Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3DBA0A225BC911F1ACB44103CF1D38B0.roa
File: 3DBA0A225BC911F1ACB44103CF1D38B0.roa (raw, json)
Hash identifier: FnfIbyWSxoC8/8dcYbTZEHyaDE72U6CcEIyxTo/8lgo=
Subject key identifier: 9D:56:55:73:A6:7A:54:4E:24:F9:58:B9:0F:11:80:71:87:86:F2:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D0CA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3DBA0A225BC911F1ACB44103CF1D38B0.roa
Signing time: Sat 30 May 2026 01:45:31 +0000
ROA not before: Sat 30 May 2026 01:45:26 +0000
ROA not after: Wed 01 Jul 2026 01:45:26 +0000
asID: 62240
IP address blocks: 154.194.33.0/24 maxlen: 24
154.195.158.0/24 maxlen: 24
154.196.54.0/24 maxlen: 24
154.196.55.0/24 maxlen: 24
154.196.56.0/24 maxlen: 24
154.196.57.0/24 maxlen: 24
154.196.58.0/24 maxlen: 24
154.196.59.0/24 maxlen: 24
154.196.60.0/24 maxlen: 24
154.196.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118986 (0x1d0ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 01:45:26 2026 GMT
Not After : Jul 1 01:45:26 2026 GMT
Subject: CN=6a1a413b-3482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2a:43:bf:b4:9c:f6:42:24:d8:13:cb:f7:49:
ff:1c:2f:68:9f:5f:33:83:4c:74:90:26:0d:f7:02:
ec:79:a1:2e:d7:40:7d:a2:74:d6:98:eb:6a:96:67:
39:ad:52:f8:99:3c:43:eb:26:00:6b:61:85:03:1d:
3a:03:12:ae:21:e7:cc:64:4f:0f:f2:d0:fa:e6:d4:
89:db:2b:35:e9:58:31:0e:c4:e5:eb:e6:dc:4c:a2:
dc:20:23:1f:e2:e2:c9:49:bc:29:6e:43:04:36:d9:
ab:69:71:68:ba:f5:02:3b:65:33:b6:1c:ba:e9:0b:
05:50:99:d2:29:0e:df:ea:b2:a0:df:33:f1:d7:fe:
d8:7b:c5:7a:1f:dd:eb:36:ec:21:bb:eb:e0:93:20:
bf:c7:4f:1d:be:f0:6c:9f:d2:80:0d:1d:9d:fd:41:
a4:cc:9b:82:e3:92:ad:eb:45:8f:f1:9f:03:00:b2:
00:38:01:be:6e:a3:94:fd:da:c6:bf:f1:8b:24:bc:
38:8d:f5:17:3c:d6:53:a1:71:73:ec:38:ce:34:f7:
8b:69:09:b0:18:71:b7:c6:e0:25:6c:04:a8:b1:5a:
fb:db:41:b8:58:29:07:02:75:69:b0:4a:11:c8:a3:
0b:7f:f6:a7:a7:fc:a1:17:81:b4:69:3e:bd:88:17:
b9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:56:55:73:A6:7A:54:4E:24:F9:58:B9:0F:11:80:71:87:86:F2:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3DBA0A225BC911F1ACB44103CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.33.0/24
154.195.158.0/24
154.196.54.0-154.196.61.255
Signature Algorithm: sha256WithRSAEncryption
06:b0:b6:0c:25:a6:00:76:99:ef:67:bc:23:1a:86:bb:f8:45:
14:61:46:53:90:7c:2f:c6:aa:a2:2d:e5:7f:fc:b0:17:da:80:
0e:d3:b4:e2:a1:95:37:45:89:c6:f7:1e:21:cb:e2:49:ee:9f:
c6:b2:f3:0f:0d:d7:11:d0:a8:86:5b:37:c3:a6:fa:1b:b4:67:
9c:60:44:de:d3:c5:57:8d:bf:0f:9a:54:92:59:1a:51:23:be:
55:fb:a3:cf:70:6c:05:af:df:b2:e0:57:c3:d8:16:14:55:5d:
51:73:b0:15:a9:aa:7f:31:c9:96:bf:30:14:c3:ae:43:cd:5d:
7f:21:2f:35:93:07:f8:d4:8a:40:0e:c3:3f:43:26:e3:21:05:
27:35:8e:fb:e4:12:31:a7:21:1c:c5:20:33:31:d7:d3:db:b4:
86:99:1e:bd:8a:e3:0b:b3:f5:b7:69:de:38:8c:68:9a:35:14:
1a:f1:37:78:61:8e:16:c8:ec:49:9d:2f:34:1a:66:6f:0f:c2:
26:80:3a:44:ec:3b:3e:9b:ed:ab:d3:d4:9b:37:db:76:91:29:
fe:2f:98:0c:42:c9:b8:d2:9f:63:96:01:d0:7b:d8:18:87:dd:
8a:19:7f:06:42:ac:24:eb:1b:47:de:a1:1c:f0:03:fb:e2:84:
07:d7:8e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:57:15 2026 by rpki-client