Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8674604A54D611F18894F2C8CE1D38B0.roa
File: 8674604A54D611F18894F2C8CE1D38B0.roa (raw, json)
Hash identifier: Mwfgl03MaJvONZZB17H6OcGkSshYHR4v9ugHjhnzBzQ=
Subject key identifier: CD:F2:37:6D:AF:A4:4F:9E:85:8F:CC:D6:83:F5:C3:76:B7:4B:E1:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD32
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8674604A54D611F18894F2C8CE1D38B0.roa
Signing time: Thu 21 May 2026 05:32:58 +0000
ROA not before: Thu 21 May 2026 05:32:54 +0000
ROA not after: Fri 10 Jul 2026 05:32:54 +0000
asID: 401783
IP address blocks: 154.196.208.0/24 maxlen: 24
154.196.209.0/24 maxlen: 24
154.196.210.0/24 maxlen: 24
154.196.211.0/24 maxlen: 24
154.196.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118066 (0x1cd32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 05:32:54 2026 GMT
Not After : Jul 10 05:32:54 2026 GMT
Subject: CN=6a0e990a-51c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:8b:9f:52:87:62:68:b3:3a:7a:3f:30:fe:
33:5a:a2:85:d0:9b:29:a1:a5:73:a7:f2:20:ad:8b:
14:ea:2c:e8:03:5b:ba:5e:e9:08:c9:45:76:7e:a2:
8c:c0:ec:4d:31:60:63:9c:2b:61:2f:23:93:2a:6d:
36:b2:b1:34:2f:88:4a:ee:75:bb:13:aa:4d:9e:7c:
d9:7a:33:4c:bb:73:2c:a6:85:12:c8:7c:ac:5b:27:
ad:d9:59:f9:48:ab:5e:95:2b:10:a8:20:c5:1c:e4:
12:28:81:16:ac:0c:97:54:25:46:20:8d:36:6e:93:
96:71:30:13:39:d9:0d:07:d9:16:a8:67:43:32:fb:
a2:26:57:b4:b3:cc:4c:cf:ec:5c:fc:27:44:06:d7:
26:d8:26:34:ff:8f:a9:5d:34:95:05:2f:36:83:44:
eb:00:5e:8f:21:d7:88:d1:83:79:1e:c2:26:54:2b:
13:01:84:35:e8:3f:b5:e2:14:c6:7e:78:a3:5c:ad:
dd:e8:01:9e:50:c6:75:fb:15:ec:d3:b4:44:7b:3f:
24:a7:58:a7:16:10:9b:5e:92:f4:6f:53:fa:7d:8b:
23:b9:95:57:df:73:53:dd:db:69:cc:ae:d5:dd:41:
7f:67:47:00:1d:7f:c0:3f:6b:97:a4:4d:1b:1d:0b:
86:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F2:37:6D:AF:A4:4F:9E:85:8F:CC:D6:83:F5:C3:76:B7:4B:E1:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8674604A54D611F18894F2C8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.208.0-154.196.212.255
Signature Algorithm: sha256WithRSAEncryption
20:80:b4:42:a2:83:0c:f1:60:30:97:25:9b:ee:9c:a1:4b:36:
ee:3c:73:07:c6:94:83:ee:be:fd:15:b2:47:0e:06:5b:ce:30:
93:f6:bf:94:6d:6e:7a:28:18:7a:d2:44:cf:9d:45:47:a0:b7:
32:f4:aa:4b:fd:c4:e4:d5:66:f1:b1:97:4f:32:09:91:ca:7a:
ac:f4:5c:d9:0f:fd:18:34:d4:62:0a:7b:57:95:43:1d:7f:6f:
83:dc:b2:09:17:9d:e9:85:43:b5:92:e5:60:03:fe:dc:85:f4:
85:53:f1:de:b5:73:db:79:3f:32:f4:fc:01:51:fa:01:3d:ed:
42:28:88:9a:66:98:85:b6:de:da:09:f0:f0:31:39:09:32:c4:
02:6d:08:8e:68:7a:6f:33:8a:5d:22:49:83:47:a4:d4:b5:e3:
8c:05:79:25:70:ea:97:09:33:19:05:40:5f:9c:bc:94:14:b7:
21:62:96:03:27:9b:b4:65:05:59:38:3e:31:16:77:de:fa:38:
b7:9a:a2:8f:ad:1d:99:39:e8:4a:93:52:f6:42:a3:8d:82:25:
14:9d:03:37:78:99:81:1b:8a:8b:b8:02:eb:fe:22:c8:61:b4:
0c:43:5e:57:7c:1b:10:2b:58:7e:18:c5:d3:b2:f8:2d:c0:dc:
33:da:c1:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 03:14:39 2026 by rpki-client