Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D0F260546311F19257DFFFCE1D38B0.roa
File: 72D0F260546311F19257DFFFCE1D38B0.roa (raw, json)
Hash identifier: +tjrRzUwrELKjief5mvWqRJif2+77igW2J5oOOESnHM=
Subject key identifier: F3:AC:6A:F4:A9:8E:14:AB:76:75:A3:41:0A:F2:5C:2D:1C:A2:51:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CCF8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D0F260546311F19257DFFFCE1D38B0.roa
Signing time: Wed 20 May 2026 15:49:13 +0000
ROA not before: Wed 20 May 2026 15:49:09 +0000
ROA not after: Fri 26 Jun 2026 15:49:09 +0000
asID: 138915
IP address blocks: 154.203.135.0/24 maxlen: 24
154.203.137.0/24 maxlen: 24
154.203.138.0/24 maxlen: 24
154.203.139.0/24 maxlen: 24
154.203.140.0/24 maxlen: 24
154.203.141.0/24 maxlen: 24
154.203.146.0/24 maxlen: 24
154.203.147.0/24 maxlen: 24
154.203.148.0/24 maxlen: 24
154.203.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118008 (0x1ccf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 15:49:09 2026 GMT
Not After : Jun 26 15:49:09 2026 GMT
Subject: CN=6a0dd7f9-4fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8f:10:55:44:44:95:a6:2e:41:f5:c1:f2:a0:
2a:bf:54:56:1b:45:59:4a:4b:b6:ec:82:d0:45:35:
a8:0c:07:47:ff:0c:79:03:6f:85:5c:06:80:36:fd:
0f:0b:30:aa:50:0c:1f:01:a1:d6:b2:64:e0:62:92:
b1:17:b5:8d:a8:77:9b:3a:42:c0:51:2c:cd:42:81:
8d:0a:e8:0b:1d:e1:86:0e:45:e1:05:10:2d:52:2d:
fd:87:1c:7d:ce:c1:e6:ca:bb:37:59:19:a9:9e:29:
21:57:66:fe:ac:6f:b4:32:72:28:81:00:52:6d:4a:
5a:3f:4a:4d:42:24:3c:33:97:15:c2:78:30:b1:96:
06:47:33:18:62:0f:ae:fb:0d:2b:4a:af:b1:63:9c:
a2:22:6f:86:91:f9:bd:2b:2a:c4:b7:49:fb:22:f2:
33:31:c3:4b:09:d3:bc:96:d8:99:bf:c1:57:f9:2d:
3f:26:82:bc:9f:e3:e8:7d:28:e6:32:db:24:a5:79:
41:45:21:6c:db:bd:bb:da:5c:56:90:46:53:9d:9b:
d1:97:dd:01:a4:01:87:b2:e0:95:32:54:46:e5:f8:
c1:8f:29:99:6a:0c:5a:e8:89:dc:6a:29:e1:b4:ac:
c8:06:0d:d6:ec:88:9e:ce:f1:40:62:0b:ee:12:aa:
a5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:AC:6A:F4:A9:8E:14:AB:76:75:A3:41:0A:F2:5C:2D:1C:A2:51:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D0F260546311F19257DFFFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.135.0/24
154.203.137.0-154.203.141.255
154.203.146.0-154.203.148.255
154.203.169.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:2a:ff:d6:a0:74:fd:18:af:24:3d:e4:e1:6e:50:35:62:f3:
ca:10:b6:bc:34:c7:93:e0:f3:f0:b2:a5:34:2c:d2:e0:5d:2d:
e7:ad:b5:80:f1:6a:84:81:d8:23:90:14:02:3d:a1:55:8c:db:
dd:5a:ad:b2:4f:de:0b:5e:37:ee:bb:5b:f0:18:03:e5:0e:d8:
98:93:1e:e4:c5:3b:4c:73:45:7c:d9:79:7a:ce:97:06:ab:f3:
34:52:3f:c3:8d:91:34:0f:a4:89:83:18:0b:5e:a3:8a:43:14:
b0:f6:0f:22:0d:41:99:76:0e:cf:cb:07:9f:16:74:85:62:2f:
f9:e0:bd:18:23:8b:0a:2a:05:ba:80:f4:d7:58:8f:3c:3c:41:
42:83:c1:b8:42:93:45:f0:46:b4:f2:66:94:97:32:ca:91:25:
0e:38:27:e4:18:b3:ae:1f:59:4a:ee:2d:6e:88:38:30:05:84:
30:0c:59:58:7a:47:20:6c:10:46:03:37:f0:94:4a:9e:63:84:
5d:e3:9b:9c:11:a2:f7:98:56:5f:e9:84:98:2e:e3:b9:ac:e7:
dc:98:3c:c4:e7:19:90:68:b1:d0:72:6c:bf:52:1d:df:d1:98:
35:24:a9:48:f9:ab:84:dd:34:a2:89:9d:53:cf:8e:6e:17:00:
26:ae:c0:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:12:40 2026 by rpki-client