Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BBE8FBAA4A1311F1B70730D0CE1D38B0.roa
File: BBE8FBAA4A1311F1B70730D0CE1D38B0.roa (raw, json)
Hash identifier: Xr44bXRbB9zfk0c2cjq3RRTJeIz6fg5tTcKXddIFFkg=
Subject key identifier: 56:03:3E:67:4D:F8:5D:FC:E1:A8:A3:77:1A:14:CC:0D:28:BD:A2:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C9DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BBE8FBAA4A1311F1B70730D0CE1D38B0.roa
Signing time: Thu 07 May 2026 12:53:24 +0000
ROA not before: Thu 07 May 2026 12:53:20 +0000
ROA not after: Tue 16 Jun 2026 12:53:20 +0000
asID: 209242
IP address blocks: 154.197.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117212 (0x1c9dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 12:53:20 2026 GMT
Not After : Jun 16 12:53:20 2026 GMT
Subject: CN=69fc8b44-025b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d8:b1:f6:84:99:aa:ae:7f:ad:16:7a:1b:4a:
c0:1f:13:a0:2a:b6:39:9f:4e:c8:75:d4:e5:1f:9a:
80:0d:b0:e2:1a:79:9c:92:4b:65:d9:36:f1:be:e8:
b0:8e:b9:33:54:94:f8:9e:63:9f:4c:8d:41:90:c6:
d0:96:1c:e5:8d:34:cb:9b:74:29:73:c0:20:e9:d0:
71:49:63:66:c6:39:79:b5:53:29:d0:1e:5f:19:89:
68:aa:02:00:6b:59:b5:65:04:fd:d1:5b:f8:db:1a:
85:bc:c9:3a:95:b3:34:14:c5:5e:25:0b:2d:a9:01:
b4:a9:0f:92:b4:58:b7:75:1d:eb:8a:ec:a9:cd:c7:
5c:b4:e5:1d:6e:93:a7:c8:9f:70:0f:29:38:e1:c0:
8a:71:36:09:12:71:a7:a3:bd:b6:66:1e:6f:87:76:
04:1d:7b:36:b8:0f:2c:c5:db:d0:2f:f9:5f:cf:a6:
46:82:3d:8e:34:da:65:9d:60:7b:1a:af:49:ed:ae:
1f:d0:f1:e0:b7:f0:bd:9e:48:2d:51:ff:21:48:36:
a8:b2:3d:09:d1:2c:13:64:e2:f2:c1:f0:f2:47:03:
95:2f:dd:da:72:9a:d2:e7:c7:47:59:e4:f3:c2:c8:
67:5f:34:41:1d:0d:8b:3c:b3:5a:4a:61:a3:68:ba:
cb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:03:3E:67:4D:F8:5D:FC:E1:A8:A3:77:1A:14:CC:0D:28:BD:A2:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BBE8FBAA4A1311F1B70730D0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.75.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:7f:06:49:1d:51:13:15:40:ef:9b:37:05:36:47:b7:31:9f:
e5:79:b6:3b:59:41:d9:6f:3c:f5:01:29:2e:dd:21:48:23:3a:
83:ea:ab:ae:36:13:f6:80:9a:2e:c5:ee:71:a9:9c:ab:57:1f:
d8:73:26:25:4e:a5:68:4b:bd:19:c7:16:2c:08:d2:8b:95:f3:
0c:99:25:5a:52:6c:f5:3e:f7:c6:b5:5c:7d:a2:aa:74:54:ee:
f3:ff:fa:02:06:11:43:57:48:9a:05:44:b0:0e:a0:31:a5:28:
58:65:7b:6a:3c:b9:c0:7b:3a:55:0b:e2:de:f6:72:55:74:7b:
24:f9:27:0e:f1:7b:90:97:a0:01:1c:5b:c2:82:4d:15:95:ac:
02:bd:1a:9a:43:11:f8:89:79:ce:18:85:4f:ee:95:46:7a:55:
d2:cb:54:68:c6:5b:3d:2d:c4:aa:52:68:ca:32:0f:1f:e4:4d:
91:f0:bf:ed:11:3d:aa:2d:98:14:dd:d3:6e:8f:c3:5f:ae:a1:
6c:a9:ab:74:d4:95:1d:29:d0:26:b7:10:a9:9a:86:31:d2:4b:
bf:6c:c2:5f:d3:47:b4:c3:48:f3:93:ff:b3:78:fb:c3:4c:a1:
4d:3b:6d:e0:5f:b6:cc:9c:b6:2c:f8:1e:11:32:74:28:02:2f:
bd:9f:32:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:03:42 2026 by rpki-client