Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C01A78C633711F1A43B3DBCCE1D38B0.roa
File: 4C01A78C633711F1A43B3DBCCE1D38B0.roa (raw, json)
Hash identifier: uk9mqip9bjrmGavO7b7oNxzahW23CbnxnHyyjrWUdC0=
Subject key identifier: 7F:95:B7:76:3A:6D:4A:C1:C7:A4:15:01:1C:3B:0F:DA:65:53:9F:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D242
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C01A78C633711F1A43B3DBCCE1D38B0.roa
Signing time: Mon 08 Jun 2026 12:40:58 +0000
ROA not before: Mon 08 Jun 2026 12:40:53 +0000
ROA not after: Thu 08 Jul 2027 12:40:53 +0000
asID: 328608
IP address blocks: 154.88.2.0/24 maxlen: 24
154.88.10.0/24 maxlen: 24
154.88.11.0/24 maxlen: 24
154.88.18.0/24 maxlen: 24
154.88.19.0/24 maxlen: 24
154.88.41.0/24 maxlen: 24
154.198.56.0/24 maxlen: 24
154.198.57.0/24 maxlen: 24
154.198.59.0/24 maxlen: 24
154.198.61.0/24 maxlen: 24
154.198.62.0/24 maxlen: 24
154.198.165.0/24 maxlen: 24
154.198.166.0/24 maxlen: 24
154.198.167.0/24 maxlen: 24
154.198.174.0/24 maxlen: 24
154.200.207.0/24 maxlen: 24
154.200.208.0/24 maxlen: 24
154.200.209.0/24 maxlen: 24
154.200.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119362 (0x1d242)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 8 12:40:53 2026 GMT
Not After : Jul 8 12:40:53 2027 GMT
Subject: CN=6a26b85a-fa2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:52:a9:38:02:e2:d1:ec:34:62:5d:e6:4a:5e:
50:2f:8e:12:1d:58:98:2f:4f:ac:16:a8:b0:aa:ff:
22:44:bb:2a:f4:07:72:04:0f:5c:b5:d0:19:6a:c2:
97:7d:76:93:88:da:ae:d3:06:0e:01:e5:93:e9:dc:
96:80:5a:2d:5b:20:69:ac:50:28:36:80:5c:ac:0f:
da:1a:bf:39:1d:fb:1f:61:bf:7c:c0:e8:86:a6:a5:
d2:b8:f0:5b:36:52:fd:a1:40:2e:87:9c:b3:af:85:
c0:82:b4:d7:fa:d5:ce:f9:30:37:93:9b:a8:ff:0e:
ba:9c:af:06:ea:dd:21:e3:71:cb:7d:df:00:a7:ae:
a8:42:1e:1e:93:cc:89:63:9b:f1:25:e9:c1:8a:05:
b0:93:d4:4c:fc:b9:33:93:b0:77:ea:89:ab:42:4a:
d8:37:e1:37:a2:87:cd:ca:4c:ec:8f:31:b6:e7:b7:
7c:02:82:8d:87:2e:2e:52:e9:50:06:32:e6:8a:59:
b0:9b:ba:f5:ff:e0:bc:fb:e6:c6:db:f7:7f:2e:04:
7c:1d:7c:11:e9:3d:c0:09:73:fa:39:8e:d5:82:1c:
f2:43:e3:6d:4e:77:f1:20:01:60:8f:6a:cf:75:60:
3a:a0:7e:70:33:8a:86:4a:ed:a6:12:0c:81:f1:6a:
b8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:95:B7:76:3A:6D:4A:C1:C7:A4:15:01:1C:3B:0F:DA:65:53:9F:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C01A78C633711F1A43B3DBCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.2.0/24
154.88.10.0/23
154.88.18.0/23
154.88.41.0/24
154.198.56.0/23
154.198.59.0/24
154.198.61.0-154.198.62.255
154.198.165.0-154.198.167.255
154.198.174.0/24
154.200.207.0-154.200.210.255
Signature Algorithm: sha256WithRSAEncryption
6f:87:b6:cf:f1:b7:f0:8a:46:58:a8:d4:23:f5:b9:e3:2d:9e:
26:8b:c2:c0:37:ce:a5:50:c5:63:cc:42:e0:47:16:fe:d4:3c:
46:56:91:66:50:0f:bb:f4:9b:bc:c4:a5:a6:ea:dc:ff:49:d9:
b4:a3:b9:18:dd:e7:64:83:53:1f:de:0f:35:f1:ca:f0:2c:f7:
2e:d9:f6:59:61:b5:08:18:5e:61:e8:68:c1:11:e5:32:3e:7e:
44:b5:35:ec:94:f9:08:d4:5b:af:be:dc:a2:11:0f:5e:0a:f9:
e6:69:c3:10:eb:31:95:07:e2:ff:c7:a5:56:3d:c1:72:ff:a4:
f3:93:62:77:e2:9d:f4:e5:0c:0d:ed:df:8a:59:0c:60:ea:fd:
79:90:14:8a:f8:5d:31:cb:18:30:fa:cb:6e:f8:52:0b:d3:41:
a5:11:25:88:79:01:cb:b8:9a:b9:e8:9a:4b:bc:41:02:d2:93:
64:52:88:a2:f8:44:73:68:c7:cd:11:4f:db:b6:2f:42:86:b5:
82:f3:24:b6:72:9c:43:1c:1c:fc:6a:73:d9:79:02:31:1b:f7:
dd:ea:c5:9d:51:16:aa:14:fc:eb:ed:d3:43:78:6d:0e:7c:b9:
52:19:7b:cf:f6:c5:43:cf:de:f7:86:26:d8:6a:6c:51:15:0b:
96:fd:eb:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:19 2026 by rpki-client