Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7358E2A259A311F1AF324109CF1D38B0.roa
File: 7358E2A259A311F1AF324109CF1D38B0.roa (raw, json)
Hash identifier: 1u8tNWKzqLZEFzyoP8vBmFxxnGQKITysy4/RVuOEoMI=
Subject key identifier: 63:8A:A0:F2:C5:1C:B9:C3:61:04:56:62:60:99:7A:29:68:DF:D9:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CFEF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7358E2A259A311F1AF324109CF1D38B0.roa
Signing time: Wed 27 May 2026 08:09:58 +0000
ROA not before: Wed 27 May 2026 08:09:53 +0000
ROA not after: Fri 04 Sep 2026 08:09:53 +0000
asID: 135845
IP address blocks: 154.210.226.0/24 maxlen: 24
154.210.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 14 Jun 2026 00:07:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118767 (0x1cfef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 08:09:53 2026 GMT
Not After : Sep 4 08:09:53 2026 GMT
Subject: CN=6a16a6d6-bbeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:81:72:04:42:6d:07:3f:2b:74:78:24:c7:a1:
c9:f5:36:f7:48:c6:87:91:21:9d:40:9f:bb:b0:78:
13:09:33:a0:aa:42:d5:c9:15:53:4d:2a:7c:6a:95:
41:f7:fe:54:77:47:4d:6e:36:6d:a4:85:7b:a2:ce:
8f:a0:ac:f3:3f:26:95:af:95:29:cf:9c:6d:56:9d:
37:01:33:48:1b:c0:d1:33:42:4d:a2:0b:8f:6e:1b:
f3:fa:66:c3:83:1f:1e:2f:14:84:37:32:2e:0d:3e:
fb:c7:17:a7:66:46:29:f1:93:2d:de:fe:0d:c0:94:
cc:83:f3:ef:e6:bf:57:d4:09:b4:cd:bf:50:c0:77:
e2:a0:c2:93:bc:84:8b:20:2c:53:e6:73:30:f2:5d:
b0:2f:5d:e2:bf:3e:24:40:d2:8d:18:4b:b6:c7:3a:
18:d5:eb:ca:8a:95:aa:d1:fc:b1:a9:c5:63:84:e2:
a7:a6:54:6c:03:f2:d8:f5:22:33:4d:22:ce:a8:2d:
fc:37:e7:5c:65:15:a1:0c:c0:4d:ef:1d:46:91:23:
ae:67:43:61:03:1a:59:41:e1:74:4b:a5:4e:f0:57:
37:7a:2d:90:96:8d:9b:35:3f:4a:d7:95:16:bb:af:
23:43:8f:fa:eb:cf:ee:79:a7:ba:88:fc:df:b1:d0:
fb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8A:A0:F2:C5:1C:B9:C3:61:04:56:62:60:99:7A:29:68:DF:D9:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7358E2A259A311F1AF324109CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.226.0/23
Signature Algorithm: sha256WithRSAEncryption
64:42:db:8d:73:12:a9:a0:47:74:00:d3:29:0b:0b:c9:e4:5f:
aa:b6:0a:ce:eb:7b:bc:e8:45:2d:b4:84:82:ef:79:38:b0:80:
f3:9d:2e:f1:f8:c0:94:74:fa:4c:31:26:aa:aa:99:02:d3:f4:
b9:9d:a7:de:ef:b1:23:c8:54:3a:74:a2:91:ab:cb:c6:a1:4c:
a2:27:b6:45:fe:60:a2:ef:3a:d9:e6:94:0f:ff:d5:c4:0a:ba:
ad:fb:7e:1c:f9:bb:2e:4c:42:0e:7d:41:38:b6:fd:28:96:19:
ec:ab:16:92:e0:34:e7:a2:e7:3f:6d:62:1e:02:05:9b:d6:da:
11:a2:98:62:d7:dc:f1:3e:f3:60:ed:c2:1d:1b:25:bf:eb:c6:
a8:9e:cf:e4:8e:6d:3d:f6:21:2b:17:a4:0f:19:44:a9:bc:51:
71:8f:ef:45:cf:a1:dc:7d:d2:28:98:48:7e:bd:8d:b6:b9:6a:
0e:58:e6:00:df:33:c6:31:00:f2:03:7b:76:e7:fe:27:d2:93:
47:aa:6d:2f:17:94:c1:8c:ca:2b:ca:45:fa:30:bb:b1:96:98:
a4:e4:8e:e2:d3:3c:4b:92:bd:f1:61:0f:59:4b:7e:5d:af:e4:
cb:b0:e1:99:1b:45:24:0b:3c:cc:d1:67:94:7a:0f:32:aa:41:
4f:fe:89:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 01:02:04 2026 by rpki-client