Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6081204A7511F19CAE3015CF1D38B0.roa
File: BE6081204A7511F19CAE3015CF1D38B0.roa (raw, json)
Hash identifier: bVc6I4Ojj89MYthGvjpTfuPlr7H+osXmFyYG4B3SPxk=
Subject key identifier: 96:6A:D7:60:36:2D:8A:4D:D6:1E:05:79:1B:1D:4D:68:2A:EF:2C:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA02
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6081204A7511F19CAE3015CF1D38B0.roa
Signing time: Fri 08 May 2026 00:34:59 +0000
ROA not before: Fri 08 May 2026 00:00:55 +0000
ROA not after: Mon 07 May 2029 00:00:55 +0000
asID: 17561
IP address blocks: 154.95.47.0/24 maxlen: 24
154.95.48.0/24 maxlen: 24
154.95.49.0/24 maxlen: 24
154.95.50.0/24 maxlen: 24
154.95.51.0/24 maxlen: 24
154.95.52.0/24 maxlen: 24
154.95.53.0/24 maxlen: 24
154.95.54.0/24 maxlen: 24
154.95.55.0/24 maxlen: 24
154.95.56.0/24 maxlen: 24
154.95.57.0/24 maxlen: 24
154.95.58.0/24 maxlen: 24
154.95.59.0/24 maxlen: 24
154.95.60.0/24 maxlen: 24
154.95.61.0/24 maxlen: 24
154.95.62.0/24 maxlen: 24
154.95.63.0/24 maxlen: 24
154.95.128.0/24 maxlen: 24
154.95.129.0/24 maxlen: 24
154.95.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117250 (0x1ca02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 00:00:55 2026 GMT
Not After : May 7 00:00:55 2029 GMT
Subject: CN=69fd2fb3-04e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1c:41:c5:ff:5e:af:ff:74:65:10:3e:f6:02:
f8:e4:ef:2d:60:bf:7c:42:bd:67:ab:b7:7f:38:61:
b4:a6:29:4e:c0:67:3b:1b:8b:cb:f5:9a:cc:69:0e:
ed:89:53:8a:65:ce:e1:30:03:29:06:32:73:6f:d6:
2c:be:f1:c7:bf:fa:bd:fc:09:26:b1:e4:25:8b:fb:
f9:49:87:32:18:94:e3:be:4c:a2:2d:0d:ea:20:3a:
ae:ec:98:f6:0f:5e:67:f2:29:e7:75:23:fd:c2:ae:
d5:f0:ad:a2:3f:89:6f:b4:a1:69:94:62:e9:9e:56:
65:94:b4:17:1c:46:34:5f:7f:5b:73:7b:a7:e5:c8:
19:3d:ae:c5:50:79:fd:e2:4b:1f:27:0d:2e:6b:f0:
28:ce:d9:69:71:5e:ea:93:81:06:01:ce:3b:30:fe:
89:23:4e:66:03:9e:12:f6:44:ad:5c:c3:b7:0f:80:
dd:7e:8e:fe:d3:97:ab:fd:db:1a:a0:f4:58:62:e3:
ae:42:dd:f3:62:6c:09:65:4c:2a:6e:67:db:b4:1c:
7e:9d:d3:ea:8a:36:f4:0e:63:33:66:3b:41:71:30:
3c:fa:00:c7:d0:19:0d:1a:c4:05:15:9b:46:3c:e6:
c2:4e:be:55:e6:5f:3d:95:ea:29:a7:3c:47:07:1e:
98:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6A:D7:60:36:2D:8A:4D:D6:1E:05:79:1B:1D:4D:68:2A:EF:2C:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6081204A7511F19CAE3015CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.47.0-154.95.63.255
154.95.128.0-154.95.130.255
Signature Algorithm: sha256WithRSAEncryption
4a:17:99:43:cb:87:5f:2b:1e:a0:19:ed:89:89:af:e4:55:f3:
d0:8c:56:2b:19:44:a6:5b:67:b8:36:88:2c:9c:c7:ff:71:73:
fb:10:5a:91:6c:44:3a:c9:a0:b5:fb:8d:86:4e:4a:e1:49:27:
92:dd:95:9b:83:32:77:40:bc:50:24:aa:98:dc:98:28:6b:90:
70:b0:7d:ae:78:ef:27:b9:24:4e:2a:16:20:01:fe:16:02:7a:
a2:d6:11:62:cf:14:6b:5f:19:ed:90:56:94:19:58:c8:d8:36:
f2:92:64:a9:a2:0b:41:03:b6:3f:97:3f:32:30:18:ea:e0:59:
09:7b:45:a3:20:40:f9:58:7e:05:39:f6:98:06:3e:d4:12:df:
0b:c3:1d:06:d0:be:8f:ec:47:7a:0b:1f:8b:b2:ee:14:04:75:
a9:95:6f:ee:ef:3c:70:06:69:f9:2a:b3:c5:51:d7:e6:e4:a7:
0e:a0:73:a4:86:6a:db:d7:6e:d5:86:ef:6c:ca:a0:b8:78:97:
cc:67:47:b8:e3:d3:fc:d9:95:ad:3a:48:fd:5e:83:b9:aa:41:
7f:f9:7d:03:7f:16:ec:5c:57:03:0c:8a:30:34:94:ad:51:6d:
2d:8f:c6:37:8c:74:34:df:db:ff:d3:00:30:e4:04:60:79:5c:
ae:f0:37:a4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat May 9 11:03:50 2026 by rpki-client