Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDC26CF05EB911F1B4F279E6CE1D38B0.roa
File: EDC26CF05EB911F1B4F279E6CE1D38B0.roa (raw, json)
Hash identifier: xFwhUXaR2izQwQ7r7MuheXtLMHjOxDJv+nPguRhDw/Q=
Subject key identifier: 67:CC:F9:96:ED:60:2D:F6:9E:D2:89:E9:CF:52:88:E0:46:49:B4:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D15A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDC26CF05EB911F1B4F279E6CE1D38B0.roa
Signing time: Tue 02 Jun 2026 19:33:28 +0000
ROA not before: Tue 02 Jun 2026 19:33:23 +0000
ROA not after: Tue 07 Jul 2026 19:33:23 +0000
asID: 59711
IP address blocks: 154.84.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 00:07:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119130 (0x1d15a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 2 19:33:23 2026 GMT
Not After : Jul 7 19:33:23 2026 GMT
Subject: CN=6a1f3008-2c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:1e:26:dc:9e:58:b5:83:43:d0:54:ce:ad:
f5:11:9e:42:ef:72:a9:61:ef:de:f2:c6:74:fb:dc:
eb:7c:50:6f:3e:3c:b2:dd:b1:62:13:18:7d:57:1c:
cb:40:3c:7b:46:a4:d7:32:27:4a:e1:ca:d6:25:78:
6a:3f:b0:72:4b:b4:d5:48:f9:91:41:df:49:5a:18:
42:7b:bf:19:96:38:27:d8:13:66:1e:1a:de:94:bc:
d5:d8:28:63:80:7e:99:55:4f:7b:c2:59:05:31:d6:
74:21:22:bf:f2:32:e5:8d:76:5d:ee:5e:4f:ba:4f:
45:49:86:a1:ce:e5:68:3f:ec:2c:b3:16:6e:ff:fa:
03:3b:ff:84:8c:d2:7f:d2:29:a1:1f:fe:84:c0:01:
d6:91:35:a1:01:df:15:61:47:48:b6:46:4b:fc:93:
d0:13:8c:7d:98:4a:ef:5c:be:55:75:8c:0f:9d:86:
00:ff:44:70:b1:f1:47:7c:f8:97:3b:c9:63:cc:d3:
aa:1f:ae:15:f2:3f:c8:71:c0:bc:3f:91:f1:bd:2f:
2d:7e:9d:db:7f:a5:a8:9a:ea:16:5e:af:55:84:39:
66:50:d4:d6:67:4b:d2:93:72:e0:eb:fb:01:2c:bd:
22:8b:55:d7:40:77:bd:c9:d8:1b:a5:9c:f4:29:a8:
17:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:CC:F9:96:ED:60:2D:F6:9E:D2:89:E9:CF:52:88:E0:46:49:B4:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDC26CF05EB911F1B4F279E6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.170.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0d:16:58:2f:7f:61:c7:5e:2e:a2:ad:22:78:93:3f:9b:d2:
90:a5:aa:33:78:06:0d:6f:d4:47:f7:52:21:54:32:19:d5:48:
17:ae:64:87:9a:ca:e7:1a:1f:94:14:7a:d3:e0:41:3c:14:51:
6f:d6:92:89:95:23:23:a1:70:5d:22:97:e5:67:c2:be:51:37:
3e:75:0f:80:01:5e:c4:a0:ec:f9:be:21:18:ff:7f:e7:99:58:
0a:c2:19:3b:68:67:61:fe:c7:f2:07:5f:51:32:aa:50:1b:50:
f1:83:f3:fa:63:86:76:e3:05:fd:0e:5e:57:fa:a1:6e:23:5c:
44:0b:dc:2c:15:9b:28:f9:eb:b1:e3:21:72:ce:18:a7:82:10:
36:4b:85:c5:e3:1a:f2:87:9b:c1:c1:e3:79:01:e2:ae:dd:86:
ac:4e:82:d4:e7:fd:fb:20:b6:ca:c8:9f:0e:55:9a:80:cb:9f:
99:a7:ed:d6:6e:a2:ae:68:ca:3a:31:1e:33:1d:75:93:4c:9d:
97:f0:14:aa:00:98:0d:38:fc:da:55:d4:6a:1c:0f:11:24:db:
fe:6d:b4:f4:5f:4d:7f:8b:77:f4:60:6b:db:ea:5b:c6:5b:49:
2e:03:f8:2c:40:68:29:a9:b8:c9:81:d4:71:0b:12:81:11:75:
e1:74:57:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 16:45:10 2026 by rpki-client