Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB264722535711F1BE92F3AACE1D38B0.roa
File: EB264722535711F1BE92F3AACE1D38B0.roa (raw, json)
Hash identifier: NwT8nfIjAF0XpDstqx1sLDnQPdS3Gw9kMyRUz6DSvY0=
Subject key identifier: 44:C3:24:AA:DB:36:0C:6D:49:98:2D:AB:45:34:D7:03:42:85:C6:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CC5E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB264722535711F1BE92F3AACE1D38B0.roa
Signing time: Tue 19 May 2026 07:54:10 +0000
ROA not before: Tue 19 May 2026 07:54:05 +0000
ROA not after: Fri 14 May 2027 07:54:05 +0000
asID: 135097
IP address blocks: 154.197.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 15:58:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117854 (0x1cc5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 19 07:54:05 2026 GMT
Not After : May 14 07:54:05 2027 GMT
Subject: CN=6a0c1722-fa05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f5:6e:35:58:9b:64:30:51:c6:ae:cb:80:b0:
6e:d9:31:be:c0:a7:c1:95:82:73:6e:4d:e0:11:af:
3d:82:75:23:20:7b:99:03:23:fa:fb:75:90:9d:39:
c7:32:f6:a3:3a:77:83:74:b4:4b:42:ca:4f:1c:1f:
19:f1:f4:ca:26:6d:1d:36:1d:15:3e:2b:bf:14:7a:
8c:27:2a:59:d7:8d:26:38:3c:6a:93:f1:15:a7:3c:
eb:2f:51:7c:4d:5a:fb:44:f4:f4:68:7d:ad:ac:83:
fb:d8:a1:36:95:17:e6:51:07:bf:93:4d:9c:0a:1d:
1b:1a:3a:79:0a:3f:e9:2a:b4:78:48:f5:31:4b:75:
e7:a8:cb:59:a6:77:69:a5:dd:11:30:e0:be:42:66:
b1:08:80:d8:ae:2b:46:f7:ff:0f:65:03:fc:98:2a:
0b:74:c9:4d:7f:65:bf:64:9b:b8:24:ff:34:23:bc:
54:7c:11:fd:77:78:3f:5b:06:c7:c2:32:26:e4:26:
68:33:6f:f4:02:54:32:8c:02:8b:f2:82:40:73:07:
07:b5:14:8c:21:fd:3b:da:3b:f8:59:5d:70:95:1f:
9a:43:ec:a0:27:19:7a:fc:5a:4b:4d:b2:ba:93:76:
25:36:bd:ab:bf:41:0e:94:2a:76:0c:c7:48:01:0e:
ea:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C3:24:AA:DB:36:0C:6D:49:98:2D:AB:45:34:D7:03:42:85:C6:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB264722535711F1BE92F3AACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.128.0/17
Signature Algorithm: sha256WithRSAEncryption
07:da:ed:cc:b5:0b:78:7b:08:fd:97:b5:32:f1:b5:7a:b0:99:
93:5a:5f:58:b8:4b:69:b5:a8:a5:fd:96:5b:ea:8e:e5:cf:2c:
25:c9:0a:c6:3f:94:c6:f3:ea:26:a7:f3:ef:1e:83:92:71:b8:
3e:dd:0f:9d:4b:ad:10:2c:f3:0c:3b:2d:3a:25:3d:96:5c:b8:
4e:c7:30:79:72:ba:64:4c:6e:84:f2:01:b7:8e:fd:87:79:13:
d4:1d:7a:ce:08:ba:97:4f:7a:e3:97:91:9c:07:e0:67:a9:81:
0e:61:71:86:f9:78:75:f6:aa:29:b8:36:c0:1c:66:ed:05:48:
36:87:54:e4:66:e1:c3:5e:c5:10:e1:6b:0a:68:c9:2c:eb:a7:
3b:b5:5d:ec:78:5b:4d:7e:b8:f0:bd:44:46:72:14:65:0a:fe:
6e:23:cf:a1:93:66:bb:f6:98:f7:4c:d3:c0:eb:5c:77:66:da:
e5:f6:1f:43:70:e2:01:aa:b9:d7:6b:a3:3a:77:33:e9:3b:54:
dc:40:66:e3:da:b6:6f:aa:04:61:6a:73:95:f8:6d:a2:13:8a:
97:bf:ab:9c:28:4c:06:cb:b9:0c:35:07:e0:11:d8:34:5e:21:
bd:1a:c6:54:50:40:29:48:72:d3:ef:65:cf:a1:c9:ba:15:5a:
3a:f4:09:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:40:43 2026 by rpki-client