Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97A508A06A3F11F1A058DDF7CE1D38B0.roa
File: 97A508A06A3F11F1A058DDF7CE1D38B0.roa (raw, json)
Hash identifier: kb+ri2sI66BPRocArkUy8RsYL30Pv0S+sv3yc03D25o=
Subject key identifier: BB:DA:23:BA:50:6D:CA:AF:CA:73:15:CB:94:70:CD:16:E5:C0:EE:2C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D3AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97A508A06A3F11F1A058DDF7CE1D38B0.roa
Signing time: Wed 17 Jun 2026 11:27:59 +0000
ROA not before: Wed 17 Jun 2026 11:27:54 +0000
ROA not after: Fri 24 Jul 2026 11:27:54 +0000
asID: 55933
IP address blocks: 154.89.144.0/20 maxlen: 24
154.89.148.0/23 maxlen: 24
154.89.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119724 (0x1d3ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 11:27:54 2026 GMT
Not After : Jul 24 11:27:54 2026 GMT
Subject: CN=6a3284bf-bffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:94:bf:54:cd:d7:bd:ab:09:67:a5:84:4d:86:
7d:df:43:4e:89:51:66:04:69:a2:b2:71:5e:f0:03:
8e:57:32:cc:ee:be:55:c7:c5:51:24:1d:80:c6:30:
be:22:92:e0:f8:c2:85:62:86:cb:4d:48:2a:e2:1d:
15:ca:9c:dc:53:3e:b7:1e:ef:3e:8f:e4:2c:db:4a:
b6:57:2d:49:84:fc:59:cb:7d:2b:33:33:56:64:6c:
66:3d:2c:d5:32:d7:44:8e:a5:42:ea:a8:dc:64:70:
69:00:ba:1b:26:fb:6a:26:4f:0c:16:39:5b:e6:19:
99:9b:1a:8f:29:7e:4a:b9:ed:15:15:02:cc:e4:15:
5d:7a:e1:41:d7:80:6e:63:71:6f:36:af:85:2d:ad:
36:0d:2f:fb:ab:c4:fc:c1:ef:06:3b:f7:59:54:8a:
85:b8:a1:78:ee:94:8e:98:6d:38:76:a3:44:94:34:
fa:e6:47:97:93:3f:2a:a4:fa:f3:02:95:f0:37:ed:
f3:a4:48:fd:08:cd:7c:02:06:15:9e:1d:23:2f:3a:
41:82:87:1c:b2:c3:77:25:5c:7d:f1:01:40:4b:86:
d3:98:83:bb:7d:e1:45:33:6d:98:06:d9:1f:7e:44:
dd:2a:aa:1b:4a:88:6a:93:5a:06:cf:12:a2:d0:98:
8c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DA:23:BA:50:6D:CA:AF:CA:73:15:CB:94:70:CD:16:E5:C0:EE:2C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97A508A06A3F11F1A058DDF7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0/20
Signature Algorithm: sha256WithRSAEncryption
85:a9:68:30:82:ad:ad:18:69:42:d5:32:a4:20:64:62:92:85:
e9:6a:75:2c:d4:21:57:f5:24:6a:99:3f:07:32:74:c0:36:31:
cc:23:79:cf:6c:1e:20:aa:60:1e:9f:14:20:f0:fe:03:fc:ce:
0e:a5:0a:0f:eb:20:a0:10:cf:d2:bc:ce:c1:c5:0c:4e:3c:3b:
85:32:4e:77:8a:19:b5:60:c8:10:06:17:80:54:55:2f:55:5e:
f7:96:5c:c3:2d:44:e4:6f:46:f9:55:55:1d:60:f0:ae:b6:c1:
8d:c9:81:9e:62:94:45:a1:32:83:6d:33:5a:52:6e:8d:9b:d8:
21:51:fc:5c:51:e9:da:69:eb:22:e8:5b:eb:62:d3:ea:a4:0e:
64:68:fd:ca:9e:33:af:c6:64:a8:7f:5c:33:35:89:be:4b:37:
b2:53:06:eb:20:74:36:91:9e:6b:73:17:ad:ba:ee:da:ce:d9:
96:e5:01:63:cd:33:60:a9:87:a1:e3:3e:88:bf:00:af:b0:0b:
c1:6e:68:3a:f1:17:02:3e:71:b8:06:c2:b6:2a:6c:c7:d9:bf:
89:67:56:d6:ca:e9:09:95:05:1a:de:95:07:f4:89:50:d7:07:
b1:95:21:14:89:fe:8a:d6:83:34:12:f1:ab:32:57:f7:24:7c:
40:e6:f9:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:29 2026 by rpki-client