Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE54B718508D11F1A7B66EA9CE1D38B0.roa
File: CE54B718508D11F1A7B66EA9CE1D38B0.roa (raw, json)
Hash identifier: xACXiUfzf+XRJIhsGgdccJjMRrhfROhTlzo1VEs/N0g=
Subject key identifier: A8:F0:97:F1:83:F7:7E:3A:7D:7A:EA:08:92:EE:25:96:AD:38:3B:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CBD6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE54B718508D11F1A7B66EA9CE1D38B0.roa
Signing time: Fri 15 May 2026 18:42:21 +0000
ROA not before: Fri 15 May 2026 18:42:15 +0000
ROA not after: Thu 25 Jun 2026 18:42:15 +0000
asID: 174
IP address blocks: 154.214.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 18 May 2026 00:07:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117718 (0x1cbd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 18:42:15 2026 GMT
Not After : Jun 25 18:42:15 2026 GMT
Subject: CN=6a07690d-a879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ba:d2:e8:31:cf:cd:e9:99:40:9c:7d:41:29:
a2:af:80:5f:05:4c:6c:d0:fa:f5:9c:af:cc:b0:93:
71:f5:d5:ef:7a:fe:c2:71:c8:00:cf:1e:4f:e8:52:
e6:03:90:1d:99:99:e5:5c:4d:c5:57:d8:8f:b9:c8:
13:1a:87:08:39:73:2c:20:65:b5:c4:6f:61:ca:a1:
91:d3:a7:40:44:b1:70:dc:dc:60:93:f3:3a:cb:24:
c8:d5:ee:64:06:12:65:78:9b:08:2e:3c:d4:df:30:
59:16:21:3d:b1:27:04:d3:63:dd:97:83:b6:12:95:
2a:61:6e:1a:cb:24:7b:2f:47:21:f0:dc:fa:7f:07:
00:93:fd:0e:c8:28:82:31:16:95:2d:73:03:58:26:
76:db:c9:59:5f:3c:e3:73:f9:f9:42:43:1c:af:c6:
0e:b2:f0:af:8f:50:4d:15:86:7a:3d:84:9e:74:bb:
8c:90:1a:9d:de:a7:f1:b0:66:1c:15:da:54:83:26:
6c:ea:65:14:bf:42:5f:70:8b:59:ef:b2:22:10:e8:
d1:4a:e9:49:85:95:94:f2:96:25:61:93:cb:e5:77:
ab:f4:cc:c8:ff:e7:76:1b:72:85:13:b4:c0:bf:cc:
a7:e5:4b:d1:d8:5d:dd:c6:69:04:7b:62:c9:c8:2a:
4e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F0:97:F1:83:F7:7E:3A:7D:7A:EA:08:92:EE:25:96:AD:38:3B:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE54B718508D11F1A7B66EA9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.0.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d2:5f:c0:ac:d2:04:be:07:73:e3:24:d3:7a:55:18:7b:5b:
e5:de:30:9f:2f:5d:75:be:91:a4:43:cb:a7:47:96:ba:a5:90:
1b:b2:cd:f1:2f:b5:56:ee:46:97:3c:a9:d9:ae:68:79:ca:94:
57:1d:fc:db:90:2c:99:fc:75:9e:5e:f0:e1:47:9e:55:90:10:
83:07:f6:49:23:67:dd:8d:8f:c9:02:83:94:7d:14:b9:1c:bb:
66:0b:98:22:84:63:38:69:57:99:cd:39:52:b5:04:2f:2d:98:
00:f3:c2:67:3b:75:51:50:de:d8:08:b3:9c:2d:5b:32:17:97:
71:f4:7e:47:7e:c9:cd:8d:fd:47:7d:8c:80:00:e5:16:80:21:
68:8c:80:2c:36:05:c9:1c:2b:1f:fb:31:dc:f8:a2:11:90:b3:
83:92:4f:65:71:66:25:c4:bf:f5:23:3c:db:04:dd:85:a9:43:
2e:d3:3d:70:ac:63:e6:20:d3:35:21:0b:01:86:bc:59:f9:5c:
b9:55:74:b8:cb:64:f2:37:57:f0:b3:2e:6c:d9:be:ac:6f:a5:
3e:3d:65:56:13:7a:97:78:14:eb:84:0e:64:a9:50:2d:f2:c4:
90:00:75:91:8a:d8:8f:5f:be:59:65:ab:72:11:52:7b:9a:12:
2c:8a:d9:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 03:21:53 2026 by rpki-client