Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2CD9B6618711F193D97EFECE1D38B0.roa
File: 5D2CD9B6618711F193D97EFECE1D38B0.roa (raw, json)
Hash identifier: hSd2wngfErrDYSadeRznxVS8sgyTbHrz8xluI7MF1H0=
Subject key identifier: 04:39:6F:FE:73:AB:7B:2A:5E:09:2F:26:7D:9D:C4:2C:4C:FB:C6:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2CD9B6618711F193D97EFECE1D38B0.roa
Signing time: Sat 06 Jun 2026 09:09:04 +0000
ROA not before: Sat 06 Jun 2026 09:08:59 +0000
ROA not after: Mon 13 Jul 2026 09:08:59 +0000
asID: 9304
IP address blocks: 154.203.0.0/23 maxlen: 24
154.203.204.0/23 maxlen: 24
154.203.244.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119291 (0x1d1fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 09:08:59 2026 GMT
Not After : Jul 13 09:08:59 2026 GMT
Subject: CN=6a23e3b0-7f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:14:12:a9:47:0a:77:df:9f:4a:ea:6d:ec:2c:
ca:3d:e4:22:87:53:56:da:32:6c:72:96:d0:98:c3:
ed:ba:5d:13:2c:b2:a2:e8:79:35:48:04:b7:bd:a7:
d6:73:95:df:ac:5f:fe:34:22:3a:01:dd:23:5e:f0:
c8:a3:9d:65:20:11:c2:83:aa:76:02:92:9b:fd:9a:
db:bf:6f:01:a7:b7:d9:65:1a:63:42:22:a0:2e:17:
20:cb:9d:ce:d0:ee:54:8e:95:57:ae:5d:fb:95:2f:
19:4e:40:00:4e:a9:fe:3e:74:17:f2:c3:6e:9e:8d:
aa:79:17:2c:b4:df:1f:7e:cf:f8:ae:b4:46:b2:3b:
8c:92:a5:a2:ec:a6:78:be:37:e7:0c:8b:1c:a9:32:
72:75:d7:79:90:a7:f9:be:05:01:11:9f:6c:d1:8d:
56:6a:d3:82:39:8e:6e:f0:8e:4e:a8:d2:76:ba:9d:
76:21:57:a9:9e:08:8e:88:5b:32:37:36:0e:54:3a:
06:26:d8:e8:45:52:c3:3c:e2:ac:30:f2:43:83:65:
8e:05:45:60:8d:79:87:dc:60:4e:9f:80:fa:5e:b5:
cd:79:c5:e9:4e:e1:c5:fe:73:73:5e:e8:ef:0f:94:
74:ec:ce:54:f6:9a:47:9d:b9:5c:f2:44:cd:66:b3:
26:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:39:6F:FE:73:AB:7B:2A:5E:09:2F:26:7D:9D:C4:2C:4C:FB:C6:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2CD9B6618711F193D97EFECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.0.0/23
154.203.204.0/23
154.203.244.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:a2:0c:ff:c3:81:3b:49:0f:0e:a7:ed:bc:5a:d4:e2:77:b7:
c6:dd:c5:10:95:c2:d5:c9:dc:85:84:c3:4c:e3:14:48:2d:b1:
83:49:c8:33:9f:93:31:50:27:1a:d1:a7:48:0f:e6:c6:46:46:
2b:1e:70:e6:d0:43:d6:6c:31:ef:f0:f7:43:0c:9f:2a:9b:fc:
23:b7:53:5a:c4:19:5e:1a:1f:ce:db:60:94:14:7e:1f:51:bb:
c7:13:53:09:61:70:21:ca:a4:99:ab:a5:03:42:09:5c:66:2d:
1e:9a:a8:f2:2e:2d:db:7f:46:8f:17:7f:56:0a:bd:29:2f:7d:
6d:6e:fa:67:32:c7:c5:f9:aa:51:0e:20:1e:7b:4f:e5:ab:f1:
f4:ff:cc:f2:90:1b:37:ae:29:d7:2f:8b:5c:d7:c7:50:c7:ce:
3c:8c:14:94:f7:ea:bf:be:f5:a5:60:79:4d:68:cb:8d:ee:ac:
66:48:c5:af:41:4d:ed:40:f5:bd:96:b9:88:23:1e:16:fa:1d:
7a:17:8f:45:14:0b:f1:14:1d:59:a7:1d:66:0a:e3:e2:45:a9:
60:c7:a7:15:ef:2a:53:ee:fb:ce:a3:d4:74:88:75:7a:84:62:
ed:e1:12:cb:22:2d:24:30:08:ff:cb:e8:90:e4:b6:5a:d2:c2:
bc:03:7f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:25 2026 by rpki-client