Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4C6C4D44F8E11F18891F6A2CE1D38B0.roa
File: C4C6C4D44F8E11F18891F6A2CE1D38B0.roa (raw, json)
Hash identifier: /0sJfqwncracT/rghDmbk7J6wBPyeyGxbsSutBJsZFg=
Subject key identifier: 7F:C7:D6:2C:3D:FF:75:59:00:ED:99:49:D7:6A:8E:06:9B:59:D8:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CBA0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4C6C4D44F8E11F18891F6A2CE1D38B0.roa
Signing time: Thu 14 May 2026 12:16:43 +0000
ROA not before: Thu 14 May 2026 12:16:39 +0000
ROA not after: Tue 30 Jun 2026 12:16:39 +0000
asID: 63023
IP address blocks: 154.90.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117664 (0x1cba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 14 12:16:39 2026 GMT
Not After : Jun 30 12:16:39 2026 GMT
Subject: CN=6a05bd2b-8754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e8:bf:c1:f2:89:c7:b1:a9:59:86:f5:3f:40:
02:b1:22:b8:de:bc:60:10:60:10:2e:1e:53:e6:ed:
48:2a:2e:d6:58:80:05:46:a0:57:31:16:d5:dc:fe:
04:13:6a:81:bb:7c:36:a4:bc:2c:29:81:ec:0a:1b:
e8:49:4a:ab:98:dd:06:e5:a9:f5:bd:41:14:ce:7b:
d0:28:70:6c:45:bb:4b:e4:0e:d9:b8:15:12:eb:53:
f8:19:d8:bd:dc:d6:4d:a5:bf:67:e7:9d:5e:91:37:
82:6c:40:77:91:c1:ff:95:97:db:50:36:84:cf:15:
ee:c1:4d:66:f3:d0:01:f6:1d:43:61:b5:f8:2e:8f:
b7:73:75:97:08:62:0d:35:8b:1d:97:f7:c1:d6:f8:
69:18:cb:f0:2e:68:dd:df:72:e3:ca:3c:4c:ca:a6:
9b:61:4e:4a:97:d9:0b:76:07:d9:98:b1:9f:54:53:
84:78:85:e7:6b:6f:56:3a:b0:e6:f5:97:ab:7c:e8:
cf:03:18:02:78:26:d0:b0:c6:24:8d:3d:77:7c:67:
6b:72:e0:cb:29:2d:df:e1:9a:67:59:66:06:db:2f:
2e:0d:70:23:83:ef:c7:92:70:f4:8a:99:27:6b:16:
5e:b6:ff:2c:e1:dc:be:ec:01:39:80:c4:e0:2f:c4:
cb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C7:D6:2C:3D:FF:75:59:00:ED:99:49:D7:6A:8E:06:9B:59:D8:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4C6C4D44F8E11F18891F6A2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.135.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:07:27:16:98:8e:30:f8:95:54:54:2a:4d:a2:59:a6:a2:fd:
7f:e1:2c:e6:2c:87:e5:e1:89:40:66:f1:00:16:f9:fb:18:11:
95:03:2f:84:9c:1a:b0:6f:4e:7e:b1:4d:25:32:e7:bd:b3:75:
64:8c:38:98:dd:62:27:71:18:c1:e1:2c:d2:4f:ca:df:bf:04:
f4:d1:a6:83:10:d6:ba:42:1f:5a:29:90:13:88:61:4b:11:f2:
21:1a:c0:d3:ef:05:29:e4:4b:e6:9b:71:45:ed:11:6d:43:95:
29:87:16:ac:a9:9d:ae:39:b5:cc:af:28:40:fa:a0:fc:dc:45:
48:98:32:d5:a7:52:6c:5b:c6:ef:6b:fe:4a:64:cf:1c:c9:47:
94:6f:28:b4:6e:0e:d6:09:1b:8c:00:a4:51:8b:74:15:98:c8:
0d:9e:47:6b:6d:75:ab:f3:d1:a7:60:1b:fe:35:6e:41:7d:ea:
26:38:a5:95:52:93:2c:a1:46:b3:2c:1d:66:75:4b:e6:ee:01:
96:17:39:ff:1e:92:03:a3:d9:74:7b:76:56:58:3e:be:3a:2c:
9f:55:9b:a9:be:f8:4e:07:25:df:4f:c8:d7:90:aa:f9:75:c2:
f2:80:fb:4c:ca:b7:25:e1:da:28:00:87:95:67:7a:3d:03:d7:
86:bc:db:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:14:17 2026 by rpki-client