Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4725E9CC59D111F18C1B1F18CF1D38B0.roa
File: 4725E9CC59D111F18C1B1F18CF1D38B0.roa (raw, json)
Hash identifier: OLTpUFfj5x+C+tjTuIbWwaMS51enMnZMDY3ABga0l+E=
Subject key identifier: E4:AD:CB:D4:87:08:C1:42:32:EC:1A:0D:D6:15:63:41:CB:0B:C8:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D00B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4725E9CC59D111F18C1B1F18CF1D38B0.roa
Signing time: Wed 27 May 2026 13:38:00 +0000
ROA not before: Wed 27 May 2026 13:37:56 +0000
ROA not after: Fri 04 Sep 2026 13:37:56 +0000
asID: 46071
IP address blocks: 154.209.6.0/24 maxlen: 24
154.209.7.0/24 maxlen: 24
154.210.178.0/24 maxlen: 24
154.210.179.0/24 maxlen: 24
154.210.180.0/24 maxlen: 24
154.210.203.0/24 maxlen: 24
154.210.204.0/24 maxlen: 24
154.210.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118795 (0x1d00b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 13:37:56 2026 GMT
Not After : Sep 4 13:37:56 2026 GMT
Subject: CN=6a16f3b8-2330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:66:4b:34:88:b9:f4:07:d1:54:07:17:af:81:
b8:8a:dc:bc:47:f6:bd:41:50:44:73:f2:c7:ae:03:
7e:a9:15:47:81:a4:dd:16:5f:c5:de:5f:ab:b2:8d:
54:1a:4e:a2:71:11:cb:32:45:bd:71:f0:ee:10:7a:
fb:1e:9f:91:9f:a8:ec:38:cd:e0:0f:30:9e:30:75:
4b:e0:85:39:bd:91:c8:aa:80:1d:3f:b4:38:e9:57:
14:cf:79:e2:c6:9d:3a:19:f9:52:9e:05:a1:f6:f5:
ae:ff:0e:4e:43:d7:ca:1c:b5:6e:49:dc:97:27:1a:
50:24:c2:89:58:94:c6:2e:a9:43:e5:69:60:b9:fe:
73:4b:f0:49:01:87:e2:1b:af:3b:3e:ee:61:07:49:
c2:9b:e1:dc:c7:ea:1d:e5:e8:8a:3b:a8:db:56:6b:
9f:b7:dc:8b:5f:30:97:2d:d9:5b:84:2f:85:46:37:
61:44:39:98:0e:f9:80:92:b3:cb:6e:5e:54:4b:a2:
6e:79:a2:d0:de:92:5f:88:a5:de:0c:2e:76:5b:09:
da:ec:72:48:92:2c:19:fa:f1:f3:3c:5c:0d:9f:40:
3e:ee:df:82:dd:78:81:b4:8c:65:f3:89:e3:a6:48:
d8:a1:3f:25:a8:fc:f5:5f:a3:da:13:09:cd:bf:62:
7a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:AD:CB:D4:87:08:C1:42:32:EC:1A:0D:D6:15:63:41:CB:0B:C8:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4725E9CC59D111F18C1B1F18CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.6.0/23
154.210.178.0-154.210.180.255
154.210.203.0-154.210.204.255
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
16:9b:47:c9:4d:12:aa:47:fb:60:b4:56:b3:93:21:f6:4a:bf:
5a:4d:ed:56:30:83:69:9d:d9:de:1b:87:20:3d:a0:3d:2c:49:
2d:b3:f8:bb:79:fb:35:27:e6:b7:a1:bb:94:a7:a2:bb:b7:fd:
d8:5b:56:4f:cd:76:28:77:8c:f1:a6:3d:43:9e:aa:43:2b:ce:
b9:f6:cb:91:23:a5:b2:7f:55:01:b3:5c:21:0b:09:33:ee:4d:
25:e4:03:f0:48:b7:94:a8:e2:7b:70:0c:53:76:ce:58:01:0e:
30:6c:ed:c8:81:40:72:00:9f:d0:e0:b8:90:38:06:05:ae:44:
80:d9:b4:87:c1:a6:2e:bb:0f:1a:46:61:dc:50:3a:0b:f4:82:
6b:bf:5a:da:f1:d4:a6:34:04:e3:ad:01:d9:e7:27:54:dd:cd:
e2:fe:2a:ea:13:e8:09:5b:da:c0:9b:25:a2:ea:6e:22:a9:11:
98:89:80:3f:14:44:b8:e2:87:5d:8d:56:e2:85:e7:42:c9:c0:
ac:df:aa:44:b7:8b:0a:44:20:15:ca:e5:0a:0b:02:bd:60:b3:
5f:57:d0:23:d0:b5:98:80:60:a0:06:ad:19:64:13:83:ff:af:
d0:c0:ea:a0:be:84:eb:16:3e:95:9a:49:5f:44:31:f7:0b:10:
99:3f:5e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:33:04 2026 by rpki-client