Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71538AA055FE11F181AE5ED0CE1D38B0.roa
File: 71538AA055FE11F181AE5ED0CE1D38B0.roa (raw, json)
Hash identifier: twojsPG+S/RCqDxXNdZpuyBc52vImlbxXkku1vVZZHI=
Subject key identifier: 1B:CE:97:B8:5F:E2:57:5E:E3:37:3D:7E:A3:38:30:57:22:6C:0E:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE38
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71538AA055FE11F181AE5ED0CE1D38B0.roa
Signing time: Fri 22 May 2026 16:51:14 +0000
ROA not before: Fri 22 May 2026 16:51:09 +0000
ROA not after: Fri 26 Jun 2026 16:51:09 +0000
asID: 55320
IP address blocks: 154.205.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118328 (0x1ce38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 16:51:09 2026 GMT
Not After : Jun 26 16:51:09 2026 GMT
Subject: CN=6a108982-9570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:67:4a:47:d0:3f:b9:5a:5e:4c:29:5c:d3:c7:
60:73:e2:69:b6:6c:d4:a3:6a:c8:5a:e3:5d:04:8d:
12:b9:82:ec:3e:aa:31:58:63:a1:f9:95:66:a9:d1:
fb:a1:da:02:0b:fb:0f:52:4d:bc:85:a5:ff:7e:59:
b5:75:ab:e7:d1:b4:7f:37:6a:14:06:9e:e0:13:3c:
87:b8:b6:c1:71:14:e0:7a:5d:d5:82:84:24:36:a6:
e1:c6:6a:67:2f:4a:1c:22:5f:1f:cd:c2:dc:64:d4:
ae:26:41:ff:ce:5c:9b:6c:4e:d1:5c:ec:3f:e5:35:
67:ee:f8:ea:01:62:83:bc:9b:39:49:c0:c2:69:0a:
eb:66:7c:77:63:48:65:8d:9a:6d:81:38:3a:44:1b:
18:60:2d:3a:f6:d2:7c:91:53:7f:a3:bb:7c:ed:dd:
6a:9c:2e:af:9f:43:02:ca:f8:c6:6c:f3:0b:11:eb:
f1:c7:d1:c0:d3:09:6e:90:da:c7:e4:25:37:32:3a:
db:23:f4:ec:96:99:ed:74:68:93:62:18:2a:6a:a0:
90:64:dc:33:56:db:e5:45:46:b4:15:93:9d:72:f6:
dc:ca:3f:00:b5:d5:e6:01:62:f0:ea:51:08:1b:99:
4e:04:5b:f8:5a:88:cd:ac:a6:46:6c:f7:3c:27:9e:
82:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CE:97:B8:5F:E2:57:5E:E3:37:3D:7E:A3:38:30:57:22:6C:0E:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71538AA055FE11F181AE5ED0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.140.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:94:ca:73:5d:64:98:ed:0a:16:3e:53:47:83:67:80:6f:89:
ee:90:5e:28:8a:1d:6a:9d:08:48:f9:52:b6:c2:29:04:8e:cf:
f9:8c:31:76:d4:9c:27:0d:3f:c5:21:90:dc:d4:c1:57:06:29:
a2:4d:30:33:15:1d:e3:54:36:d6:43:d5:e7:ef:ca:56:67:cd:
48:92:59:2c:3b:cd:e6:c2:05:76:e5:d7:c2:ac:b7:a8:63:cf:
fe:e8:84:52:2f:57:e0:c5:9a:68:2f:d8:75:2f:60:83:c8:86:
68:b7:f7:2a:ef:ce:ad:1c:17:72:ba:9a:09:3a:1d:8f:40:ad:
4b:f7:be:2f:71:cc:f6:91:64:75:92:de:bb:7e:f1:3a:4b:6e:
64:43:01:4c:9b:ae:08:9f:ff:fd:61:b9:e3:0f:9a:4f:1f:d1:
d0:2b:4d:b5:db:64:61:e9:a1:cf:64:ab:87:47:0f:b1:c8:71:
e0:d3:92:bd:3d:46:00:ab:13:f8:0e:91:31:25:1d:9a:1d:ae:
9e:a9:cd:6b:4d:51:c5:a1:d8:43:d0:c0:52:2e:a7:ea:76:5c:
38:9a:dc:39:e2:b7:32:5d:8f:24:06:f4:1f:a2:be:0f:75:6c:
c3:a7:5b:22:0e:60:37:4f:c3:70:6a:99:51:a7:54:a5:75:2a:
01:b4:8d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 22:00:53 2026 by rpki-client