Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E37273465BD311F1911A4FCACE1D38B0.roa
File: E37273465BD311F1911A4FCACE1D38B0.roa (raw, json)
Hash identifier: opj95FVHAVTEOgcVJGPgywEfBqM1/eLA3JkSPMxagbg=
Subject key identifier: 43:3C:36:E1:B0:20:CA:B9:5C:77:6F:45:C9:BE:44:63:73:66:83:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D0DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E37273465BD311F1911A4FCACE1D38B0.roa
Signing time: Sat 30 May 2026 03:01:44 +0000
ROA not before: Sat 30 May 2026 03:01:38 +0000
ROA not after: Tue 07 Jul 2026 03:01:38 +0000
asID: 202656
IP address blocks: 154.219.196.0/24 maxlen: 24
154.219.198.0/24 maxlen: 24
154.219.199.0/24 maxlen: 24
154.221.56.0/24 maxlen: 24
154.221.57.0/24 maxlen: 24
154.221.58.0/24 maxlen: 24
154.221.59.0/24 maxlen: 24
154.221.61.0/24 maxlen: 24
154.222.1.0/24 maxlen: 24
154.222.12.0/24 maxlen: 24
154.222.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119004 (0x1d0dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 03:01:38 2026 GMT
Not After : Jul 7 03:01:38 2026 GMT
Subject: CN=6a1a5318-1657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:78:bb:72:dc:16:e7:67:a5:12:2f:24:93:ed:
e1:ae:0e:51:40:17:5b:90:86:db:11:29:74:6a:c3:
14:7e:58:57:11:e7:eb:e5:f7:b2:f6:b5:94:e0:b4:
ad:99:b8:b8:81:a2:00:eb:a9:91:4b:a0:99:14:5e:
48:1e:70:d7:ae:30:c9:c8:3e:ef:93:58:c7:98:f0:
c5:ac:7c:c5:c0:0b:80:c5:3a:89:75:fa:6c:e7:1e:
1c:47:f9:3e:60:f8:ef:77:59:97:1b:b9:fb:1c:61:
6f:98:d2:bf:98:bf:a0:a7:51:55:9b:1f:80:b1:15:
d9:a0:3b:45:85:9c:b9:dc:58:1b:e7:94:98:1c:ab:
3c:14:79:65:a9:0f:36:c9:ca:d1:b6:df:0a:ad:b7:
ed:ef:f1:bf:10:f9:ef:20:77:52:97:17:37:d7:81:
42:e5:43:1e:f8:7e:a3:7a:39:f6:20:0c:ad:45:81:
36:1d:d7:2e:1e:4f:d9:aa:4a:2a:b0:dd:53:16:6f:
89:63:fd:da:ba:41:cb:29:ea:b5:21:88:c5:81:48:
df:c0:3a:3e:47:71:65:e7:b6:75:14:96:c5:80:21:
ce:6e:27:8a:55:6c:df:77:94:5d:7f:cd:5e:08:33:
22:68:99:44:10:20:32:1f:f9:bd:5c:ce:37:75:86:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3C:36:E1:B0:20:CA:B9:5C:77:6F:45:C9:BE:44:63:73:66:83:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E37273465BD311F1911A4FCACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.196.0/24
154.219.198.0/23
154.221.56.0/22
154.221.61.0/24
154.222.1.0/24
154.222.12.0/23
Signature Algorithm: sha256WithRSAEncryption
71:40:44:3b:4b:9c:e8:51:26:80:50:86:53:68:fa:83:45:05:
bd:f2:6d:0b:8f:73:29:34:1d:f9:8e:64:70:0f:2b:8f:12:63:
02:1f:d2:d0:ec:6d:4f:1d:fe:b1:8b:09:e3:2a:d7:f5:21:cb:
e1:4c:62:14:e9:d7:98:d5:f9:7c:87:b6:48:42:ce:da:49:4c:
41:7e:35:d7:2c:1f:13:ba:08:eb:85:c4:37:cb:04:69:60:f4:
00:ee:2f:ff:d3:4e:3c:7f:e1:8f:46:84:64:e8:27:52:7c:72:
b4:30:53:df:7a:69:f7:22:91:61:4e:c8:2d:a0:a5:96:03:ea:
c2:6d:52:25:7d:ac:42:5c:84:d7:c1:4f:f3:bc:00:32:03:7b:
cd:0a:18:3b:18:64:c0:aa:db:57:55:8a:16:39:27:f6:48:25:
07:41:5c:b6:7b:b3:2a:59:6f:c0:c9:f4:10:db:e3:ee:bf:dc:
08:85:98:2a:40:a4:e8:f5:53:93:64:96:45:ac:db:3f:9e:71:
00:99:c4:af:ba:56:59:3c:2f:d2:11:28:53:c9:a2:4d:18:5e:
59:0f:a4:68:fa:ee:61:59:b5:db:65:5c:3f:4d:67:1e:7b:f9:
f9:68:34:c7:8d:14:ef:b8:a8:cc:99:31:98:1a:a6:fa:58:21:
12:dc:79:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:56:29 2026 by rpki-client