Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1D13040576F11F1B7434D1ECF1D38B0.roa
File: D1D13040576F11F1B7434D1ECF1D38B0.roa (raw, json)
Hash identifier: ogVYwYh1lTk9+MYgNL4QgJ3dxFBKi8L8YbSy7BhzxaA=
Subject key identifier: FC:5D:9B:17:E8:D5:9D:32:3A:55:3F:18:83:18:69:7E:39:6B:D1:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CECF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1D13040576F11F1B7434D1ECF1D38B0.roa
Signing time: Sun 24 May 2026 12:55:20 +0000
ROA not before: Sun 24 May 2026 12:55:15 +0000
ROA not after: Sat 22 May 2027 12:55:15 +0000
asID: 63199
IP address blocks: 154.222.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 08:36:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118479 (0x1cecf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 12:55:15 2026 GMT
Not After : May 22 12:55:15 2027 GMT
Subject: CN=6a12f538-f470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:58:f0:6e:af:6b:ee:ea:0a:57:2c:9a:26:
5f:97:4f:9a:f9:75:43:df:ad:60:a3:f4:9d:75:14:
89:e1:68:ec:38:06:8f:3b:f0:40:b2:fb:74:63:43:
65:e9:f8:d1:a6:97:54:3f:6c:be:0c:77:7f:28:09:
72:cc:16:3c:ea:14:3f:b1:94:35:9e:25:be:10:d8:
ef:b2:9b:77:98:86:e4:27:20:df:bf:e2:f9:55:76:
32:a3:d1:67:d0:38:18:a4:0e:14:a6:5e:7f:2a:77:
d2:db:b0:a7:72:01:54:3a:90:07:7d:d5:f6:fd:70:
c2:ae:2a:62:c9:de:27:cf:21:d2:3f:37:f0:bc:63:
c4:ed:e2:3b:fb:c0:8c:97:68:c3:19:b2:69:c6:52:
6a:cf:5e:8c:3e:6a:20:dd:1a:1d:89:68:4e:7e:39:
07:52:27:00:59:75:13:8e:48:75:8e:9b:4e:9d:c4:
3c:af:f4:8e:ff:0f:7d:75:f9:0d:88:a5:5e:29:52:
ce:f1:82:0e:04:b9:b5:4f:0a:a0:dc:87:06:6e:a2:
a0:94:96:61:12:b3:d8:37:ca:b2:fb:46:5f:c0:b9:
0b:b8:0a:e5:03:aa:53:e2:a8:d5:86:9c:d2:eb:36:
17:d5:6c:00:ba:4a:24:66:1e:d8:58:e3:03:33:b1:
9e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5D:9B:17:E8:D5:9D:32:3A:55:3F:18:83:18:69:7E:39:6B:D1:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1D13040576F11F1B7434D1ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.39.0/24
Signature Algorithm: sha256WithRSAEncryption
03:9d:ca:09:be:86:9d:35:c9:65:31:01:58:c7:51:47:b2:15:
9e:be:4c:1b:b3:c9:f7:f3:f3:f5:03:57:1a:c2:73:e7:8e:20:
0f:68:43:0e:a1:c7:27:61:1a:4e:4f:f5:c2:ed:68:bb:b0:77:
13:36:51:f0:a6:09:37:76:21:41:56:19:79:d7:14:72:19:22:
90:40:b4:b6:02:ef:d8:03:7b:db:6f:d2:e4:c6:56:ca:3a:1e:
9b:fa:f4:1f:8c:76:db:35:f1:6a:86:ab:7e:52:f4:f5:6f:95:
be:0e:cb:02:c7:70:32:65:d1:ab:82:42:a9:fc:1f:65:cb:4e:
a8:cc:c9:8e:66:f6:9b:3e:38:47:42:31:9b:24:61:68:84:6c:
d2:62:4f:0d:08:0c:35:b7:44:d1:e7:9c:30:00:73:a5:c5:57:
fd:24:4b:34:b9:92:79:b8:8b:b0:cb:cd:38:9f:20:28:5e:05:
db:5c:5f:d0:44:7c:d9:f2:1d:f2:f5:c8:e9:cc:d1:c7:c2:14:
ea:7a:30:e2:8d:be:98:6f:64:e5:c1:79:52:24:1b:3a:52:21:
0a:84:f2:9f:64:0b:78:ee:25:1b:82:4c:07:19:83:bc:9c:47:
dd:75:e0:12:6f:26:16:68:99:12:04:7c:13:91:11:09:e4:65:
11:0a:11:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 12:00:26 2026 by rpki-client