Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/507763D0633511F1B4C020B0CE1D38B0.roa
File: 507763D0633511F1B4C020B0CE1D38B0.roa (raw, json)
Hash identifier: C4nEndm+US4sfuWjl0f753sU6APIwGFc503l7aeW8uw=
Subject key identifier: D8:28:6F:D5:27:E4:2B:A3:2C:DD:C0:79:F8:45:2F:7C:2D:FA:11:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D23E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/507763D0633511F1B4C020B0CE1D38B0.roa
Signing time: Mon 08 Jun 2026 12:26:46 +0000
ROA not before: Mon 08 Jun 2026 12:26:41 +0000
ROA not after: Thu 08 Jul 2027 12:26:41 +0000
asID: 328608
IP address blocks: 154.81.64.0/24 maxlen: 24
154.81.65.0/24 maxlen: 24
154.81.66.0/24 maxlen: 24
154.81.67.0/24 maxlen: 24
154.81.68.0/24 maxlen: 24
154.81.69.0/24 maxlen: 24
154.81.70.0/24 maxlen: 24
154.85.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119358 (0x1d23e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 8 12:26:41 2026 GMT
Not After : Jul 8 12:26:41 2027 GMT
Subject: CN=6a26b506-11c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c9:16:7c:19:a4:8f:3c:5f:8f:df:2b:6f:d2:
b0:d5:e1:22:d6:e6:3f:f0:e6:ef:9b:be:7f:8e:49:
73:af:a3:13:92:c2:ee:93:00:af:4b:bf:12:8e:be:
93:34:14:e5:f2:6d:39:44:cf:73:1d:cc:88:c6:d7:
dd:df:21:7e:05:df:0e:f9:9e:52:d8:94:72:53:7b:
ab:92:9f:49:e8:f8:d3:43:15:bc:93:28:fd:6d:82:
08:c7:bf:50:81:ff:13:07:cd:59:a5:65:ad:d1:16:
b4:27:9b:fa:6c:aa:45:42:92:a4:d6:4d:15:3b:33:
a2:8d:71:8b:dd:0b:9d:21:37:fd:21:2d:83:c7:6a:
1b:40:79:be:c5:46:b6:02:81:b2:f3:d4:10:3c:4d:
e2:2c:23:ab:5c:6d:ab:4f:78:c8:bd:10:30:89:75:
43:f0:fa:90:38:df:65:f7:f5:33:2b:fb:01:7d:dc:
4b:16:e3:8d:22:93:48:f0:8f:43:6d:5e:2c:6b:10:
ff:f3:20:14:46:ff:b9:d3:7c:b9:99:63:6f:eb:9e:
a7:68:9b:96:ec:d8:c7:6a:1e:d6:13:b8:3f:12:fc:
96:19:81:c9:b5:f6:b3:db:79:d3:24:80:e8:e7:d1:
44:4d:eb:88:61:c1:3c:d6:b0:22:ff:4d:4b:54:6d:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:28:6F:D5:27:E4:2B:A3:2C:DD:C0:79:F8:45:2F:7C:2D:FA:11:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/507763D0633511F1B4C020B0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.64.0-154.81.70.255
154.85.123.0/24
Signature Algorithm: sha256WithRSAEncryption
37:0c:d6:10:5e:d3:d4:34:4b:65:ab:22:61:b3:38:7a:b4:18:
e1:d0:dc:58:b5:61:9c:f5:0f:48:35:3f:b2:d6:e2:9f:93:b9:
1b:28:b8:91:51:d5:b3:4e:54:c2:20:2c:03:17:a2:26:0c:f9:
4e:b1:54:03:d7:b1:8a:0e:2c:68:11:37:a8:1f:96:b0:0c:06:
24:1d:e2:a3:48:03:bb:e6:59:f9:3d:33:5c:a8:5d:32:81:6b:
60:7c:62:23:e0:a2:27:ec:57:22:ba:70:ad:9d:71:ed:4c:e6:
0f:22:1a:62:c4:bf:fb:e8:b0:a5:80:99:87:2a:5b:1c:33:6a:
50:9e:e4:75:e4:e9:e3:ea:d5:5f:12:90:bb:0e:38:50:2a:2d:
82:8a:db:57:85:fa:d5:9e:c0:a5:f5:61:65:44:30:fe:17:b3:
6b:87:54:9b:06:c0:be:45:4e:76:22:ab:4d:6d:e6:7b:c7:82:
25:d3:8a:1b:ac:cd:b0:b5:d9:77:20:2b:43:9d:b5:0a:e3:01:
5d:12:53:30:e4:da:8f:be:23:1a:bd:1b:54:fd:c0:84:59:ab:
ea:e9:5a:bd:05:07:a1:a8:61:d3:46:48:bb:81:41:68:9b:a4:
2a:f7:c6:37:74:b7:ee:5f:b2:b4:9f:52:49:6c:f3:80:cc:4c:
64:3f:42:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:41 2026 by rpki-client