Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BF74D2A59B111F1995F4DD9CE1D38B0.roa
File: 0BF74D2A59B111F1995F4DD9CE1D38B0.roa (raw, json)
Hash identifier: ap+p/e2QPVEqvI1dt4V+AI+wZVs/kmbEFcHGTMqMQQE=
Subject key identifier: 83:B5:87:DF:39:21:C9:A8:CB:C2:F9:9B:2C:A7:FC:D2:27:C7:37:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CFFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BF74D2A59B111F1995F4DD9CE1D38B0.roa
Signing time: Wed 27 May 2026 09:47:17 +0000
ROA not before: Wed 27 May 2026 09:47:12 +0000
ROA not after: Fri 04 Sep 2026 09:47:12 +0000
asID: 18229
IP address blocks: 154.210.185.0/24 maxlen: 24
154.210.186.0/24 maxlen: 24
154.210.187.0/24 maxlen: 24
154.210.188.0/24 maxlen: 24
154.210.189.0/24 maxlen: 24
154.210.190.0/24 maxlen: 24
154.210.191.0/24 maxlen: 24
154.210.192.0/24 maxlen: 24
154.210.193.0/24 maxlen: 24
154.210.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118783 (0x1cfff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 09:47:12 2026 GMT
Not After : Sep 4 09:47:12 2026 GMT
Subject: CN=6a16bda5-0e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:02:d1:bc:55:20:67:11:fb:1f:80:fd:86:99:
e9:4b:ab:ca:2a:ae:85:58:f2:0f:38:12:0a:f8:c5:
67:3b:31:a6:57:20:77:e5:97:f9:3c:a5:a6:c9:de:
df:e3:56:c3:d1:81:f0:22:f6:58:ae:0f:2c:fe:94:
c8:a2:a0:7a:bf:8c:99:9c:f8:df:4b:3a:89:ad:82:
5d:40:da:b3:fd:9d:cb:1c:6f:ff:1d:66:22:d9:3d:
7f:b0:78:17:d9:d7:bc:88:c3:1c:8e:d4:87:9f:02:
58:45:78:70:af:fe:34:65:16:c5:e2:1a:5a:0d:73:
6f:a4:39:d6:10:98:f3:00:7e:ca:fa:9d:ec:33:74:
ea:a7:6f:b9:55:41:0c:99:26:ca:b5:31:21:2a:b3:
87:a7:45:1c:a2:bf:0c:22:42:25:29:dc:74:95:63:
7f:1c:b9:68:32:93:47:1c:95:92:7a:a4:e3:cc:fb:
2a:5a:f0:cf:21:83:1d:c6:2d:65:00:9b:49:37:c9:
0c:cc:e7:7e:d1:ac:78:9b:e9:09:49:d6:d4:36:f7:
d3:29:3f:cd:39:49:cb:4f:45:8a:7c:2d:1d:d3:63:
b1:a7:cd:f1:84:ef:c6:94:3d:75:17:1c:d7:4d:76:
02:fe:c9:12:a4:fc:81:34:69:59:bd:c2:d1:be:90:
88:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B5:87:DF:39:21:C9:A8:CB:C2:F9:9B:2C:A7:FC:D2:27:C7:37:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BF74D2A59B111F1995F4DD9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.185.0-154.210.194.255
Signature Algorithm: sha256WithRSAEncryption
44:a6:a2:a0:87:ec:f7:aa:31:87:d7:20:84:8a:5d:99:4a:4d:
32:3e:08:ff:e9:7a:66:ca:1b:20:cc:8f:99:af:c0:87:e3:59:
8e:d6:2e:96:b3:32:58:2e:07:85:9d:d9:7a:03:4f:04:d6:f5:
f6:1f:f7:0f:d0:5d:0e:10:4a:10:dc:71:ff:86:76:4c:70:fc:
72:e4:b5:fc:fc:ca:4c:36:84:56:41:5f:cc:f4:ff:f9:00:63:
f5:13:ae:65:2e:0a:dc:55:f6:94:45:fc:3d:8e:73:5d:bc:76:
f9:b8:f8:93:b8:48:de:82:2c:74:20:12:03:e5:2a:b3:23:a1:
28:8e:00:45:e7:34:36:43:df:c1:2e:42:46:ae:73:f3:75:fd:
9d:3b:ae:32:a2:76:62:5b:07:5f:47:e2:8e:f1:7f:26:cb:3c:
eb:b5:10:b7:ae:87:3a:33:da:76:f2:95:c0:ea:50:42:fc:fb:
27:c4:de:84:97:a6:cd:12:c5:36:fc:41:8c:de:97:59:fc:f6:
49:a7:95:c8:d0:2f:af:4a:f7:d9:96:33:c9:1e:d2:ae:f0:8b:
c8:13:13:a6:85:9c:d6:cd:9e:2a:e0:26:cb:75:7f:8b:62:85:
a7:12:ba:be:ef:2d:93:07:b8:49:63:f4:a3:ac:68:1a:2b:54:
f6:31:01:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:44:58 2026 by rpki-client