Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C4C73E43E5911F195B6E8DACE1D38B0.roa
File: 6C4C73E43E5911F195B6E8DACE1D38B0.roa (raw, json)
Hash identifier: Lt9gh6LIWgT1Pkct02Ln+7+kYA+zCKOoe3fVCmm9B9o=
Subject key identifier: 2D:2F:EB:58:F3:1D:7F:61:C8:53:C4:B9:FB:AF:5B:6E:E6:F8:76:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C687
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C4C73E43E5911F195B6E8DACE1D38B0.roa
Signing time: Wed 22 Apr 2026 14:42:02 +0000
ROA not before: Wed 22 Apr 2026 14:41:56 +0000
ROA not after: Fri 29 May 2026 14:41:56 +0000
asID: 63099
IP address blocks: 154.222.84.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 May 2026 00:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116359 (0x1c687)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 14:41:56 2026 GMT
Not After : May 29 14:41:56 2026 GMT
Subject: CN=69e8de3a-dd49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:85:3a:99:39:b2:41:d0:98:cc:e8:1c:34:00:
83:e5:8b:1f:f8:75:10:74:93:5b:d7:c9:c1:b2:97:
06:e7:80:a0:0a:9e:df:e0:59:36:1e:cb:b6:d0:24:
c4:f7:67:03:45:e3:4d:94:f4:af:06:b9:64:48:e4:
72:de:95:2e:64:1b:09:5e:03:87:ec:13:bd:c1:02:
f1:18:5c:9d:f5:c0:e1:8b:f5:f0:cf:2b:33:36:47:
5a:ee:e5:69:e7:24:a6:93:b0:94:83:6e:f9:db:bc:
6b:8e:cb:68:9b:1f:ca:67:7d:cd:af:4a:ee:ea:76:
21:32:db:97:20:cf:7f:32:9b:18:1b:9c:b6:cf:14:
c3:ff:03:a9:f9:bc:77:2f:2e:d2:7e:cf:77:4b:2b:
c5:e7:16:17:a7:19:c9:b7:87:25:6f:76:89:fd:19:
63:ad:6b:c2:d9:4a:fe:77:81:4a:c2:3d:11:96:7e:
54:b9:0f:68:1c:5d:f9:41:6d:0e:42:61:f8:37:95:
f4:62:48:b7:b9:bd:53:3e:cb:40:46:2a:e3:35:aa:
60:1c:9b:ff:cb:09:ae:44:11:42:3d:50:bf:6c:77:
c9:f3:37:10:1e:84:55:8e:12:fa:e1:08:d8:d9:97:
a7:c5:10:9b:6f:8e:bc:dc:d7:75:bd:a1:a3:3c:83:
d4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:2F:EB:58:F3:1D:7F:61:C8:53:C4:B9:FB:AF:5B:6E:E6:F8:76:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C4C73E43E5911F195B6E8DACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.84.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:4a:2b:33:03:b5:17:ba:d0:c5:dd:43:0d:28:20:dd:7b:31:
18:18:f8:54:17:a6:ac:fc:f7:b0:3f:4d:aa:d3:fc:16:74:1c:
cb:4d:ba:87:a7:d4:d5:aa:6b:10:a0:89:fd:b6:73:19:98:09:
ab:20:fa:b1:30:12:9d:90:e8:c4:0d:eb:b2:6b:e2:12:8f:24:
23:f1:cb:41:2a:c5:02:4c:7f:e4:c9:ca:59:52:82:23:90:a7:
c2:e0:57:7e:da:29:3c:0a:3f:15:3d:59:91:8d:8e:63:e1:87:
d1:ed:d2:66:98:a5:33:e4:f2:a0:6f:df:5c:83:07:75:16:fb:
f3:c2:60:ea:77:13:9d:40:e8:6e:12:a0:1a:86:c3:ae:63:7d:
f5:06:9a:fb:99:90:9c:6c:12:b5:ab:44:4f:57:4c:1b:63:07:
9e:4e:32:96:e1:cd:8f:6c:f4:15:5c:16:4b:63:19:58:2b:c2:
f1:28:02:87:a6:9f:d2:2a:eb:49:3d:97:87:67:2a:44:2c:2b:
4c:3e:de:c9:30:f9:5a:2b:ce:d1:ea:30:4f:ca:37:5a:5e:b7:
5f:30:9f:60:50:6f:41:58:fb:9c:74:2c:c4:90:4b:e6:92:dd:
65:3e:45:f5:38:6b:9c:5a:2a:40:3b:7a:93:07:e0:0d:05:f1:
ba:d0:5e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 09:06:20 2026 by rpki-client