Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D715DEDC4AC911F1ABD561A7CE1D38B0.roa
File: D715DEDC4AC911F1ABD561A7CE1D38B0.roa (raw, json)
Hash identifier: 3fVJbJdfwqIBAYiPo3qRTex/MZr1fplLKNrS7fMZkj8=
Subject key identifier: 38:08:43:A3:09:0F:69:92:C7:B4:4B:83:D9:CB:76:C8:DC:D7:35:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CA75
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D715DEDC4AC911F1ABD561A7CE1D38B0.roa
Signing time: Fri 08 May 2026 10:36:58 +0000
ROA not before: Fri 08 May 2026 10:36:53 +0000
ROA not after: Mon 08 Jun 2026 10:36:53 +0000
asID: 63099
IP address blocks: 154.83.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117365 (0x1ca75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 10:36:53 2026 GMT
Not After : Jun 8 10:36:53 2026 GMT
Subject: CN=69fdbcca-6555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:be:1d:54:d4:3d:79:8f:37:88:12:ca:4d:54:
68:02:95:8e:38:5d:48:ff:47:11:75:4c:90:3e:47:
2e:45:81:60:02:82:0f:a8:a4:12:92:f7:d4:d2:8c:
e5:82:05:d1:ca:58:84:99:06:00:bb:35:21:aa:e3:
43:9a:a0:c5:2e:5b:26:be:76:cd:f4:fa:fa:3f:d7:
95:70:2f:4b:9a:23:eb:fa:6b:97:db:d9:53:20:a2:
2f:35:6d:6a:f1:ad:83:f0:61:23:8e:e9:7d:b5:7c:
8a:2d:b2:ac:fd:d3:9d:ac:25:16:3b:ef:c7:17:ed:
cb:81:38:fa:c7:d4:c6:7e:33:bc:11:85:5b:45:04:
0d:a2:1f:03:3c:df:5b:e0:a9:98:bd:84:93:f6:e9:
a6:41:c7:8c:40:22:ff:45:d0:54:88:4b:d5:45:f2:
5c:d3:f4:72:8e:bf:e2:94:a1:3b:28:7a:d5:80:42:
6e:62:e7:3f:05:90:93:83:13:31:ea:58:e8:cc:c1:
5a:c1:0e:4e:33:c3:cd:6c:c9:13:36:4c:83:88:f4:
b4:9a:c8:08:dd:33:ec:ee:9a:94:61:f2:eb:cc:99:
d4:b7:28:ae:36:65:38:bd:1e:6f:df:5b:74:40:aa:
f8:81:e6:5f:62:c8:fc:c8:d2:ad:5e:91:5c:3c:53:
92:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:08:43:A3:09:0F:69:92:C7:B4:4B:83:D9:CB:76:C8:DC:D7:35:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D715DEDC4AC911F1ABD561A7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.106.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:30:b7:57:46:06:26:b7:fd:69:fd:af:3a:33:d2:7b:8c:61:
58:41:2a:35:e0:bd:8a:d0:63:b4:81:7b:f4:55:db:2a:e7:32:
df:fd:a3:da:3b:ac:b5:a0:b4:74:d8:03:7f:55:60:71:c8:df:
d5:91:0f:3b:45:8d:14:6f:65:51:eb:2b:5d:a1:d8:d2:87:e4:
d7:8e:6f:06:35:b9:88:c1:2f:d8:ec:53:cb:36:30:3f:9f:27:
2e:ff:11:b0:04:04:ee:d4:70:3c:42:66:1c:9f:86:f8:4a:6f:
b6:99:6c:49:cb:96:4f:56:a2:46:5a:60:d9:1a:69:a0:17:96:
f9:ea:dd:7b:b4:e5:a9:32:3d:93:b6:c1:15:14:b7:02:f3:98:
fc:57:2a:87:d9:3d:2e:48:37:3d:fd:11:ae:7d:a6:90:6a:93:
5a:ea:ce:f8:64:9e:53:48:96:18:a4:af:c8:4c:05:18:d4:3e:
62:56:ff:e4:b3:02:76:fc:1e:a5:10:a3:df:ab:36:54:22:0f:
e2:5d:2c:a0:12:81:e2:1b:06:57:72:5a:11:ca:4e:de:0f:71:
79:ea:72:5c:d3:28:29:9e:75:f9:a4:20:dc:70:b3:f5:28:7e:
13:ea:32:7d:0c:2d:42:b4:4d:a9:ce:c6:1f:cf:48:49:e5:b6:
c2:91:0e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:42 2026 by rpki-client