Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72091D02575211F18289B1F1CE1D38B0.roa
File: 72091D02575211F18289B1F1CE1D38B0.roa (raw, json)
Hash identifier: +UXcW+aQNUXFHYtCVgGXu/tuMLXWCtKJ/yJjQ4l5Qp4=
Subject key identifier: B4:C5:36:09:7C:C8:71:72:3B:4A:62:A0:84:22:EB:37:45:C5:2E:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CEC1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72091D02575211F18289B1F1CE1D38B0.roa
Signing time: Sun 24 May 2026 09:25:04 +0000
ROA not before: Sun 24 May 2026 09:24:59 +0000
ROA not after: Tue 30 Jun 2026 09:24:59 +0000
asID: 401783
IP address blocks: 154.194.195.0/24 maxlen: 24
154.196.134.0/24 maxlen: 24
154.196.160.0/24 maxlen: 24
154.200.1.0/24 maxlen: 24
154.200.37.0/24 maxlen: 24
154.200.46.0/24 maxlen: 24
154.200.48.0/24 maxlen: 24
154.200.53.0/24 maxlen: 24
154.200.54.0/24 maxlen: 24
154.200.60.0/24 maxlen: 24
154.200.130.0/24 maxlen: 24
154.200.154.0/24 maxlen: 24
154.200.156.0/24 maxlen: 24
154.211.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118465 (0x1cec1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 09:24:59 2026 GMT
Not After : Jun 30 09:24:59 2026 GMT
Subject: CN=6a12c3f0-6855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:90:76:2a:14:8f:69:3a:ef:5d:ad:84:c6:
46:cd:68:97:8c:9c:86:15:ba:08:bc:55:17:6b:9d:
4c:54:3d:31:6a:9d:a9:f1:dc:4e:91:c9:fa:48:cd:
74:02:19:73:d6:d7:f4:18:e8:0f:b4:68:e9:d7:0c:
b6:a6:13:40:48:27:6d:43:8d:e0:16:0a:41:41:2e:
c8:78:c4:b1:5c:0d:8f:3c:ad:2c:05:6f:c1:b7:ab:
87:8a:52:20:8f:4b:43:f3:69:3b:cc:a1:95:81:3f:
c2:c6:27:dc:b6:f9:7d:dc:6c:7d:56:8b:51:c7:30:
e3:2c:a2:cc:5f:3a:4c:c8:ec:6f:72:fa:53:00:d1:
6f:2d:d3:34:92:9b:39:f0:ad:fc:2a:67:fe:3e:af:
5d:3f:51:ee:0f:88:40:9f:db:40:4f:95:57:73:b7:
6f:a1:fa:3f:3b:db:fe:09:27:be:88:0e:e1:fd:9e:
b7:b5:51:ea:4d:7e:81:ea:f3:43:dd:4d:e1:8b:46:
f2:44:a2:be:7e:67:e9:4e:49:be:76:99:a6:54:0f:
d9:3f:87:01:1f:9e:88:63:03:8f:a6:50:53:ae:f5:
7f:c7:e2:c2:b6:c8:95:ce:c7:33:bf:4e:d8:7c:50:
d4:ae:50:02:ff:79:a2:67:98:44:6a:20:f6:1a:8b:
3a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C5:36:09:7C:C8:71:72:3B:4A:62:A0:84:22:EB:37:45:C5:2E:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72091D02575211F18289B1F1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.195.0/24
154.196.134.0/24
154.196.160.0/24
154.200.1.0/24
154.200.37.0/24
154.200.46.0/24
154.200.48.0/24
154.200.53.0-154.200.54.255
154.200.60.0/24
154.200.130.0/24
154.200.154.0/24
154.200.156.0/24
154.211.211.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:99:5c:7f:e2:e6:57:b3:6e:f1:84:f3:cb:a5:aa:3a:a6:4a:
8e:80:67:a7:3b:52:1d:4d:01:81:7a:64:40:23:5f:a6:36:d9:
1a:44:fe:e1:0e:20:65:b8:19:46:89:83:6f:92:f0:23:4b:a7:
27:73:06:7e:48:70:aa:09:f6:ad:c7:3b:c8:cb:b2:1b:86:f1:
e4:95:6c:c8:68:92:8c:45:d9:5a:16:64:a2:16:ae:92:1e:ac:
a0:7e:d4:f3:d7:e8:59:34:9c:48:db:f7:ee:b1:af:4e:7f:e9:
39:4d:f7:ac:27:f8:fb:0e:a1:85:57:4f:43:32:2d:35:a9:93:
e1:18:25:69:59:4e:60:ca:69:6e:2b:eb:2c:a0:84:6b:c0:98:
ff:c2:eb:58:8f:b8:5e:99:c5:d9:6e:8f:b8:d8:7c:74:cb:51:
cf:25:3c:49:cf:cd:43:b5:d2:a9:1b:a9:bb:40:b4:aa:05:c8:
a6:3c:95:34:a9:ea:ff:48:2b:70:6a:f0:2e:ad:99:93:75:80:
36:f2:55:6b:bd:be:de:ac:0a:ed:40:56:64:1f:7a:92:4a:00:
c2:19:82:a3:ff:b9:65:f1:ed:55:d3:d3:cc:19:e7:92:83:d0:
82:05:fc:b0:c1:50:ee:20:92:36:cd:d2:da:0c:a1:91:70:ab:
16:3b:ab:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 03:14:38 2026 by rpki-client