Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7F224B8546611F18C5F2814CF1D38B0.roa
File: D7F224B8546611F18C5F2814CF1D38B0.roa (raw, json)
Hash identifier: 6CCXJMESkggvLyDlWpsH0PdrmjJeBYd9gQA4Zmp5X9s=
Subject key identifier: D5:9A:29:E9:07:B4:F1:A5:DB:7B:BD:15:62:11:79:91:2D:EA:82:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD00
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7F224B8546611F18C5F2814CF1D38B0.roa
Signing time: Wed 20 May 2026 16:13:32 +0000
ROA not before: Wed 20 May 2026 16:13:25 +0000
ROA not after: Fri 26 Jun 2026 16:13:25 +0000
asID: 138915
IP address blocks: 154.206.64.0/24 maxlen: 24
154.206.65.0/24 maxlen: 24
154.206.66.0/24 maxlen: 24
154.206.68.0/23 maxlen: 24
154.206.68.0/24 maxlen: 24
154.206.69.0/24 maxlen: 24
154.206.70.0/23 maxlen: 24
154.206.70.0/24 maxlen: 24
154.206.71.0/24 maxlen: 24
154.206.96.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118016 (0x1cd00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 16:13:25 2026 GMT
Not After : Jun 26 16:13:25 2026 GMT
Subject: CN=6a0dddab-199f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:e6:fe:e6:e9:7c:0c:22:5d:00:bc:e0:f3:
03:0f:53:18:69:0c:0b:88:c6:28:78:6c:7d:ec:da:
8d:2c:1c:68:07:5d:d9:50:cb:b5:43:48:9e:8d:29:
4f:4a:d7:76:4e:1a:56:d1:e1:7b:d4:39:8d:a5:93:
f2:4e:64:2a:c6:4b:f8:c5:8c:6b:07:d0:1a:68:c8:
ac:51:36:9f:d8:1f:4a:a6:7b:b6:bd:a0:69:55:98:
2f:01:98:29:5b:5f:74:87:ec:b7:51:d0:59:c2:1f:
40:94:46:01:09:1d:66:0e:e1:b4:69:ce:86:0b:1b:
72:be:86:77:ed:7e:0a:87:04:17:e5:9e:47:2f:98:
f8:fd:af:15:97:6d:ac:c4:db:09:3c:75:e0:16:5a:
d9:55:6e:26:59:44:7f:be:4d:55:ea:d1:fc:24:4c:
de:d3:61:c6:50:1d:2f:5b:2d:ff:24:60:06:df:c8:
d9:d7:5d:f5:90:a3:85:13:d7:d3:db:43:b2:3a:b3:
8b:fe:8e:56:bf:da:7c:ef:c5:af:81:f1:70:95:1b:
35:36:19:57:e2:c8:b4:69:fd:7e:91:6e:5c:4d:11:
52:ec:c0:4b:0d:df:84:cd:51:c3:d6:71:28:1f:03:
69:b0:57:d0:87:76:31:42:fe:05:05:43:20:01:93:
fe:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9A:29:E9:07:B4:F1:A5:DB:7B:BD:15:62:11:79:91:2D:EA:82:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7F224B8546611F18C5F2814CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.64.0-154.206.66.255
154.206.68.0/22
154.206.96.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:02:51:01:3f:fe:58:70:35:6a:b8:aa:7d:a4:f0:7c:93:c0:
14:f9:a0:ac:d9:21:55:32:42:fd:7b:a8:74:7d:78:b8:19:77:
33:5f:54:a4:ec:7a:53:11:99:6f:9e:c7:a9:a7:34:de:d4:55:
fc:f3:09:3b:c9:68:97:8f:b7:2a:d4:20:dd:f5:3a:83:b6:4c:
c6:41:dd:f6:bd:79:29:c7:28:a5:24:d0:fc:07:db:3c:17:a9:
f5:27:f8:dd:ed:ab:e0:67:a5:e9:dd:93:58:aa:75:f9:d5:9c:
4a:c5:28:b5:2a:64:2c:05:14:85:18:28:2c:70:a2:0f:63:2a:
60:fd:65:81:ad:73:41:8b:4f:29:c5:27:cd:27:43:e1:6c:10:
08:83:44:a1:6f:7f:67:4d:01:49:44:43:b1:00:b2:bb:f3:04:
94:f0:03:0b:d7:a0:99:14:47:56:38:0a:52:6c:8f:31:5e:0b:
d1:f3:58:fd:93:c7:32:ca:ae:cd:72:f8:9d:ba:eb:9c:32:20:
ae:c4:00:21:1a:e4:45:d0:38:e3:d0:81:d6:a9:4f:f2:ab:f5:
b7:9d:b3:3a:d6:22:36:09:27:c6:18:cf:74:ca:30:70:e2:29:
21:3e:ca:12:15:eb:f8:98:fb:b5:3b:c6:51:af:cf:b8:83:3a:
37:bf:f9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:12:41 2026 by rpki-client