Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B311361E551211F1A01242B6CE1D38B0.roa
File: B311361E551211F1A01242B6CE1D38B0.roa (raw, json)
Hash identifier: rdS8BOB2w2R/DiQScNDADyPs0jZIKvAQsW+qH5aXLkE=
Subject key identifier: 50:B5:B6:01:46:51:6A:50:9C:1D:AC:F3:D9:A0:4B:09:E3:17:BA:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD5C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B311361E551211F1A01242B6CE1D38B0.roa
Signing time: Thu 21 May 2026 12:43:43 +0000
ROA not before: Thu 21 May 2026 12:43:38 +0000
ROA not after: Wed 19 Aug 2026 12:43:38 +0000
asID: 400619
IP address blocks: 154.210.16.0/20 maxlen: 24
154.213.64.0/20 maxlen: 24
154.222.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118108 (0x1cd5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 12:43:38 2026 GMT
Not After : Aug 19 12:43:38 2026 GMT
Subject: CN=6a0efdff-a027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:90:16:c9:5d:9f:71:1d:7e:e8:00:22:e7:
3b:a5:a4:67:c7:4d:8c:9c:14:94:be:91:ff:74:ee:
52:12:93:0d:c8:1e:71:2e:1c:29:f8:1c:bf:bc:61:
61:9d:4b:1b:24:d6:42:8e:42:5c:d3:f0:45:11:72:
fc:94:c6:51:4b:27:31:0c:bf:3f:bf:63:0c:49:2a:
1e:b3:14:3e:01:30:37:99:ab:0a:d1:76:aa:99:c3:
9a:c5:40:50:6d:1a:8d:7b:1f:7a:4b:51:e3:5e:8d:
a4:d3:bc:fe:4b:c8:27:4a:39:69:8e:98:61:c8:72:
d0:bd:dc:b3:62:4f:55:3d:e7:7c:6d:99:f2:c5:6a:
4c:82:dd:c9:a1:aa:63:c0:ab:8f:51:c3:6b:39:6f:
4a:98:f1:19:3f:0e:48:5d:88:e5:78:30:79:5b:78:
fe:e7:bf:38:dc:f6:4d:0d:e1:47:78:f7:8a:30:4b:
a5:7a:91:c4:56:6a:74:f1:09:3f:3a:12:18:c9:d9:
79:44:e8:7e:18:92:15:4c:7d:ea:e9:b8:f0:3a:00:
3f:86:05:19:e1:8a:e1:3c:a1:64:c1:94:84:38:8e:
2b:47:88:ab:19:d1:db:7b:11:4f:d9:65:b7:7f:73:
1e:66:59:98:f9:2e:e4:91:a9:99:00:d8:4c:19:dc:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B5:B6:01:46:51:6A:50:9C:1D:AC:F3:D9:A0:4B:09:E3:17:BA:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B311361E551211F1A01242B6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.16.0/20
154.213.64.0/20
154.222.224.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:3c:8c:6f:e2:38:ea:d9:a3:68:74:23:d4:08:a5:cb:8c:a1:
6a:2d:46:45:70:33:cd:d1:f8:f5:f4:f1:a1:fc:6b:e6:fc:fe:
50:96:6b:90:6b:cb:66:e8:3b:88:48:bf:d0:f6:18:f5:f1:23:
a7:2a:74:e1:a6:a0:cd:5e:1b:f3:10:3f:d9:74:e6:27:57:32:
a7:86:52:a6:c1:66:29:65:73:ef:fe:db:25:77:e3:13:c7:87:
4f:8c:0f:3f:64:dc:7d:6e:b6:15:8d:12:e9:20:97:b1:36:bf:
9a:67:ea:7c:17:78:78:85:7f:5e:a8:a7:67:2d:7a:1d:94:a5:
b4:14:7c:e1:0c:d8:ae:84:c4:0c:05:9c:2f:ab:74:c2:88:8b:
38:32:98:76:fc:60:e3:4f:e8:de:70:79:a7:9a:cf:0f:eb:2a:
0a:77:6e:e2:1e:f1:36:53:bb:10:b0:f2:64:c5:c2:6e:d1:c4:
06:b3:02:f2:3e:17:f9:36:f9:46:4c:09:23:37:66:cd:45:0e:
ae:5e:2f:02:57:12:9a:eb:62:f6:d1:48:3e:39:27:14:d5:d1:
cb:52:64:a3:4b:09:11:19:eb:60:19:ac:93:f9:d7:df:29:ba:
56:86:3b:3a:f9:70:5a:fe:30:dd:e6:ec:4d:8a:57:37:62:cc:
f8:1c:bd:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 10:49:25 2026 by rpki-client