Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AC4037857E211F1B35B7FD2CE1D38B0.roa
File: 6AC4037857E211F1B35B7FD2CE1D38B0.roa (raw, json)
Hash identifier: w9HhQ1cPOQJQqYOVcn0AzCjpkT6QSmU0rFq5NSMyxd4=
Subject key identifier: DA:C1:26:53:B6:46:FF:AE:D8:57:77:96:56:CC:F7:23:A8:3C:0E:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CF27
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AC4037857E211F1B35B7FD2CE1D38B0.roa
Signing time: Mon 25 May 2026 02:35:39 +0000
ROA not before: Mon 25 May 2026 02:35:35 +0000
ROA not after: Sat 18 Jul 2026 02:35:35 +0000
asID: 20326
IP address blocks: 154.193.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118567 (0x1cf27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 25 02:35:35 2026 GMT
Not After : Jul 18 02:35:35 2026 GMT
Subject: CN=6a13b57b-4fd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:54:4b:3a:ac:ad:2f:08:ed:b3:99:f2:4e:d6:
4d:d8:a7:a3:d2:e3:4d:34:e3:45:6e:7b:bc:6c:d2:
5a:97:0e:a7:08:12:90:ad:4d:4a:98:87:b5:46:43:
3d:1c:67:98:58:a4:40:a7:09:03:04:9b:b7:d4:e7:
d8:bf:e3:d6:5d:01:e4:a0:7f:f7:2b:89:f3:9b:a7:
13:46:c6:0f:a7:ec:f3:a6:0e:5c:c4:2b:4d:d5:85:
a3:09:55:4e:bb:dc:f3:0c:41:25:7c:c7:0e:b7:e5:
b1:21:97:dd:75:ae:fd:6d:67:9b:77:ee:b4:2b:08:
eb:78:38:fd:70:08:ea:50:ab:b5:28:dd:00:72:7c:
4e:ce:08:6d:ba:9c:ad:41:1d:f0:0f:71:6c:7b:f3:
4a:b4:62:5a:92:72:75:e0:52:fd:8f:5a:58:db:df:
4e:92:9f:bd:f7:aa:44:4a:d4:ba:d6:7f:de:a7:fd:
ba:5c:da:77:f4:8d:0c:f2:28:ca:bb:6f:38:9f:96:
c1:6c:60:20:43:44:31:dc:ec:72:f7:e7:69:e5:5b:
cc:db:3d:de:dc:65:30:09:81:14:d2:29:70:57:ff:
87:9e:20:73:3c:53:7f:cb:2a:23:e0:64:b9:37:7f:
f0:92:df:89:0c:8f:d7:0b:72:27:ae:b1:fc:08:87:
15:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C1:26:53:B6:46:FF:AE:D8:57:77:96:56:CC:F7:23:A8:3C:0E:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AC4037857E211F1B35B7FD2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.130.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0c:1f:bd:1a:10:10:75:0b:e5:07:a0:05:e5:f3:da:65:70:
81:4d:f1:9f:a1:64:1b:9f:f3:30:f5:61:6c:1a:c6:6f:96:79:
ba:50:c9:a2:7a:2d:61:6c:ec:70:9a:9f:c1:93:3d:39:94:a9:
48:2d:61:3a:b4:34:4f:1e:a4:5a:7f:06:41:5e:db:11:44:a9:
e6:57:6f:11:c0:2f:5b:bf:24:49:59:17:13:7c:9a:06:a1:64:
2f:47:8f:e7:88:df:b3:6e:99:5c:85:bf:02:84:5a:37:66:d9:
fd:1a:eb:7c:eb:15:25:16:0f:74:38:1b:13:87:96:5a:ba:f2:
da:1b:41:07:07:9f:f1:cd:5c:12:10:cc:9a:d4:0c:d6:33:8d:
a8:6f:b6:31:26:5c:8b:e6:a8:57:42:60:c2:20:73:cc:e2:a6:
bd:ee:89:2c:02:07:65:7a:04:a7:87:5d:75:4a:3d:a9:b5:cf:
9b:8a:5a:ab:d9:43:c6:f9:d7:a6:5a:f1:4e:66:5b:a8:3e:17:
7f:60:67:e7:3d:34:fb:21:44:44:e7:78:79:d1:da:25:42:cc:
37:9a:87:b9:84:4b:0c:af:1b:08:92:11:77:aa:4c:b7:cc:b7:
c2:bc:a3:0b:50:bc:32:8c:34:d2:42:da:92:ea:f6:ef:79:d2:
6f:4c:c6:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:36:00 2026 by rpki-client