Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6CC922C3F0711F1A1EE8B0BCF1D38B0.roa
File: D6CC922C3F0711F1A1EE8B0BCF1D38B0.roa (raw, json)
Hash identifier: RXl2ucAjrK+sMrpv8ZW3Crpd5s7sKAQAJ0ZyOleXlDI=
Subject key identifier: 16:1C:3D:00:6A:18:FB:3C:4A:59:2B:3D:68:84:5D:A2:40:F1:08:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6DF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6CC922C3F0711F1A1EE8B0BCF1D38B0.roa
Signing time: Thu 23 Apr 2026 11:30:33 +0000
ROA not before: Thu 23 Apr 2026 11:30:28 +0000
ROA not after: Tue 09 Jun 2026 11:30:28 +0000
asID: 3257
IP address blocks: 154.81.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116447 (0x1c6df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 11:30:28 2026 GMT
Not After : Jun 9 11:30:28 2026 GMT
Subject: CN=69ea02d9-7ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:de:11:90:19:9a:5d:39:ea:19:c1:c5:2b:af:
c7:dd:82:0e:62:3f:35:89:57:27:5b:34:f2:44:8e:
9a:25:cd:ef:71:2d:2a:07:0f:fa:98:24:b8:d6:c0:
ec:85:fa:32:e1:ce:2e:ae:d5:13:fc:14:14:e8:d1:
f9:b7:33:78:b2:30:73:f6:a7:fb:d7:67:10:4b:ff:
a3:85:8e:34:53:8b:26:d2:a1:fa:7a:39:af:46:a6:
a8:a9:36:67:97:72:6d:c6:93:07:f1:ad:2a:35:c7:
37:ca:63:42:3e:9b:56:22:c0:58:da:f7:c6:3b:73:
c3:f2:37:8c:d2:20:84:6a:49:c4:bb:2e:f9:ba:18:
e0:7f:6c:7f:52:14:81:ff:ee:81:9f:f9:0c:15:87:
cb:e6:1a:e1:2b:ef:bb:91:8d:a6:60:a7:ce:5a:65:
93:66:60:af:7d:68:e8:35:48:4c:1b:14:12:c9:6f:
22:20:86:fd:8a:21:4f:4c:d7:f9:13:88:c5:22:f2:
8b:4f:e1:19:2f:53:60:75:c7:14:c3:da:81:fa:4d:
2e:25:97:52:6f:31:94:38:78:84:5a:24:0c:8f:34:
9c:2c:d3:a5:d0:32:10:bd:29:fe:19:61:22:28:55:
8f:4e:ea:b4:ab:18:77:31:2d:2c:f4:3b:19:81:7f:
d6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1C:3D:00:6A:18:FB:3C:4A:59:2B:3D:68:84:5D:A2:40:F1:08:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6CC922C3F0711F1A1EE8B0BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.50.0/24
Signature Algorithm: sha256WithRSAEncryption
00:d6:ff:a8:99:f2:24:ea:c0:e2:d2:5a:61:c0:8b:c2:7b:e7:
ed:7e:6f:57:f1:0e:42:70:da:77:6d:3d:2a:88:4c:ae:17:ae:
39:b3:1f:5b:cb:2b:7e:90:40:99:81:7f:81:cb:a4:7c:11:5f:
ff:b3:e5:4f:88:74:55:5f:9e:b2:ce:08:e1:b9:ea:c3:d3:cd:
c7:27:90:1e:4f:0d:47:1e:85:16:f7:06:fb:6f:bc:e5:7d:a0:
4b:c7:17:85:9b:98:87:fd:0e:4f:dc:62:7b:76:92:0e:0b:8c:
71:25:17:7c:88:26:83:10:99:23:73:15:c9:2b:49:20:e6:c9:
61:1c:83:75:69:d8:50:7b:99:0b:46:d3:29:10:fd:66:2e:3f:
4b:a3:22:ef:93:c7:d1:40:57:76:53:16:a4:19:16:21:ce:55:
63:e2:f9:0a:53:ce:03:23:74:00:06:fe:73:5a:5e:82:13:88:
96:2e:aa:44:3a:e0:4c:1f:89:8c:93:e8:aa:c9:0e:05:68:69:
fc:4a:3d:dc:a6:1f:1c:e1:c3:27:98:83:06:1e:96:c0:b7:42:
f9:b7:63:a6:c6:61:94:60:8b:b8:c2:1d:4f:89:68:a4:71:fa:
a8:a6:00:de:ef:12:cd:90:a2:9a:2d:b1:3b:9f:ac:f3:e4:7a:
7d:06:47:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:42 2026 by rpki-client