Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE6151C25BFB11F1841C8DC8CE1D38B0.roa
File: AE6151C25BFB11F1841C8DC8CE1D38B0.roa (raw, json)
Hash identifier: k7ZD2sRHRbRqLtGqPqm1hG7MdM3CJ5Ep6SH22vmWMws=
Subject key identifier: 35:BC:E4:90:94:AF:D6:FD:9C:44:A0:CE:74:5E:8C:C2:3A:10:B5:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D0E8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE6151C25BFB11F1841C8DC8CE1D38B0.roa
Signing time: Sat 30 May 2026 07:46:35 +0000
ROA not before: Sat 30 May 2026 07:46:30 +0000
ROA not after: Tue 07 Jul 2026 07:46:30 +0000
asID: 202656
IP address blocks: 154.221.51.0/24 maxlen: 24
154.222.200.0/24 maxlen: 24
154.222.201.0/24 maxlen: 24
154.222.202.0/24 maxlen: 24
154.222.203.0/24 maxlen: 24
154.222.204.0/24 maxlen: 24
154.222.205.0/24 maxlen: 24
154.222.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119016 (0x1d0e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 07:46:30 2026 GMT
Not After : Jul 7 07:46:30 2026 GMT
Subject: CN=6a1a95db-8eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:95:6f:9d:ea:6a:32:c3:bc:49:60:ad:03:c6:
55:f7:30:53:df:8e:1d:90:ea:62:c5:45:c7:c0:6b:
6e:d8:9f:76:be:26:9f:97:ca:77:da:f5:a3:98:e2:
86:37:f0:bc:f4:4c:01:7d:0c:b0:ea:b4:09:80:b8:
c8:f3:39:f8:2c:09:9d:fe:bb:ff:f0:8a:a3:9b:17:
55:45:ab:8a:d7:a6:fb:b5:83:bb:bd:10:c9:47:67:
fc:42:68:07:82:01:a3:6f:d0:cf:bf:33:e1:e0:ef:
bf:ad:76:ef:73:2e:20:fe:88:b1:3c:5a:ff:e8:65:
48:4b:f0:75:a5:88:f8:5e:1f:07:c7:62:3b:ba:fd:
81:33:c9:9f:03:fe:92:53:61:47:11:71:93:fb:b4:
a6:a7:c0:4c:f9:69:17:68:bd:49:c5:f5:da:cf:c2:
65:74:11:38:d6:02:99:50:d0:0f:a6:76:95:87:e1:
e1:62:23:e3:46:79:18:63:cf:24:75:8c:9c:14:5c:
91:d6:94:86:c2:30:4d:59:ef:94:da:fa:91:31:d7:
b0:95:ef:60:8f:e1:5a:88:b8:98:2a:55:16:47:46:
c8:5a:9f:aa:df:72:58:ee:ad:29:31:63:56:77:67:
30:8b:27:a5:d6:80:15:25:8e:62:e5:e6:48:c2:13:
74:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BC:E4:90:94:AF:D6:FD:9C:44:A0:CE:74:5E:8C:C2:3A:10:B5:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE6151C25BFB11F1841C8DC8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.51.0/24
154.222.200.0-154.222.206.255
Signature Algorithm: sha256WithRSAEncryption
a2:d0:42:89:9b:f7:15:f9:29:cc:4b:4a:97:8b:2c:53:66:db:
3e:ae:dd:80:d3:73:17:46:65:4f:3c:99:14:80:c3:7f:1c:75:
19:36:9b:b7:a5:6e:a9:f3:de:40:fa:a1:49:be:e1:d9:88:79:
c2:e3:55:44:0b:b7:6e:f0:15:ff:73:6b:e8:e7:7f:e7:e6:69:
4d:e9:b1:8b:58:06:cd:39:c8:2b:c2:e0:5d:6f:c8:35:07:4b:
82:e2:7e:aa:16:46:2b:55:90:23:86:91:9a:14:82:6e:06:1a:
57:b0:46:b2:ab:a2:40:0f:a8:67:1f:e1:93:1b:db:fc:14:84:
38:94:c4:34:3f:5e:1b:c7:e7:30:81:71:d3:e4:e3:5a:04:8c:
7c:90:6d:d3:94:4a:78:5d:4b:ce:87:7a:ed:00:ed:0a:7f:3c:
5c:9c:90:f5:b9:bf:0d:bd:fe:39:80:8b:4c:3f:6c:15:9a:87:
d7:f3:d7:c6:f4:1c:3e:c1:ab:4c:eb:c4:b8:57:70:1d:86:fa:
77:83:c5:e4:3b:75:8f:c8:47:c8:fd:d2:5b:2b:a1:a4:60:62:
6d:74:8c:13:aa:d2:cb:fe:ea:7e:c7:76:ff:b0:73:8b:b2:17:
98:1e:61:8d:2d:01:c6:d4:6e:e5:cb:a9:45:a0:f3:ff:d0:f3:
c9:f6:60:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:55:45 2026 by rpki-client