Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B21175A5DBD11F1808437EFCE1D38B0.roa
File: 4B21175A5DBD11F1808437EFCE1D38B0.roa (raw, json)
Hash identifier: 8ZW2RmUMSERzoELifLaQ+mEDQu+g7TUhYKkC0tZP670=
Subject key identifier: 6B:61:62:47:F0:E5:81:23:D1:EB:72:EB:DA:8A:92:63:EF:4D:06:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D12E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B21175A5DBD11F1808437EFCE1D38B0.roa
Signing time: Mon 01 Jun 2026 13:25:02 +0000
ROA not before: Mon 01 Jun 2026 13:24:57 +0000
ROA not after: Mon 06 Jul 2026 13:24:57 +0000
asID: 271956
IP address blocks: 154.88.190.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119086 (0x1d12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 13:24:57 2026 GMT
Not After : Jul 6 13:24:57 2026 GMT
Subject: CN=6a1d882e-f09e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9a:ed:44:95:61:d4:ae:d1:78:21:ec:1a:22:
c3:2b:c2:16:92:da:8d:bd:4c:b9:7b:bb:ad:e1:0d:
11:59:4b:58:cc:85:4a:f1:5f:70:00:ed:66:1e:45:
db:73:fa:4c:dc:2f:ea:ba:74:ba:be:7d:0b:c8:c6:
cf:10:f3:e1:2d:c8:cf:a2:c8:09:75:03:65:9d:1e:
9d:2a:9f:e0:8c:9e:f1:21:4a:f6:6b:b3:1f:44:32:
dc:9a:09:f7:a2:5f:bc:76:55:02:d0:db:84:b6:d3:
21:79:96:a2:f9:84:58:e1:8c:3a:f0:77:2c:90:75:
f6:52:d9:e4:eb:9c:9c:1e:45:03:43:1f:c4:aa:61:
5c:ed:3c:74:eb:ff:88:6b:8f:4c:8a:5c:16:06:48:
e9:34:b6:7c:25:89:57:8c:a8:3a:da:b2:35:a2:21:
cf:db:65:dd:65:88:68:10:eb:23:80:f3:1d:4e:df:
a5:f8:dd:ec:b7:df:d5:ce:7a:97:7e:ad:c5:03:8b:
ab:f5:2d:2e:ee:c1:fd:d9:33:b8:8d:b8:d5:65:ce:
65:7c:a0:24:fa:63:54:1b:60:0c:fe:86:c2:4d:91:
28:b6:c2:6a:e0:be:5b:61:65:13:2d:ca:94:a4:a9:
7f:d5:8f:6b:c8:fa:0f:1e:57:dd:d6:80:7a:fe:cb:
70:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:61:62:47:F0:E5:81:23:D1:EB:72:EB:DA:8A:92:63:EF:4D:06:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B21175A5DBD11F1808437EFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.190.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:ee:5c:fa:51:9b:3b:95:c8:f5:0a:a6:47:74:45:72:c0:cd:
0c:6b:c8:84:db:51:12:ca:81:15:73:f2:35:ee:aa:bc:9c:70:
65:2c:38:3b:cc:72:6a:50:a2:92:c3:d6:cc:5a:60:2c:cf:e2:
b9:9d:3c:ec:57:00:ff:e7:7e:a2:ba:fd:03:26:ef:f5:e8:ad:
ac:91:d4:34:c5:14:c0:84:e1:d2:45:30:53:dd:86:ad:1e:7d:
98:75:e2:a7:b0:4a:e6:2a:d5:fe:b5:37:ba:f0:66:09:42:9c:
ad:e5:a8:c8:95:84:41:8b:64:98:28:cb:57:c0:45:51:d2:64:
b0:88:2d:e1:6d:60:6d:0e:d7:c3:01:41:d7:ab:2f:62:19:63:
2c:fa:cb:8b:2f:de:22:4c:fa:e4:5f:f0:17:13:38:07:56:6d:
2b:f5:d3:05:f1:85:c6:9b:e6:ef:a5:a7:cd:e1:e7:34:58:11:
58:fd:ad:3f:b2:2a:80:da:53:20:02:8a:e3:25:7c:0a:c7:02:
b8:0d:7a:18:d1:a1:0a:f4:cb:f4:17:ca:d0:0d:77:8d:84:ee:
e5:ed:d6:76:6d:f0:26:8b:26:45:bc:67:5c:74:43:e8:7d:68:
e3:26:f9:c2:b4:15:e8:bf:05:89:90:4e:c6:3a:55:7a:68:b7:
9a:7b:8c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:06:42 2026 by rpki-client