Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7DA2A0C546011F19A9DE8EECE1D38B0.roa
File: E7DA2A0C546011F19A9DE8EECE1D38B0.roa (raw, json)
Hash identifier: 20bwCEvDegdjPY+Vp/U13RiOxBIMAhCu3lIEnv/x/8c=
Subject key identifier: 3B:5A:E6:96:7E:CE:86:72:81:45:C0:59:46:FE:37:B9:53:6B:48:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CCF2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7DA2A0C546011F19A9DE8EECE1D38B0.roa
Signing time: Wed 20 May 2026 15:31:01 +0000
ROA not before: Wed 20 May 2026 15:30:55 +0000
ROA not after: Fri 26 Jun 2026 15:30:55 +0000
asID: 138915
IP address blocks: 154.205.145.0/24 maxlen: 24
154.205.148.0/24 maxlen: 24
154.205.149.0/24 maxlen: 24
154.205.150.0/24 maxlen: 24
154.205.151.0/24 maxlen: 24
154.205.152.0/24 maxlen: 24
154.205.153.0/24 maxlen: 24
154.205.154.0/24 maxlen: 24
154.205.155.0/24 maxlen: 24
154.205.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118002 (0x1ccf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 15:30:55 2026 GMT
Not After : Jun 26 15:30:55 2026 GMT
Subject: CN=6a0dd3b5-b55e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:32:10:98:b0:c5:65:65:7c:6a:5f:2d:56:a3:
ac:fb:98:ab:50:3e:d2:5d:49:11:b2:48:6e:22:5b:
a4:de:e8:c2:8a:d3:13:16:5f:8a:53:b0:cd:85:e6:
49:3c:ba:ce:47:d1:36:16:2a:e4:b6:79:59:b0:a9:
b2:6d:6b:4f:60:10:e5:12:87:ac:03:81:c7:0d:91:
fc:c1:81:11:ec:14:10:d5:ea:63:9c:22:1b:5b:f7:
c5:48:f7:0a:c8:e4:1d:6c:32:e2:8c:40:cd:75:1d:
c7:ee:17:b5:4c:03:6c:1c:55:15:14:f4:69:96:5e:
96:98:78:dd:3d:e9:c8:27:c7:37:d1:40:07:84:0b:
3f:5c:f6:e1:d4:0d:a7:ca:67:a6:b7:ed:e8:8a:5b:
3c:cb:63:fe:b9:d6:18:f8:64:d2:ff:d4:b2:60:57:
ca:73:aa:d6:26:01:95:a9:13:93:2d:9c:64:a2:5d:
01:37:60:2e:ad:12:ac:4d:de:91:4e:92:85:70:f2:
6f:c7:13:dd:c6:2c:90:87:1b:88:6d:04:18:1d:d8:
a6:4d:1b:61:a4:c4:66:b7:ad:88:81:07:31:fe:5e:
cd:ac:2c:3e:50:14:25:df:1c:8d:f1:a1:8f:9e:10:
29:62:54:8b:f1:27:01:3a:67:da:45:57:7a:64:c5:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5A:E6:96:7E:CE:86:72:81:45:C0:59:46:FE:37:B9:53:6B:48:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7DA2A0C546011F19A9DE8EECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.145.0/24
154.205.148.0-154.205.156.255
Signature Algorithm: sha256WithRSAEncryption
8c:a1:c3:4d:b8:71:7d:f2:17:73:c2:a8:ed:37:2c:a7:dd:dc:
7e:9f:72:df:bd:5e:44:62:de:97:f0:b1:4f:74:c9:c3:f2:16:
30:2b:0f:63:81:22:28:bf:6f:01:d3:d4:50:5b:a6:5f:9a:1e:
4f:89:3a:cb:ff:95:4c:f5:05:49:6b:98:3c:e4:a3:5b:6f:04:
a8:75:6f:0b:99:d5:8d:98:ea:15:16:ab:01:93:1b:c9:b9:26:
0b:6a:da:8f:93:31:9e:85:f6:02:e1:9a:06:fa:c5:66:a1:00:
50:5d:ea:8b:af:8e:f6:d8:15:b0:01:a1:f5:fe:56:65:d6:86:
64:f2:c3:71:fe:bc:27:2b:b1:b4:32:b1:db:37:56:61:cd:1d:
3b:d7:e0:67:9d:41:96:2c:b8:66:8d:17:bf:49:2a:9a:86:00:
09:50:ce:45:49:ab:4b:4e:f4:7c:88:31:c9:f9:eb:05:d1:51:
52:36:7c:21:62:6e:2e:af:5a:b2:49:6f:66:2b:b3:27:6a:35:
68:17:09:76:40:0a:50:2f:ce:e0:a2:2c:15:88:87:32:a1:57:
10:4a:68:db:11:4f:85:7c:ab:52:ae:08:e9:8d:a8:61:4b:0d:
cb:43:85:da:42:18:01:61:6d:bf:22:a9:98:67:47:9e:5b:e4:
9e:76:18:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:12:40 2026 by rpki-client