Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C66FB26E4EDA11F1877373DBCE1D38B0.roa
File: C66FB26E4EDA11F1877373DBCE1D38B0.roa (raw, json)
Hash identifier: yp+1yL3FxYqBTAvGiHR8zxuejOFwIjEEpV+vZt5W5S8=
Subject key identifier: 1D:9B:D6:43:32:59:60:86:87:3F:8B:B3:E9:CE:5E:C9:81:B0:D1:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB71
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C66FB26E4EDA11F1877373DBCE1D38B0.roa
Signing time: Wed 13 May 2026 14:48:17 +0000
ROA not before: Wed 13 May 2026 14:48:12 +0000
ROA not after: Fri 19 Jun 2026 14:48:12 +0000
asID: 11404
IP address blocks: 154.193.112.0/20 maxlen: 24
154.196.192.0/20 maxlen: 24
154.199.80.0/20 maxlen: 24
154.200.112.0/20 maxlen: 24
154.205.48.0/20 maxlen: 24
154.206.32.0/20 maxlen: 24
154.207.144.0/20 maxlen: 24
154.207.160.0/20 maxlen: 24
154.208.96.0/20 maxlen: 24
154.222.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117617 (0x1cb71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 13 14:48:12 2026 GMT
Not After : Jun 19 14:48:12 2026 GMT
Subject: CN=6a048f31-35a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:71:7b:bf:13:18:ff:4c:73:f2:1a:80:d0:62:
b3:81:ed:97:7f:aa:de:35:38:de:77:ce:1c:e7:c8:
a6:49:ec:0e:89:f9:a0:36:82:9a:b6:a1:86:34:91:
5e:8c:d8:0e:d5:12:b1:63:b5:0a:1d:0e:90:d3:9a:
2a:bd:5e:87:41:16:e4:26:db:9a:7f:bb:46:1e:1a:
c7:56:0a:18:a1:ab:23:03:44:43:8e:23:99:5a:a3:
83:80:8d:38:d7:99:c6:63:1e:8c:28:ef:de:86:1a:
9e:e7:1e:f1:b6:ea:8a:4d:f0:2c:aa:bc:a9:5f:90:
45:58:f8:97:07:0e:f0:b9:b3:bf:7d:08:6b:7f:23:
37:70:c3:b5:8d:da:8b:c3:55:5f:d3:2f:c7:27:2f:
22:80:ca:19:89:c4:e1:6b:a6:37:81:31:75:d9:9f:
f9:29:51:26:06:79:d0:84:a7:66:c0:99:d7:40:1d:
45:81:54:9c:4e:59:eb:b2:25:53:60:17:01:ee:1d:
33:92:2f:8c:86:56:fe:48:0b:94:94:7f:2a:11:bd:
03:b5:37:99:5f:24:9d:04:e0:11:e2:1f:01:21:22:
1f:93:14:ad:6a:89:9c:fa:c6:1d:60:75:2a:20:ac:
87:73:b8:12:bf:1b:f2:95:c7:74:84:fa:aa:e1:c8:
46:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:9B:D6:43:32:59:60:86:87:3F:8B:B3:E9:CE:5E:C9:81:B0:D1:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C66FB26E4EDA11F1877373DBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.112.0/20
154.196.192.0/20
154.199.80.0/20
154.200.112.0/20
154.205.48.0/20
154.206.32.0/20
154.207.144.0-154.207.175.255
154.208.96.0/20
154.222.96.0/20
Signature Algorithm: sha256WithRSAEncryption
8c:1e:b7:19:34:ff:b7:f6:d9:d4:ab:04:7f:02:6d:6f:15:af:
9a:cb:d4:54:22:63:0b:1a:1b:96:81:8a:81:6b:01:50:96:19:
f9:e1:59:02:e5:f7:36:0c:74:64:d0:52:cf:08:64:ac:c9:f8:
62:57:7f:41:e8:08:49:76:80:d6:52:4e:b0:f8:4e:0d:4a:96:
1a:d0:44:77:37:5d:25:51:0c:92:98:5c:1a:5d:d9:13:34:00:
74:86:12:28:cd:33:c5:33:13:fa:2c:e6:db:69:4e:00:68:e2:
7c:21:84:8c:56:81:a8:3b:89:bd:14:9f:5d:15:61:63:48:8d:
cf:f5:af:4a:b5:56:d8:a1:0c:38:b8:30:8b:99:af:b5:06:40:
a7:18:00:29:c0:02:40:64:18:30:6d:24:cf:09:20:5d:b6:f1:
aa:52:24:c2:6d:42:05:21:0e:20:d7:ff:4e:b3:93:7e:68:fd:
17:00:c7:c8:51:6c:b7:c7:f4:77:29:00:c4:97:c0:d7:68:b8:
c4:82:13:65:26:e6:09:43:65:fa:7a:eb:fe:04:76:64:76:24:
61:d0:ae:a5:ba:3e:7b:16:bf:9a:8a:6a:17:ba:f9:cf:e8:29:
56:07:bc:b6:d9:fc:e1:18:da:a5:dd:dd:9c:04:b9:5d:7d:85:
54:a0:8a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:12:10 2026 by rpki-client