.211.119.0/24 maxlen: 24
154.211.120.0/24 maxlen: 24
154.211.121.0/24 maxlen: 24
154.211.122.0/24 maxlen: 24
154.211.123.0/24 maxlen: 24
154.211.124.0/24 maxlen: 24
154.211.125.0/24 maxlen: 24
154.211.126.0/24 maxlen: 24
154.211.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119920 (0x1d470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 05:14:12 2026 GMT
Not After : Jun 30 05:14:12 2026 GMT
Subject: CN=6a3a1629-93d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e8:14:f8:1d:ef:f9:1a:75:89:b5:10:7c:6f:
e4:01:28:60:dc:c9:87:dd:d9:f0:19:4d:2b:e2:09:
d7:ba:44:ec:8a:9a:dc:7e:09:b9:a1:ea:b4:1e:5d:
f5:b7:43:cf:89:32:5c:df:5f:d1:0d:12:29:15:ff:
cf:02:4a:35:5a:65:1e:c1:a3:d5:98:6e:b7:77:b8:
2a:f4:a2:59:d6:f6:72:e5:3c:05:b1:d5:c4:0e:0b:
42:10:b8:03:d3:74:bb:24:5b:7f:09:5d:cb:6d:67:
56:e9:ef:25:78:a8:2a:09:68:15:bc:7d:76:25:e7:
ea:1a:cb:b3:16:f8:f0:22:d3:0f:6e:26:26:4a:29:
e7:f7:7a:5f:26:79:97:ca:2f:4d:39:85:e1:06:83:
dc:c1:af:a2:95:df:d8:7b:b4:3a:2c:30:21:c9:79:
4f:8e:15:46:2f:c8:bb:32:ab:4e:cc:51:21:0d:25:
91:5b:6a:49:6b:5c:36:45:c0:78:2c:49:d4:27:ff:
2d:e9:0b:0d:ef:38:b3:c5:ab:3e:26:f4:f7:8d:67:
51:c2:8e:02:60:87:f7:45:ac:ce:49:d8:87:d8:48:
a5:e7:76:ce:ff:5b:ae:0d:00:7c:3d:29:85:d5:7e:
8c:7f:58:4b:23:b5:51:4b:6c:a7:11:7e:5e:5f:d8:
bc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CB:CE:A3:AD:14:E1:E5:28:39:14:DC:30:4C:1D:A9:72:55:F9:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6183CFA46EC211F18E2DFEAACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.111.0-154.211.127.255
Signature Algorithm: sha256WithRSAEncryption
25:d2:80:e1:c6:32:80:fd:de:c5:60:7e:e8:39:24:59:8f:0c:
a1:61:b7:b5:f7:0a:ac:eb:0b:2a:64:80:f6:25:f7:c3:54:9d:
8e:3d:f0:54:3e:f6:da:a4:b8:31:f8:6c:7e:e7:cc:67:e6:81:
2f:19:96:7d:d2:1f:09:67:89:41:9c:10:93:79:17:a1:e7:05:
68:51:a2:2d:63:b5:bb:21:5f:66:cf:27:47:b5:91:fc:76:6c:
85:b9:f5:38:fe:47:fc:a6:e0:a8:f5:a7:00:03:54:10:59:59:
dd:fe:92:9e:99:d1:17:73:cb:a4:c5:78:fd:b4:b8:e7:5c:2e:
2e:17:2e:af:e4:de:d8:81:5d:0d:e4:a7:d2:a9:8b:e9:ca:d4:
6c:d3:da:92:c3:c3:50:c4:cf:b1:96:28:70:23:e4:72:f8:b9:
8a:7f:81:b0:30:07:12:d7:b6:d1:d9:d0:63:76:c4:e8:77:6b:
4e:18:60:b7:d7:c4:12:f8:e9:8e:8f:f9:3c:df:22:9a:3a:59:
25:7c:1c:d4:90:98:b2:93:2b:19:2d:e0:fb:5e:3e:47:3e:9f:
e5:cc:6d:35:31:29:3e:c4:9e:8a:15:c0:4f:4d:23:87:07:0d:
b2:72:36:4a:c6:b4:c7:e1:60:16:98:64:6c:00:85:90:82:c4:
92:fd:71:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:09 2026 by rpki-client