Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC456E04697B11F182C8E2CDCE1D38B0.roa
File: AC456E04697B11F182C8E2CDCE1D38B0.roa (raw, json)
Hash identifier: nDtbQmxGetZ3qICm+ZPIjo6MI/QfgLGsDLEIP1Baeus=
Subject key identifier: 9C:1E:70:39:B0:E9:B0:34:5B:82:7B:63:66:90:1D:9F:E0:DA:8B:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D337
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC456E04697B11F182C8E2CDCE1D38B0.roa
Signing time: Tue 16 Jun 2026 12:05:32 +0000
ROA not before: Tue 16 Jun 2026 12:05:28 +0000
ROA not after: Thu 23 Jul 2026 12:05:28 +0000
asID: 29802
IP address blocks: 154.193.50.0/24 maxlen: 24
154.198.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119607 (0x1d337)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 12:05:28 2026 GMT
Not After : Jul 23 12:05:28 2026 GMT
Subject: CN=6a313c0c-facb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:3e:81:61:24:f2:9d:d6:ae:cb:3c:98:94:
45:dc:59:e8:f4:fd:01:d1:42:00:ae:6f:32:98:83:
ec:82:12:a5:4c:94:da:28:38:7f:33:0f:f7:e1:a7:
51:3a:87:e4:f3:58:1a:7b:99:54:8d:00:4b:4d:5e:
e9:18:a4:48:41:2d:c1:0d:40:20:b6:1a:1b:17:a0:
25:aa:d8:77:58:94:9d:be:13:72:c4:41:ee:20:a9:
c7:1e:9e:00:c1:3e:1c:30:41:9e:8e:65:ca:2e:76:
3d:b3:70:a6:64:1a:1c:9d:22:07:a5:dd:d8:3f:bc:
4a:40:f3:33:f5:ac:9a:ef:b4:55:79:5e:55:a5:c4:
6e:b0:af:63:6d:b0:39:9b:39:d0:d8:e0:c9:3f:30:
a4:91:38:69:1e:aa:07:68:7a:c3:3f:6b:96:e1:a2:
2b:34:35:ba:12:d9:0c:f3:b5:d2:ac:aa:33:7a:8f:
09:4a:3a:8b:37:b7:e9:f1:83:bd:a1:c3:e2:52:76:
4c:92:58:1e:45:6a:a9:bb:e9:5a:cb:6a:d3:ad:1c:
bc:03:eb:2b:81:6a:db:af:e4:fa:a4:27:52:98:17:
84:2a:36:16:18:db:33:d6:a3:b8:4e:ac:9b:36:6f:
1f:e1:31:1d:bd:b8:d0:4d:f2:be:ec:2c:38:ed:ef:
71:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1E:70:39:B0:E9:B0:34:5B:82:7B:63:66:90:1D:9F:E0:DA:8B:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC456E04697B11F182C8E2CDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.50.0/24
154.198.184.0/24
Signature Algorithm: sha256WithRSAEncryption
46:47:ae:47:0d:4e:cb:a1:92:bf:ef:9c:2a:a5:d9:4d:02:41:
0b:35:06:82:3e:86:df:3a:a5:40:28:9b:13:bb:3b:9a:58:be:
40:43:af:b4:2f:3b:35:56:89:ff:a7:d6:01:31:50:f1:89:f5:
83:c6:62:b8:27:7f:77:9a:21:d4:f8:ec:6f:82:d0:b4:43:b2:
66:e2:66:d7:af:91:57:58:92:11:ac:f4:5b:fd:d4:a7:f2:d3:
ef:59:9c:4c:20:a9:d3:f8:61:22:44:29:fa:75:89:e8:c7:e7:
37:81:0f:b7:22:31:bf:e7:e7:56:1b:c8:20:8b:f3:97:82:2d:
a7:5e:1e:f8:ec:18:d3:3f:62:03:72:84:1b:fc:ac:64:80:fa:
f6:d4:f0:82:63:c6:1e:ae:d9:e5:90:77:1d:4c:22:9c:ea:c2:
2d:3a:f2:d3:70:99:2f:1a:c4:5f:f5:aa:ab:ab:e4:8a:32:14:
eb:98:5d:c4:a0:d1:2d:a2:d7:22:d7:11:e3:73:25:de:c8:79:
f7:f0:32:a1:e4:fa:be:f9:03:45:a2:1a:c6:1a:55:0f:c9:42:
db:8c:91:a6:6a:d3:41:cc:d9:3d:38:e4:c9:8d:9a:d9:3a:3e:
9a:96:36:a1:19:df:99:0f:5e:1f:df:01:2d:64:ef:8d:66:6c:
56:01:a4:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:15 2026 by rpki-client