Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBE692C2551111F199172AB2CE1D38B0.roa
File: FBE692C2551111F199172AB2CE1D38B0.roa (raw, json)
Hash identifier: Uu2zlNDN3EyZvFxFBLD2F5NwRdbiix9Pjg0No/jyDHQ=
Subject key identifier: 66:AD:B3:2B:1A:C8:D9:C2:3F:2C:3E:C0:34:EB:6D:79:31:F7:D9:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBE692C2551111F199172AB2CE1D38B0.roa
Signing time: Thu 21 May 2026 12:38:36 +0000
ROA not before: Thu 21 May 2026 12:38:31 +0000
ROA not after: Wed 19 Aug 2026 12:38:31 +0000
asID: 402169
IP address blocks: 154.91.48.0/20 maxlen: 24
154.91.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118106 (0x1cd5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 12:38:31 2026 GMT
Not After : Aug 19 12:38:31 2026 GMT
Subject: CN=6a0efccc-4f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:36:18:36:78:80:ff:ee:09:b6:3e:2e:4e:3b:
19:b9:cb:5a:dd:3a:e2:40:21:53:9d:bf:e7:8b:a4:
52:d5:7e:4f:f6:67:27:6e:a6:b7:6a:bd:c8:7d:9d:
c0:ad:80:62:3a:94:9e:cf:c7:b5:e6:56:fe:ba:ef:
9b:96:50:a8:7a:cd:0e:13:ea:ff:94:79:19:d2:bb:
76:dc:04:41:a4:aa:30:83:07:e5:8e:67:47:ed:cb:
e7:40:45:73:cc:cd:ff:8f:ad:7a:30:9c:12:a6:f4:
17:63:bf:6d:01:3d:40:8c:01:0b:b3:1d:a8:2d:15:
a2:b7:e0:68:36:35:76:56:0c:03:ac:cf:00:bd:80:
26:ed:09:e5:b3:3e:7d:8b:0d:09:9f:c7:5b:f2:7d:
d5:76:f4:b0:1a:3e:ac:31:c7:43:d8:b1:d3:d0:66:
0f:fb:75:0c:2d:e6:6f:ec:a4:be:ed:bf:38:0f:9b:
d4:d0:2f:6f:7d:ca:05:d4:93:5a:47:7e:62:fa:c6:
16:a3:f2:74:8a:4c:22:65:82:5a:a6:bc:c3:69:83:
2f:30:ae:8d:36:cb:c5:7c:59:62:3b:df:3c:fa:c8:
e9:d9:c4:ff:d4:c2:70:47:3f:45:d5:71:96:b0:e6:
b0:cf:24:4c:b7:27:34:2a:3c:66:60:78:aa:9e:76:
4e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AD:B3:2B:1A:C8:D9:C2:3F:2C:3E:C0:34:EB:6D:79:31:F7:D9:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBE692C2551111F199172AB2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.48.0/20
Signature Algorithm: sha256WithRSAEncryption
0c:de:da:98:6f:3d:02:c2:3c:ce:32:10:b3:ad:4d:09:f5:38:
f1:93:67:3a:18:a0:68:c0:55:b0:ae:3e:b0:e9:a5:f7:c7:80:
d5:d1:d1:57:d9:e4:e8:4b:cb:d9:b8:ae:6d:19:71:79:c2:f9:
9e:25:38:f0:37:dd:08:ef:26:99:0e:c5:55:91:aa:a3:ce:d2:
fa:f2:24:de:0d:5b:97:ad:34:d6:7b:dd:42:03:d4:9c:a6:4d:
b8:69:8b:3b:6e:ba:25:be:72:9d:3a:eb:3c:56:56:ce:c7:c5:
30:13:90:d1:8c:5d:06:b6:6d:0a:1b:81:0f:8e:c1:d3:90:b2:
c5:20:9e:02:92:d3:10:8c:cf:1d:a1:a0:3c:25:26:e0:4d:9a:
e8:57:ce:34:cb:ee:f0:a8:66:c4:62:73:c7:27:ed:2e:20:ea:
bc:c9:bc:ab:2a:ed:10:53:9c:d5:84:ef:ea:a8:ae:8c:d3:5c:
ac:d7:44:ac:69:e7:96:f0:bf:63:29:5a:3e:4d:ac:ec:1a:ee:
a4:0c:ab:cc:cd:38:ee:88:0b:84:9c:25:91:cd:67:d6:89:25:
91:79:e2:35:f4:05:ae:11:9a:e1:3b:b8:1d:0d:d1:49:6b:24:
aa:07:c9:19:ee:02:31:39:49:f6:b6:6a:6e:7f:4c:c5:9e:71:
6b:c9:6b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:28 2026 by rpki-client