Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FEE81526EED11F18F7544AFCE1D38B0.roa
File: 7FEE81526EED11F18F7544AFCE1D38B0.roa (raw, json)
Hash identifier: fPB7D70l1KhUO4oOTInZNqr6nEANU4+57bsH90JBAaM=
Subject key identifier: 64:1A:23:C7:18:D3:3A:BA:20:DE:47:10:A3:53:66:04:35:CA:3F:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D48A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FEE81526EED11F18F7544AFCE1D38B0.roa
Signing time: Tue 23 Jun 2026 10:22:56 +0000
ROA not before: Tue 23 Jun 2026 10:22:51 +0000
ROA not after: Sun 09 Aug 2026 10:22:51 +0000
asID: 395793
IP address blocks: 154.194.208.0/22 maxlen: 24
154.194.212.0/23 maxlen: 24
154.200.55.0/24 maxlen: 24
154.200.56.0/22 maxlen: 24
154.200.56.0/24 maxlen: 24
154.200.57.0/24 maxlen: 24
154.200.58.0/24 maxlen: 24
154.200.59.0/24 maxlen: 24
154.200.80.0/21 maxlen: 24
154.223.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119946 (0x1d48a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 10:22:51 2026 GMT
Not After : Aug 9 10:22:51 2026 GMT
Subject: CN=6a3a5e80-3463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4d:6e:10:cf:4c:9f:52:c3:ff:5e:c6:25:64:
ce:b0:78:b4:6d:a8:9d:bb:1c:20:7d:f3:87:14:e5:
fd:13:33:f5:2c:78:38:a8:d3:89:c5:5d:3b:a8:9f:
5e:2f:88:a5:e6:b7:e7:82:1e:c4:fe:86:13:ab:d8:
f7:da:7e:55:f7:5a:dc:87:d5:f0:a2:56:bc:b6:73:
ec:58:ce:df:2b:af:ae:33:2d:8e:c9:52:1c:59:bd:
b2:56:da:f8:26:3b:f3:1a:52:3f:e9:8a:2c:29:eb:
62:a1:98:d7:31:16:a6:99:65:f5:a0:05:a3:ff:29:
76:be:20:26:a1:17:d8:90:06:f1:4d:f0:c6:c5:fa:
0b:e2:92:de:97:c7:9a:11:9c:a1:de:2f:33:45:0f:
6a:ab:ae:e9:eb:ed:89:0f:b8:1d:ce:5e:2b:76:5a:
a9:48:ec:f1:81:23:8a:1b:66:c8:68:0f:8a:f4:a3:
d2:6b:c1:c9:45:38:18:52:4b:94:df:67:a5:40:e4:
a9:dd:e0:24:22:e3:35:20:4f:b6:70:ae:38:8c:c4:
a9:d4:ec:ca:4a:51:81:b3:87:26:d1:ab:95:07:b1:
70:50:37:c9:ee:cc:e6:78:3e:b9:38:38:6a:d9:a7:
2b:c5:a5:26:d6:96:36:68:7e:6a:0a:ce:40:76:14:
26:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:1A:23:C7:18:D3:3A:BA:20:DE:47:10:A3:53:66:04:35:CA:3F:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FEE81526EED11F18F7544AFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.208.0-154.194.213.255
154.200.55.0-154.200.59.255
154.200.80.0/21
154.223.248.0/21
Signature Algorithm: sha256WithRSAEncryption
57:cd:3a:f5:82:b6:0f:be:e9:7f:0f:1d:a4:cd:be:9d:d9:42:
eb:bf:3e:8e:d4:23:f1:52:28:af:06:92:0c:05:b1:0a:b2:2f:
25:22:f8:11:f4:7f:be:57:7d:8d:31:8b:e5:69:db:c1:c2:59:
e3:f1:db:13:1a:14:fd:18:02:eb:76:f9:9a:9d:92:e4:6c:c2:
4c:d1:84:4f:ec:c2:22:3b:ed:41:f8:bc:9b:d2:a5:01:77:63:
c6:4a:9d:3c:c3:cb:6c:43:c3:3b:8c:ce:53:e4:8d:b1:93:20:
de:6e:fc:ae:76:bf:71:97:e8:9a:81:01:16:71:ff:1e:fc:29:
81:e2:73:10:f6:f1:06:4c:97:a0:b4:87:70:d4:77:16:50:5c:
30:9f:68:85:50:75:b8:9a:24:bc:77:68:5a:54:0f:e9:f2:bf:
5e:b7:82:ef:48:9f:ed:6d:88:d1:ae:63:ae:c6:24:ea:f9:ba:
12:c9:08:aa:04:99:2a:29:49:12:d4:2a:a6:f4:f1:13:05:d6:
15:c7:8a:58:23:0f:ae:9d:97:8b:0c:31:99:ee:d5:e6:dc:bf:
70:e4:ab:6f:87:97:d7:62:11:60:fd:63:00:8b:fc:64:b4:c7:
0c:52:d1:ad:9d:20:98:59:1c:eb:4f:62:0f:3f:8c:ef:e7:1f:
94:da:5c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:24 2026 by rpki-client