Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E61714B64A0E11F189BA8DB4CE1D38B0.roa
File: E61714B64A0E11F189BA8DB4CE1D38B0.roa (raw, json)
Hash identifier: UKh1KlstdgRkf23HNjmFi+z/Pt/mwQs522iyG5stt5Q=
Subject key identifier: 69:4E:E7:FF:FE:61:0C:5C:8E:32:64:56:38:6E:64:E0:50:F5:26:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C9D6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E61714B64A0E11F189BA8DB4CE1D38B0.roa
Signing time: Thu 07 May 2026 12:18:48 +0000
ROA not before: Thu 07 May 2026 12:18:43 +0000
ROA not after: Fri 22 May 2026 12:18:43 +0000
asID: 401701
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117206 (0x1c9d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 12:18:43 2026 GMT
Not After : May 22 12:18:43 2026 GMT
Subject: CN=69fc8328-ba7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:21:57:40:72:ee:46:43:7d:61:ee:e1:35:
25:c3:52:8b:14:b0:3a:c2:39:31:64:40:0e:46:eb:
dd:40:f9:11:e0:e8:46:f8:75:51:7c:fc:e8:8e:e6:
59:57:1b:2c:53:73:d5:f7:db:e1:85:0d:74:5c:57:
cc:16:f3:95:84:2b:0a:6a:45:ae:74:bd:c3:62:2d:
7d:54:ee:f2:b1:b6:5e:fc:b9:ca:bb:fe:33:5b:68:
2b:2d:f8:7e:fb:cb:8a:fb:0e:e7:1f:ab:ea:a4:ac:
3a:3e:d4:f0:77:00:7f:d0:b0:57:74:39:cf:7a:11:
9d:ab:ed:f8:dc:4c:04:71:cf:b3:b1:91:8c:b6:a4:
fa:5c:65:4b:e8:a8:a8:d2:0a:64:31:f6:c2:43:df:
79:85:e1:6a:78:63:aa:4b:09:e6:25:62:e5:ae:30:
4f:2e:75:fd:a4:b4:67:3f:38:f5:38:61:02:6c:8f:
d7:90:0e:5e:4a:11:f8:65:c9:e0:34:98:11:d5:f4:
cf:06:d5:0d:d4:89:c9:d2:4b:fc:d7:f9:ba:de:f6:
90:80:39:ab:b3:dc:6b:59:c7:05:1f:8a:76:8d:42:
a9:d0:9c:b2:4d:2d:6b:e7:40:5c:ad:d6:55:c4:8c:
46:1e:c3:bf:fd:28:c2:07:43:c5:05:43:27:52:9c:
e0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:4E:E7:FF:FE:61:0C:5C:8E:32:64:56:38:6E:64:E0:50:F5:26:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E61714B64A0E11F189BA8DB4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:92:34:d0:96:37:19:28:07:6d:4d:e4:a8:91:95:92:8b:f2:
7a:ed:93:0f:ed:d8:0a:c2:97:fb:59:eb:b0:34:f9:f4:3f:c8:
a9:d9:88:8e:52:c4:4a:2f:03:4b:9d:10:a3:2e:29:72:90:ff:
f8:6f:23:e4:c8:8f:d5:04:5a:aa:c4:83:2b:46:e3:17:ae:5f:
d8:3c:79:86:3c:e3:08:cb:ce:5b:33:3b:1c:ae:54:af:d6:46:
24:2c:57:59:a1:21:25:e3:e0:90:e3:89:f9:0b:da:f8:9e:55:
55:80:b9:fb:89:43:86:29:98:8e:a6:69:10:02:05:30:75:77:
16:b2:42:8b:16:46:c5:cc:26:92:c8:f8:06:7b:4a:11:4c:0b:
8c:01:1f:40:f6:29:3d:f5:8c:ca:6d:5b:25:a5:7e:3c:57:63:
9c:e1:54:9f:61:d7:ff:6e:de:fe:29:fc:ef:00:99:e1:d8:5c:
d0:10:b3:d3:1c:8b:c6:28:08:10:c0:57:f1:9a:22:14:93:2c:
21:5a:12:be:f7:59:21:b5:63:4d:df:9c:6e:5c:66:4d:1c:e0:
80:b4:5f:68:41:45:20:66:84:81:d9:ab:ca:8a:1d:b0:f3:e5:
7a:95:2d:2d:60:aa:06:3d:e2:d3:fc:59:ac:71:0a:f2:ee:c2:
c6:63:22:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:58 2026 by rpki-client