Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF25E50C546511F19FE07B0CCF1D38B0.roa
File: FF25E50C546511F19FE07B0CCF1D38B0.roa (raw, json)
Hash identifier: YIZRHCP96IwB+mcHrcwK8488AZRXBVsufZ2blLdXXZc=
Subject key identifier: A3:2D:23:47:49:24:99:97:1F:C8:40:6C:2E:26:9A:81:A9:63:F4:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CCFE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF25E50C546511F19FE07B0CCF1D38B0.roa
Signing time: Wed 20 May 2026 16:07:28 +0000
ROA not before: Wed 20 May 2026 16:07:23 +0000
ROA not after: Fri 26 Jun 2026 16:07:23 +0000
asID: 138915
IP address blocks: 154.206.60.0/23 maxlen: 24
154.206.62.0/23 maxlen: 24
154.206.72.0/24 maxlen: 24
154.206.73.0/24 maxlen: 24
154.206.80.0/23 maxlen: 24
154.206.82.0/23 maxlen: 24
154.206.84.0/23 maxlen: 24
154.206.86.0/23 maxlen: 24
154.206.88.0/23 maxlen: 24
154.206.90.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118014 (0x1ccfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 16:07:23 2026 GMT
Not After : Jun 26 16:07:23 2026 GMT
Subject: CN=6a0ddc40-816d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dd:b5:d7:84:07:03:a6:51:52:18:e5:5b:b1:
54:75:d3:64:98:43:fa:df:66:25:bb:b9:91:15:19:
20:1c:38:f2:f3:1a:51:b5:06:70:6e:63:f3:a8:4e:
00:02:50:7e:3b:f0:79:ec:60:98:aa:04:10:46:04:
cb:19:37:91:50:74:9d:63:45:c2:1b:1b:6e:2b:d5:
6e:13:cb:b5:07:6d:dc:17:99:3b:3d:4d:b4:6c:68:
70:72:1a:81:c8:69:71:9f:b4:36:5a:86:50:08:3e:
82:ed:5f:bc:27:ed:69:9e:7c:8f:7a:7e:5c:63:01:
32:1a:1f:9a:b7:cc:76:d7:9b:69:dc:3f:da:43:08:
a3:0a:95:c9:5a:b3:5f:f8:f4:f4:0a:6f:b0:18:b3:
5a:af:88:65:ee:55:ca:9f:f6:a9:87:0b:96:c2:67:
79:3b:b2:63:7f:76:2e:75:b0:9a:19:f8:cd:2d:8a:
db:03:78:00:02:9b:e4:67:3d:04:ae:7a:c7:6d:8c:
22:05:8c:0f:c5:ef:56:53:e9:90:1d:90:55:05:f8:
1c:e6:19:f4:db:d4:a5:cd:d0:a8:5c:18:31:6b:e8:
79:79:0d:1f:bc:cf:1a:29:97:fa:0a:f9:e2:c4:d7:
c2:2e:9d:69:88:0f:73:b9:10:15:b7:31:53:21:8a:
a0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2D:23:47:49:24:99:97:1F:C8:40:6C:2E:26:9A:81:A9:63:F4:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF25E50C546511F19FE07B0CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.60.0/22
154.206.72.0/23
154.206.80.0-154.206.91.255
Signature Algorithm: sha256WithRSAEncryption
62:e6:27:df:28:6c:45:49:44:03:6b:74:99:a0:58:5e:32:d8:
a8:6c:c8:1c:fb:9c:dc:7f:32:4a:6e:dd:4a:d4:5b:84:62:c1:
ff:fa:3e:5e:42:67:4c:04:40:3d:fb:31:2a:a6:8f:77:58:49:
f3:5f:6e:94:26:6f:35:ab:cf:7b:71:cf:b2:3c:8a:df:74:e5:
db:1d:ed:7e:e3:14:6e:4f:61:66:bf:38:3d:2e:84:11:6f:70:
e4:9e:2f:56:cd:29:9b:f8:5d:12:6b:00:76:6c:75:d8:57:8f:
6d:9a:31:ba:9a:92:86:7b:32:ec:1c:03:47:2f:f3:9a:c0:ed:
03:52:2c:c8:0d:6b:f0:da:be:f6:a1:ff:3f:b2:0d:cf:6c:66:
c4:4b:c8:04:3a:a6:88:2d:1a:5e:c1:7d:61:20:51:c3:9a:ff:
7b:3d:e2:48:e7:b7:5e:33:13:65:77:02:99:ba:a6:3e:57:2e:
d7:67:12:ba:89:12:15:da:77:d8:d1:35:ba:1b:f6:67:be:10:
41:47:35:ea:53:4b:34:ce:ce:d3:16:5b:a5:d0:2b:35:9e:3b:
39:c9:70:a6:d0:64:da:45:32:d4:a3:d9:f3:d4:3e:e8:b6:a0:
4f:58:fe:39:3f:44:c8:93:bc:53:81:7c:f2:f7:34:fd:57:b2:
63:f2:54:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:12:41 2026 by rpki-client