Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B165C8E193C11F1A22E63A9DAE4EC9C.roa
File: 6B165C8E193C11F1A22E63A9DAE4EC9C.roa (raw, json)
Hash identifier: YcnP1eJXZDx5ieYuExgJ1y5lC4SAXgupuONk6qtz14o=
Subject key identifier: E3:52:8D:8D:81:2C:CD:8E:89:6F:49:41:A1:8C:0C:52:2D:25:B8:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BDF9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B165C8E193C11F1A22E63A9DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 09:11:11 +0000
ROA not before: Fri 06 Mar 2026 09:11:07 +0000
ROA not after: Wed 08 Apr 2026 09:11:07 +0000
asID: 45194
IP address blocks: 154.84.206.0/24 maxlen: 24
154.84.207.0/24 maxlen: 24
154.84.208.0/24 maxlen: 24
154.84.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114169 (0x1bdf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 6 09:11:07 2026 GMT
Not After : Apr 8 09:11:07 2026 GMT
Subject: CN=69aa9a2f-dd7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:17:de:0b:08:11:46:09:d5:73:13:b5:a9:a0:
01:85:54:fe:50:0e:89:49:36:51:d6:e4:55:ef:cf:
0e:28:35:19:b6:e7:0e:53:f9:dd:f3:cc:68:09:af:
c9:d2:86:38:91:f8:ef:48:19:7a:b6:b3:ab:02:f9:
03:40:da:23:6a:94:9c:3e:1b:b4:44:a2:56:8d:8f:
92:3e:a2:6c:17:8d:c2:6c:69:25:14:73:d5:c5:22:
7f:4a:a2:36:b6:51:a3:52:b4:fc:94:15:5a:c8:2e:
5c:69:37:0d:76:4e:07:21:4d:6c:83:dc:14:a2:2d:
9e:17:2c:4a:36:51:63:83:1c:65:9d:c5:38:78:b8:
b9:87:72:a1:7e:ed:c8:be:38:6c:07:a1:6c:d5:f3:
3b:81:1b:c6:1b:44:c7:a4:89:cd:75:f4:40:f5:dc:
c9:33:16:f3:17:6a:1e:5b:e7:bb:d5:53:24:81:ff:
57:73:bb:e1:41:1b:f5:54:b0:5a:cc:80:63:db:1c:
43:b9:11:22:71:17:5a:7d:4d:31:09:eb:2c:f2:1e:
9e:b2:55:73:fc:53:44:a8:fb:02:75:12:8a:9d:6c:
29:84:8f:a3:87:73:3b:94:51:88:cc:7f:7a:87:b8:
cb:52:5b:fc:34:02:b9:57:1f:a5:a9:4b:56:3d:4a:
38:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:52:8D:8D:81:2C:CD:8E:89:6F:49:41:A1:8C:0C:52:2D:25:B8:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B165C8E193C11F1A22E63A9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.206.0-154.84.208.255
154.84.213.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:04:62:6f:ff:a4:9b:09:86:42:72:9e:a8:98:69:9c:61:65:
a5:eb:16:fe:85:ff:d2:3f:ae:9e:49:e4:4a:d9:ea:68:12:8f:
11:b4:25:ae:b9:92:a8:a6:70:49:e4:41:7d:e6:7c:ae:32:f9:
19:fa:39:ad:72:d2:45:6d:b6:3b:54:a4:18:48:65:70:8e:43:
5e:f1:26:e1:ee:9d:e1:77:9a:d3:0d:37:a4:79:0f:0e:f6:a2:
e2:a0:1c:c8:46:a4:01:ce:30:34:29:28:cb:8c:c5:8a:7d:0b:
b0:42:ef:70:7a:88:49:76:57:71:09:44:51:da:2f:58:a2:db:
59:b1:93:56:8c:93:eb:18:69:b3:53:5d:22:69:7e:14:94:0a:
4c:7c:ab:61:27:a7:44:a8:5a:21:cb:19:8e:0c:6a:cc:1f:b2:
76:de:d4:98:c6:99:04:69:ad:c9:28:10:69:be:e4:8c:64:b1:
cb:b4:95:50:18:bd:47:76:35:55:a3:a2:99:e8:c8:62:c4:b3:
4f:47:dc:aa:23:b3:e9:00:e7:4d:2e:4f:c3:a2:0d:9e:d8:1f:
66:ca:64:4b:94:c3:a9:10:91:19:85:b5:ac:26:b2:9b:34:5d:
3d:25:2b:3d:69:87:d7:3c:88:b8:32:b1:60:6e:f6:87:fe:46:
0c:a6:45:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 07:59:47 2026 by rpki-client