Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE5361AA5B9E11F1A8CB0F01CF1D38B0.roa
File: AE5361AA5B9E11F1A8CB0F01CF1D38B0.roa (raw, json)
Hash identifier: lB5qs/eQPv+cFXawtKTFCBtB1JDSMdaLi2f861+mT14=
Subject key identifier: E0:EB:8E:D1:57:90:F6:CE:7C:BF:9B:5D:5A:83:17:BB:91:92:7C:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D07F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE5361AA5B9E11F1A8CB0F01CF1D38B0.roa
Signing time: Fri 29 May 2026 20:40:52 +0000
ROA not before: Fri 29 May 2026 20:40:46 +0000
ROA not after: Tue 07 Jul 2026 20:40:46 +0000
asID: 202656
IP address blocks: 154.218.28.0/24 maxlen: 24
154.218.29.0/24 maxlen: 24
154.219.17.0/24 maxlen: 24
154.219.18.0/24 maxlen: 24
154.219.19.0/24 maxlen: 24
154.219.20.0/24 maxlen: 24
154.219.21.0/24 maxlen: 24
154.219.22.0/24 maxlen: 24
154.219.26.0/24 maxlen: 24
154.219.27.0/24 maxlen: 24
154.219.29.0/24 maxlen: 24
154.222.40.0/24 maxlen: 24
154.222.41.0/24 maxlen: 24
154.222.42.0/24 maxlen: 24
154.222.193.0/24 maxlen: 24
154.222.194.0/24 maxlen: 24
154.222.195.0/24 maxlen: 24
154.222.196.0/24 maxlen: 24
154.222.198.0/24 maxlen: 24
154.222.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118911 (0x1d07f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 20:40:46 2026 GMT
Not After : Jul 7 20:40:46 2026 GMT
Subject: CN=6a19f9d3-2600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d9:57:a6:f5:1e:ac:a9:d0:1f:a1:b9:06:98:
d8:bc:2a:ed:e8:d6:7b:58:0d:bd:63:1d:62:4c:28:
ab:00:ff:41:4f:35:77:da:30:af:13:c7:1c:f0:a6:
0b:fe:ca:23:b7:5c:a1:d9:36:5c:f4:03:16:2e:e1:
59:21:3b:59:09:d0:25:58:98:db:e8:31:20:56:b5:
2b:76:30:55:0c:b8:8f:05:d4:f5:8e:ce:dd:a9:f4:
92:b0:89:26:3d:d7:6e:74:02:ad:44:db:82:99:86:
5d:39:b4:2c:12:a3:4b:95:fe:21:5e:53:e5:e7:8b:
ab:88:be:ac:67:27:9d:4b:86:63:97:fb:16:1a:98:
42:79:50:ae:d4:73:29:33:c4:8a:d6:eb:fb:07:cb:
be:33:61:9f:a5:63:b1:90:34:df:0b:0b:bc:ab:55:
20:9a:16:83:24:d6:7b:7f:d3:61:94:66:ee:89:58:
44:5e:9d:76:7c:73:01:39:28:41:47:e0:38:4d:aa:
b2:6a:a7:83:78:78:0e:24:d0:94:82:be:fd:63:46:
10:2e:64:f4:67:a2:8f:f3:55:e2:b2:32:5a:a2:33:
18:bc:2c:9b:fd:4c:68:d5:54:8a:09:28:2d:66:70:
31:5b:84:fd:bb:c8:cb:23:e0:a5:d7:90:71:ab:a4:
bb:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:EB:8E:D1:57:90:F6:CE:7C:BF:9B:5D:5A:83:17:BB:91:92:7C:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE5361AA5B9E11F1A8CB0F01CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.28.0/23
154.219.17.0-154.219.22.255
154.219.26.0/23
154.219.29.0/24
154.222.40.0-154.222.42.255
154.222.193.0-154.222.196.255
154.222.198.0/23
Signature Algorithm: sha256WithRSAEncryption
86:1b:0d:42:3e:85:93:50:22:c0:07:8b:eb:fa:ab:7b:5d:35:
a1:d9:99:48:af:e8:5f:c5:69:b9:75:89:73:23:98:c8:6d:b9:
1b:b8:24:76:03:3b:69:20:61:92:e4:29:3e:ae:53:0c:c6:b1:
48:97:c1:f7:ea:5c:92:a3:45:63:c0:89:74:34:af:27:79:6a:
29:0b:56:84:47:4d:71:e8:2e:86:88:25:6e:2f:73:83:12:0f:
be:29:ef:ee:1d:82:34:32:87:69:73:f4:6d:6c:1f:68:a2:86:
05:43:b5:7a:4f:c4:90:b8:cd:eb:2a:c1:2f:be:b5:47:7b:f0:
a6:02:a3:cd:78:a4:ed:7f:7e:53:23:ac:a1:4e:34:21:d2:db:
bd:0e:f9:1a:e2:4e:ed:41:e2:37:fe:98:79:75:d0:85:e6:85:
d4:05:8a:9e:68:3c:84:11:96:e6:55:b4:c9:06:a7:41:67:27:
84:a7:5d:77:5f:d1:2d:0a:4d:36:45:6c:d5:9e:b5:48:aa:63:
80:75:6d:e8:2c:21:2f:e8:9f:8b:b3:26:84:a0:43:78:79:69:
2a:19:d2:3d:14:2c:ae:84:e8:7c:62:9d:f4:28:c8:46:d2:de:
f7:e8:f0:72:b0:9e:ac:7b:82:98:5a:55:e1:23:98:81:f4:83:
73:d7:0e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:56:45 2026 by rpki-client