Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62A34A1054B711F1800021F6CE1D38B0.roa
File: 62A34A1054B711F1800021F6CE1D38B0.roa (raw, json)
Hash identifier: mpqPQR/NeE7dnA90uo1x+qj+h4FwSJOC8s5hxxFGKQ4=
Subject key identifier: 74:97:A0:97:6C:68:CF:56:26:18:A2:1D:13:69:4E:FF:87:FD:5A:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62A34A1054B711F1800021F6CE1D38B0.roa
Signing time: Thu 21 May 2026 01:50:04 +0000
ROA not before: Thu 21 May 2026 01:49:59 +0000
ROA not after: Wed 19 Aug 2026 01:49:59 +0000
asID: 400619
IP address blocks: 154.91.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118042 (0x1cd1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 01:49:59 2026 GMT
Not After : Aug 19 01:49:59 2026 GMT
Subject: CN=6a0e64cc-4729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:15:48:72:45:81:96:92:4e:7d:8d:26:ce:db:
42:3f:f3:0e:c6:cf:af:b5:64:3b:3b:a7:2b:fd:4a:
8c:71:4f:ac:30:4a:80:0d:12:43:f5:2a:b4:61:4c:
37:1a:cd:28:a8:ab:0d:7c:cf:fd:b2:ae:d3:91:bd:
0b:a9:2a:c8:81:7e:56:7b:a1:34:d5:0e:e9:ac:60:
d4:9e:91:74:70:3f:8c:06:95:b8:46:b4:3c:34:26:
46:d1:03:60:36:b3:81:b3:a4:b0:d4:f8:58:99:6e:
42:c8:b6:60:74:d9:79:c0:f6:c0:ed:49:34:51:61:
0b:24:3a:89:75:80:5d:ab:38:53:d6:b6:e2:d0:12:
42:64:7d:32:35:ab:2e:c0:7e:c0:ae:3e:1c:2c:ab:
a6:fa:ce:b5:fd:24:1a:60:30:d2:77:53:1b:e2:b6:
d2:1f:07:3e:28:bf:a3:1f:aa:11:07:db:77:21:e2:
fe:52:bc:82:a3:4e:df:f4:99:26:db:eb:3a:7d:34:
94:06:a6:7a:4d:da:c7:46:de:ae:de:cd:ed:8d:da:
53:c9:a5:e0:8a:a3:66:47:6b:06:25:87:23:03:7f:
69:e0:5a:80:b9:e9:f8:27:ad:e9:15:b6:ca:0f:05:
05:94:f1:e8:e5:f4:4c:c3:22:02:b2:26:ba:c3:c9:
08:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:97:A0:97:6C:68:CF:56:26:18:A2:1D:13:69:4E:FF:87:FD:5A:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62A34A1054B711F1800021F6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.176.0/20
Signature Algorithm: sha256WithRSAEncryption
30:b2:72:5c:2f:39:7b:d2:d0:f3:5c:29:bb:53:c4:9c:bf:ae:
5b:4d:c8:77:58:43:5a:a5:b6:0f:ec:6b:ea:4a:ed:6b:4f:de:
de:c4:1f:80:e1:d9:c3:9b:52:eb:70:c1:9d:b7:77:f8:5c:50:
35:a8:b3:d2:6a:1b:dc:c9:39:b4:06:59:1f:ec:5b:87:59:67:
30:c5:11:85:29:8e:2d:7f:8e:de:80:c8:ec:80:c2:d8:32:51:
6f:30:ce:8c:a7:bb:13:8a:4a:d6:38:b6:be:e3:dd:e9:aa:24:
7a:bd:b7:8c:d3:ce:21:f1:41:b6:70:5d:f4:0a:60:c2:0b:22:
04:a8:92:56:d2:ef:66:8c:50:51:29:24:1c:31:0d:02:c9:0b:
7e:08:e5:a9:f1:9d:3a:b8:b8:6b:ba:40:08:d0:e2:4b:7b:51:
ce:67:68:d7:ba:8b:e1:13:d2:88:12:7b:54:b1:3a:a5:4f:0c:
4b:b6:d6:81:e9:ee:e8:cf:ec:bc:ea:8b:7e:e0:b1:d4:1f:3a:
2a:ab:02:17:e8:ad:0a:dc:4b:69:68:9d:5c:45:29:01:3b:7f:
b6:29:64:2e:ae:c9:66:a1:51:19:90:04:f3:15:61:8c:2e:e3:
aa:fe:c1:f8:a1:fa:c9:4c:44:9f:e1:4a:e1:d4:8d:c9:46:06:
32:a0:f5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 10:49:33 2026 by rpki-client