Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B24E9BF03F2211F18A2290ABCE1D38B0.roa
File: B24E9BF03F2211F18A2290ABCE1D38B0.roa (raw, json)
Hash identifier: EAS33LJgAz8+hb5OVAfIc0i6mqhx18VmlrFD+TF2hyE=
Subject key identifier: C6:EB:45:C0:06:CC:52:1B:1A:1C:8D:C2:19:6D:47:31:7A:FC:7E:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B24E9BF03F2211F18A2290ABCE1D38B0.roa
Signing time: Thu 23 Apr 2026 14:42:48 +0000
ROA not before: Thu 23 Apr 2026 14:42:42 +0000
ROA not after: Sun 31 May 2026 14:42:42 +0000
asID: 14315
IP address blocks: 154.194.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116461 (0x1c6ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 14:42:42 2026 GMT
Not After : May 31 14:42:42 2026 GMT
Subject: CN=69ea2fe8-6e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:67:af:b0:dc:6f:ef:08:7e:81:ac:85:ea:83:
53:9f:d0:a1:b8:8a:92:cc:78:ca:10:d7:00:c8:19:
1e:59:c9:91:ee:fd:08:cb:8d:08:02:26:29:3e:57:
b6:e1:ee:d8:9d:c5:95:6e:77:6d:56:b7:46:d4:17:
db:6d:16:bc:4c:82:30:a4:f7:3f:79:1a:39:8c:1f:
ca:b3:6c:bb:2d:c1:82:68:9f:f3:aa:60:9c:78:ac:
93:fb:a2:31:30:df:81:3d:a4:d6:42:e7:86:1b:a7:
99:99:1d:ff:4f:84:fe:71:10:04:17:48:6a:6e:24:
c6:ef:87:96:f0:a1:7a:55:f3:51:11:17:fb:f9:20:
23:c9:4d:95:90:a3:1b:6c:ea:14:f4:00:4e:6c:af:
97:97:26:b8:f4:a5:5e:91:18:c0:d8:c9:c7:3d:b7:
a6:5f:ab:1d:84:94:66:e7:cb:cf:a9:ac:d0:95:99:
6c:b7:f0:b8:bc:ae:56:01:63:10:1d:aa:6e:0a:66:
e4:6e:57:00:66:17:6c:96:e3:a7:3b:d8:e3:f6:51:
7e:c5:58:64:af:90:d0:2f:36:82:89:c0:52:50:a1:
e6:21:86:ca:4b:00:b7:64:fb:b0:5d:77:b8:01:11:
5c:fa:59:d9:ee:5c:de:8a:9d:24:8c:f8:45:d1:07:
e3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EB:45:C0:06:CC:52:1B:1A:1C:8D:C2:19:6D:47:31:7A:FC:7E:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B24E9BF03F2211F18A2290ABCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.50.0/24
Signature Algorithm: sha256WithRSAEncryption
11:84:8a:22:e9:6d:a7:19:0f:e9:97:ce:59:1c:c6:7c:75:ed:
f5:06:39:dc:2c:f0:42:d9:ef:1b:97:bc:50:fc:45:4c:e1:36:
85:5b:31:95:d6:4f:01:e0:74:44:6a:14:87:7f:f0:bf:79:f1:
56:b7:c9:cb:b2:6c:e4:90:1d:d3:ef:68:02:73:9a:6e:10:ec:
c5:90:25:cc:92:5a:d3:fa:a9:d3:1e:c5:88:1f:bb:c7:6b:eb:
fd:2f:86:ac:04:29:51:ec:d2:ab:2d:9b:24:21:40:5f:49:e0:
c8:89:3e:ad:09:c2:68:dd:c8:04:83:6e:3f:4b:77:5f:a0:13:
5a:b1:76:9c:e2:6d:0d:32:c0:05:03:2d:0d:cc:e5:fa:0c:6e:
c7:06:69:22:cd:af:df:b3:3b:79:85:d5:00:c0:b0:3c:c4:6f:
a8:9f:18:d5:80:30:98:0a:c7:7e:0a:d0:53:85:bf:06:45:0d:
24:06:47:61:e2:d7:2b:cd:22:f2:d0:a2:4f:c6:e0:4d:af:d5:
b7:ae:83:b5:48:f7:f7:91:a0:da:f9:5d:4c:c2:c6:1e:84:40:
80:2e:9b:5e:2c:7c:57:78:d1:e5:a6:21:82:ff:be:87:5b:ff:
18:64:ba:9d:15:34:98:7e:a1:dd:55:fc:cc:79:80:3c:d0:68:
19:89:9d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:58 2026 by rpki-client