Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4160A6857A311F1843AA3D5CE1D38B0.roa
File: D4160A6857A311F1843AA3D5CE1D38B0.roa (raw, json)
Hash identifier: YSWW9zGwzsVQd/9gS2A3kphf0WVC9WZ6Mtsfu/tNtpM=
Subject key identifier: ED:94:DE:F7:59:35:7D:73:81:40:D6:86:91:5D:7D:DC:06:CF:61:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CF05
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4160A6857A311F1843AA3D5CE1D38B0.roa
Signing time: Sun 24 May 2026 19:07:38 +0000
ROA not before: Sun 24 May 2026 19:07:33 +0000
ROA not after: Tue 30 Jun 2026 19:07:33 +0000
asID: 401783
IP address blocks: 154.82.153.0/24 maxlen: 24
154.82.196.0/24 maxlen: 24
154.82.197.0/24 maxlen: 24
154.82.198.0/24 maxlen: 24
154.82.199.0/24 maxlen: 24
154.83.67.0/24 maxlen: 24
154.89.132.0/24 maxlen: 24
154.90.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Jun 2026 16:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118533 (0x1cf05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 19:07:33 2026 GMT
Not After : Jun 30 19:07:33 2026 GMT
Subject: CN=6a134c7a-53a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:97:71:23:36:e5:17:a9:93:3f:66:14:fa:a9:
61:c7:68:53:fb:61:b8:9b:9c:5b:8b:9f:90:c4:e9:
93:02:85:28:46:7d:fb:40:82:46:5a:01:36:c8:bf:
ff:5c:88:dd:ab:18:85:67:fd:72:d0:f7:72:10:8d:
70:39:a5:c7:a3:1e:b2:4e:23:4f:83:c5:75:63:54:
9e:44:85:50:f3:6f:7e:00:06:50:e0:37:9f:ef:27:
64:32:f4:45:49:47:f3:1c:5d:f4:9a:0e:f6:65:83:
62:21:07:80:a1:56:ec:df:51:6a:74:83:34:40:95:
99:20:21:1d:a0:b7:56:96:dc:9c:f7:e7:48:4b:8e:
89:9c:64:00:ed:ef:53:fe:a0:86:dc:aa:f7:42:6d:
f2:0e:77:35:0c:e8:ee:c0:5e:89:46:1a:93:88:f4:
01:26:34:01:d6:6b:9e:27:26:8e:17:56:61:14:12:
f8:63:80:25:7f:e3:10:a3:c0:dd:1c:d7:85:db:bc:
df:dc:2d:30:3f:b2:60:ee:c9:a6:dd:04:44:45:56:
6f:70:b7:d8:e9:a3:77:5a:34:e9:d9:fb:de:eb:81:
ea:54:6d:29:0b:e1:6a:15:06:58:9c:3a:50:4f:46:
ba:39:cd:75:56:c9:21:74:d6:7b:c2:35:bb:b9:3a:
48:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:94:DE:F7:59:35:7D:73:81:40:D6:86:91:5D:7D:DC:06:CF:61:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4160A6857A311F1843AA3D5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.153.0/24
154.82.196.0/22
154.83.67.0/24
154.89.132.0/24
154.90.65.0/24
Signature Algorithm: sha256WithRSAEncryption
70:db:b8:c8:5d:77:92:2f:d3:97:2d:31:f9:33:b5:15:38:b0:
e9:6f:d3:ea:6e:ec:94:22:11:72:a9:f5:a5:80:3b:28:11:93:
b4:b1:cd:f1:7d:ee:d9:39:7c:06:ab:6e:43:8a:4b:ae:3e:2e:
9f:36:12:07:23:46:0c:85:6b:2f:d3:c8:f5:b7:e0:a6:97:85:
6b:1d:d7:16:31:2d:8c:a1:4b:54:ff:b1:b4:3f:11:e6:56:f1:
32:ba:77:fb:29:28:03:a5:79:6a:2c:36:2a:f4:73:f9:13:e3:
20:80:11:71:97:02:51:eb:c9:4b:6c:24:cd:d7:6f:02:28:81:
8a:40:55:b8:59:5b:13:f4:92:c4:2f:95:38:97:2c:d3:40:e1:
7b:b3:5b:69:1d:6b:c7:8c:67:ba:9c:34:bb:ef:35:c0:0f:c6:
80:c3:b6:4b:ff:4c:9a:d4:77:e7:07:2c:29:23:ad:79:4e:83:
29:2d:9b:d8:38:94:34:d7:7e:67:cd:15:a4:b8:e6:18:80:6d:
30:27:61:cc:5c:f6:f4:b6:0c:8b:59:66:21:04:28:17:6e:cc:
8c:d1:95:f1:cc:f5:ea:ff:94:29:3f:2a:a2:a2:ec:c9:1a:45:
de:5c:a9:49:79:9f:6d:58:ac:22:2d:c6:2a:ca:2f:ee:02:9b:
a4:53:34:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 03:14:38 2026 by rpki-client