Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8161EFA6DA011F195CEC3BECE1D38B0.roa
File: E8161EFA6DA011F195CEC3BECE1D38B0.roa (raw, json)
Hash identifier: Wf+87jwSBBPCWy4AIKq66/5PHY3LChXDcAZv+7t/75c=
Subject key identifier: CB:3D:63:9D:BC:98:11:E1:55:72:A5:71:83:20:CF:AB:45:3D:D3:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D44A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8161EFA6DA011F195CEC3BECE1D38B0.roa
Signing time: Sun 21 Jun 2026 18:42:08 +0000
ROA not before: Sun 21 Jun 2026 18:40:39 +0000
ROA not after: Wed 29 Jul 2026 18:40:39 +0000
asID: 59187
IP address blocks: 154.221.32.0/22 maxlen: 24
154.221.32.0/23 maxlen: 24
154.221.32.0/24 maxlen: 24
154.221.33.0/24 maxlen: 24
154.221.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119882 (0x1d44a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 21 18:40:39 2026 GMT
Not After : Jul 29 18:40:39 2026 GMT
Subject: CN=6a383080-78d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:07:99:63:97:ea:71:e8:61:f4:90:37:2b:11:
ea:65:22:48:36:62:6b:15:51:bf:d2:07:f3:15:dc:
74:16:2c:ac:8e:d0:f5:77:5c:54:63:69:d2:94:d2:
a3:d8:fa:6a:a5:91:8d:0a:84:cd:9e:17:c5:9e:8a:
d2:35:87:60:4e:c5:f6:06:66:1d:c9:ab:f8:ac:e1:
8d:ea:a3:03:82:88:00:1c:60:e5:39:18:a7:a5:35:
b8:01:22:6e:7f:27:20:f2:cd:2f:f1:13:07:bb:06:
31:c7:21:2f:59:fb:d7:c4:6b:1f:f2:4c:6a:b1:73:
f1:b9:7f:9a:86:21:41:88:6e:2b:a3:95:70:ac:ac:
84:af:b4:64:d2:5d:a2:16:d9:2d:81:02:45:6d:7f:
5f:83:0e:44:c0:a5:a0:c2:3d:a8:91:e1:f9:4c:ed:
1d:4e:49:95:6d:af:2a:42:0b:6a:66:c4:01:6f:5a:
d3:2e:61:e0:69:53:95:f8:2a:32:be:e4:67:2b:58:
50:57:a1:9a:85:e2:77:32:d9:8f:53:43:c0:df:5d:
32:95:26:20:e8:83:0d:50:df:16:f9:8b:6e:ae:b5:
c6:d0:58:d1:67:b6:3a:10:43:6d:a5:af:df:8b:fd:
67:61:b6:71:68:f1:ff:60:b7:fb:fd:a6:8d:2d:0a:
40:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:3D:63:9D:BC:98:11:E1:55:72:A5:71:83:20:CF:AB:45:3D:D3:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8161EFA6DA011F195CEC3BECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.32.0/22
Signature Algorithm: sha256WithRSAEncryption
67:db:65:dc:53:8a:0f:ef:e4:7e:c1:91:bf:34:1e:34:c6:d0:
d1:6c:aa:5e:29:56:87:41:8a:44:57:e3:37:43:37:2d:f2:83:
ed:8b:cd:46:e4:25:6d:d2:59:89:61:16:77:99:cc:15:c7:f4:
11:91:55:17:cf:81:88:29:50:be:e6:19:3c:71:29:a5:5b:f2:
b3:8d:bd:b9:b3:48:75:9b:66:d8:37:c3:38:03:48:8c:82:70:
e1:d4:d0:e9:d1:7a:ed:f1:18:2c:75:f5:21:34:7b:bb:ce:f3:
a6:16:31:f7:24:f7:5e:62:25:75:d8:35:34:19:9a:05:67:af:
35:ce:2e:68:58:f1:94:9b:71:90:f4:92:98:c7:8f:b9:34:bc:
20:3b:60:1b:8c:5e:1e:6d:21:43:3e:1b:02:28:89:0d:90:1d:
81:57:76:bd:0a:d2:ce:37:e8:1b:a1:19:e1:be:7c:35:40:2d:
ed:c8:2a:1a:89:47:03:21:ad:e2:c8:71:ca:4a:dc:35:02:24:
f1:ed:4c:5f:f7:46:09:23:f8:36:a4:6d:4e:36:5f:01:84:4e:
26:77:b2:ef:0d:57:1a:a0:3b:3a:9e:26:92:34:4d:d3:2c:a0:
32:ff:d5:12:4f:42:1b:ab:66:a4:8a:3e:26:1e:69:53:d4:65:
a6:21:cb:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:00 2026 by rpki-client