Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEEE53A0551811F18131F7DACE1D38B0.roa
File: EEEE53A0551811F18131F7DACE1D38B0.roa (raw, json)
Hash identifier: +e8exfw0XIUPK0YVaObtmhqh2vHPbLh2E2BYPIg8Qh8=
Subject key identifier: 6C:C2:36:06:34:03:7F:FD:67:35:81:09:EE:BC:40:07:58:2A:A7:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD73
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEEE53A0551811F18131F7DACE1D38B0.roa
Signing time: Thu 21 May 2026 13:28:20 +0000
ROA not before: Thu 21 May 2026 13:28:16 +0000
ROA not after: Fri 26 Jun 2026 13:28:16 +0000
asID: 63139
IP address blocks: 154.194.68.0/24 maxlen: 24
154.203.160.0/24 maxlen: 24
154.203.161.0/24 maxlen: 24
154.203.162.0/24 maxlen: 24
154.203.163.0/24 maxlen: 24
154.203.164.0/24 maxlen: 24
154.203.165.0/24 maxlen: 24
154.203.166.0/24 maxlen: 24
154.203.167.0/24 maxlen: 24
154.203.168.0/24 maxlen: 24
154.203.169.0/24 maxlen: 24
154.203.170.0/24 maxlen: 24
154.203.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118131 (0x1cd73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 13:28:16 2026 GMT
Not After : Jun 26 13:28:16 2026 GMT
Subject: CN=6a0f0874-bd7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4e:de:5a:77:b8:44:64:b7:ac:d3:99:47:7b:
5a:26:f7:bb:ce:c2:ae:c5:ef:45:42:b4:91:67:12:
04:eb:6e:3b:e6:f5:3a:12:49:fe:b3:9f:f9:10:4e:
96:37:5d:8b:97:32:bd:01:65:76:18:ce:7e:49:f3:
e9:e1:27:ca:4c:1e:b0:90:a7:d9:be:2b:8a:9e:42:
89:82:8b:d2:ce:ea:e3:dc:08:c3:48:38:80:c1:2e:
8d:81:53:f6:0e:a1:f4:bc:c2:71:01:df:fe:09:1b:
2c:20:5f:97:28:3c:5a:ca:90:11:8e:24:13:87:35:
e9:c7:79:de:47:19:5e:45:99:70:18:f2:94:0e:a0:
4f:65:ba:27:ed:a8:84:03:4a:6e:bb:6d:66:bc:b7:
f9:ba:54:44:09:a0:4e:d9:92:33:43:e2:e3:a8:b0:
c3:2a:f2:e0:54:57:b4:38:b8:37:4e:a9:c1:b4:96:
da:33:c2:fe:97:45:52:63:aa:13:4a:6b:36:47:7a:
ed:d0:1c:2f:12:6e:15:cb:e1:19:00:e2:ed:1d:c0:
a3:78:d3:3b:46:6c:0a:98:22:ad:15:f4:48:0e:af:
1b:e9:98:83:07:73:f5:68:c7:34:b9:ee:ab:74:02:
96:cc:27:c0:34:bf:cf:e4:d0:cd:55:76:39:66:b0:
7d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C2:36:06:34:03:7F:FD:67:35:81:09:EE:BC:40:07:58:2A:A7:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEEE53A0551811F18131F7DACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.68.0/24
154.203.160.0-154.203.171.255
Signature Algorithm: sha256WithRSAEncryption
d5:53:6c:b5:67:d3:83:44:28:9b:95:df:e0:45:6e:b2:05:49:
41:44:ac:1a:7d:01:10:e9:9a:d2:1d:6d:9c:da:58:f5:43:fc:
0c:e1:45:a4:d0:4f:25:b7:6d:8e:b6:d4:ac:5a:8c:d4:61:9d:
34:0a:6d:6f:bd:87:61:54:2c:7f:75:37:94:ec:8f:2d:fd:9b:
ca:1c:ea:70:f7:60:05:59:37:f6:3e:c8:dd:c7:87:79:8b:93:
99:7d:57:19:30:f4:fb:35:c8:e6:16:42:9a:f6:9f:99:eb:33:
fb:73:8d:6f:dd:a5:b4:d3:00:9e:ca:db:cc:3c:13:d0:8f:17:
3b:95:6c:99:1f:93:d2:a7:c3:6d:ea:72:17:40:16:ba:05:b5:
2f:f0:29:b0:af:8c:42:12:17:7b:64:ca:61:3e:df:03:19:7a:
a8:56:21:35:1d:a6:a1:23:d7:33:79:b7:fa:75:72:99:8d:94:
37:74:9a:73:f0:08:c4:ea:d5:19:e3:11:df:af:26:41:7c:d3:
ac:c6:1c:c0:35:10:10:69:71:fe:77:09:18:ce:cf:17:67:da:
87:4c:64:f9:64:d4:76:6f:30:30:ac:91:e0:96:70:49:6f:c3:
e2:9b:da:8b:37:67:56:7b:cd:b7:01:b8:a3:69:a4:0e:a2:2c:
9e:1f:5f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:35:59 2026 by rpki-client