Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AC004C8123511F183775E7CDAE4EC9C.roa
File: 6AC004C8123511F183775E7CDAE4EC9C.roa (raw, json)
Hash identifier: 30hJzDn0Q5yaeE4XyUVmKv8qFKfZ+CBq6dw4C0Bh298=
Subject key identifier: 41:DA:BA:C8:D8:11:AC:C4:FF:68:BC:0A:B1:74:14:73:AA:A1:04:F5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BBAF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AC004C8123511F183775E7CDAE4EC9C.roa
Signing time: Wed 25 Feb 2026 10:33:26 +0000
ROA not before: Wed 25 Feb 2026 10:33:22 +0000
ROA not after: Sun 12 Apr 2026 10:33:22 +0000
asID: 20326
IP address blocks: 154.83.152.0/22 maxlen: 24
154.83.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113583 (0x1bbaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 10:33:22 2026 GMT
Not After : Apr 12 10:33:22 2026 GMT
Subject: CN=699ecff6-ebe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e2:a0:ef:e0:14:af:2f:58:4e:93:5c:c0:16:
fe:44:d0:af:c4:bf:d1:c1:b8:4e:5c:e4:99:65:d1:
fa:c8:89:a2:93:e8:b7:9c:e1:98:db:57:ae:c3:52:
9e:24:50:de:72:fc:87:bd:80:a7:ed:f2:ef:a8:b4:
0c:85:2c:35:20:33:75:08:80:d0:0c:a0:73:6f:4a:
4a:b8:9c:8e:b6:f8:f4:6b:83:29:4c:73:27:f2:36:
8b:3f:9d:a3:70:a7:5e:48:97:9b:3f:a2:1b:fa:2d:
25:7e:8c:cb:d9:4b:14:00:60:8c:f5:4c:52:66:2b:
32:71:3e:15:23:ad:10:cb:36:06:47:27:05:eb:e5:
b9:e4:86:fa:40:32:7e:d8:bd:93:7c:c5:35:9b:d6:
d7:44:a0:ef:86:a3:9e:93:80:01:21:0e:9a:ae:67:
5e:97:10:05:11:b8:c0:42:d1:9d:4a:75:bc:d8:67:
ac:2a:2f:db:7d:66:66:cd:0d:a1:fb:ca:b1:9d:24:
79:79:08:fe:0c:36:f1:36:49:e9:1c:14:68:b9:ab:
0e:16:0a:36:cb:52:6c:cf:ea:4e:6f:91:1a:e7:8c:
04:4b:5d:e9:71:38:4b:f2:cc:3a:7e:52:e6:97:45:
05:52:90:c9:70:e8:43:cb:f1:2e:09:c5:00:16:72:
fa:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DA:BA:C8:D8:11:AC:C4:FF:68:BC:0A:B1:74:14:73:AA:A1:04:F5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AC004C8123511F183775E7CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.152.0/22
154.83.184.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:bb:4d:0d:a4:98:f7:32:17:72:1d:f7:a6:b5:cb:99:29:82:
6a:e5:e6:7b:ae:51:3b:e2:cd:98:f0:4c:3b:29:df:fe:90:f6:
cf:f2:da:ec:c7:d1:2b:43:fc:2a:6a:76:15:30:9c:f9:7d:cb:
e6:6b:16:1c:02:28:33:bd:83:32:8c:0b:72:62:f3:f1:5a:ba:
d6:01:8a:b0:43:4f:52:3b:17:4a:e0:48:c0:23:da:0f:5b:04:
3b:a4:63:78:0b:b0:5a:11:3f:a9:83:a3:a9:38:ce:7f:fb:4b:
85:f7:58:10:a4:e3:2e:e2:01:c7:0f:81:da:72:9e:99:cb:bb:
cb:be:5e:fe:37:96:dc:6d:60:3d:25:03:a2:84:8a:59:6f:3a:
fd:0b:78:0d:58:fc:c4:99:77:c9:4a:d5:3f:c9:79:3d:e8:c4:
c1:ba:e9:62:43:0f:f8:a2:81:f4:19:db:95:fe:74:ae:c0:9f:
d4:a0:5d:34:5d:65:35:5d:6b:b2:06:1c:d0:73:99:8d:c8:0f:
43:e3:c6:65:6c:85:c3:89:bf:6a:18:ad:13:3a:bd:7d:fb:99:
d2:b5:43:4c:bb:06:13:31:5e:7d:0e:16:4e:3e:3b:05:09:f0:
7b:a7:12:a3:a7:98:20:8d:11:37:c3:01:0f:79:68:55:56:10:
6a:d9:89:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 16:25:22 2026 by rpki-client