Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69A7E08A551311F19C4755BACE1D38B0.roa
File: 69A7E08A551311F19C4755BACE1D38B0.roa (raw, json)
Hash identifier: sVmdDPQO3sUBK3lZWgHzUVIS4jCVpclHa5LcpA1ZJPc=
Subject key identifier: 08:80:F0:CA:E0:27:35:B2:E6:01:4A:3D:EE:58:9A:0C:DE:EC:98:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD5E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69A7E08A551311F19C4755BACE1D38B0.roa
Signing time: Thu 21 May 2026 12:48:49 +0000
ROA not before: Thu 21 May 2026 12:48:44 +0000
ROA not after: Wed 19 Aug 2026 12:48:44 +0000
asID: 55020
IP address blocks: 154.210.16.0/20 maxlen: 24
154.213.64.0/20 maxlen: 24
154.222.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118110 (0x1cd5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 12:48:44 2026 GMT
Not After : Aug 19 12:48:44 2026 GMT
Subject: CN=6a0eff31-e832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:cd:be:42:59:9a:3f:fc:80:67:9c:60:0e:
b5:19:90:46:88:4f:45:49:1b:44:91:d0:a8:2b:a3:
cd:ee:85:4f:03:02:2c:d2:a8:25:69:6a:03:2a:ff:
87:60:da:cb:41:ba:61:cd:4e:77:ba:72:66:02:5b:
6a:00:cb:30:ce:d4:88:4e:94:a0:62:af:50:5a:52:
66:b7:54:de:28:12:6c:3b:cd:31:ac:fb:2c:02:a7:
31:60:3b:4a:c5:44:59:42:46:33:8c:dc:91:91:0b:
03:b2:11:04:04:92:f7:99:aa:e8:3f:c2:b9:c6:17:
2c:3f:c5:73:67:ba:90:ff:50:32:48:21:eb:8a:72:
6c:0c:8b:4c:74:1b:69:87:ae:b5:92:4b:88:be:54:
98:3e:41:46:05:de:5f:3f:eb:9c:a5:7f:3c:28:c1:
f3:7d:1c:7a:9d:af:7a:9c:68:bf:e7:2f:d0:6b:fa:
6b:df:a6:5b:04:cd:3c:e9:22:55:1a:41:78:17:50:
fe:b2:22:9f:f3:76:8b:21:14:82:6f:b5:5b:57:60:
9a:7c:70:1f:41:0d:5d:e3:78:e4:7a:54:19:81:58:
70:ee:41:9c:a3:82:72:4f:86:4f:dd:bf:76:d6:8d:
8b:f0:7c:3b:d1:b1:b2:80:e3:07:70:41:99:95:bd:
82:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:80:F0:CA:E0:27:35:B2:E6:01:4A:3D:EE:58:9A:0C:DE:EC:98:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69A7E08A551311F19C4755BACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.16.0/20
154.213.64.0/20
154.222.224.0/20
Signature Algorithm: sha256WithRSAEncryption
ca:1c:ce:14:45:e8:58:d6:e7:56:f4:ae:58:16:4c:4a:42:18:
af:9e:ee:32:87:ab:1e:83:f4:4d:6d:fd:f7:66:90:e4:48:6b:
15:29:3b:19:20:f5:41:a6:59:a4:12:11:5a:91:e9:3c:13:0a:
c7:07:24:e5:22:1c:1f:4b:7c:c9:c0:64:d5:77:f9:8f:41:0b:
3e:84:63:15:9f:df:d7:67:c5:6d:23:0f:4a:37:f4:c7:aa:a1:
06:8b:15:c6:5f:cd:d4:d7:84:9f:a6:51:48:15:f9:41:6b:db:
d4:5c:a9:07:4a:35:e7:77:62:b7:b6:90:9a:47:89:ec:a2:ca:
ca:99:f6:4e:3a:8c:81:48:e4:a9:f3:5a:3e:13:5e:44:a8:f1:
46:40:31:4d:bb:98:f9:ba:72:26:47:03:9a:12:56:7c:71:a0:
30:26:64:f5:77:57:59:a4:1d:54:8e:7b:e3:cf:21:f4:2f:dc:
0f:b7:32:e4:24:87:34:f4:34:e1:b2:db:00:c8:60:ce:37:3f:
a6:21:8d:64:f6:82:e9:4f:52:5d:2d:2d:99:52:85:d0:37:da:
4a:c6:0b:99:39:a0:4f:89:0f:fb:85:6e:97:0f:23:53:77:15:
4d:11:56:18:24:21:b0:97:33:81:6f:5f:35:7a:65:f7:d2:6f:
93:e2:f8:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:35 2026 by rpki-client