Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BE19EC2372C11F1AD0A48E8CE1D38B0.roa
File: 6BE19EC2372C11F1AD0A48E8CE1D38B0.roa (raw, json)
Hash identifier: WrnihjQtlMXj4BOHM94o9Zh7gs+TKhCWtLTFOBoUizE=
Subject key identifier: D4:18:B1:A4:87:54:DF:DB:C7:D3:8F:CD:99:7B:E0:FE:4A:00:68:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C518
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BE19EC2372C11F1AD0A48E8CE1D38B0.roa
Signing time: Mon 13 Apr 2026 11:32:16 +0000
ROA not before: Mon 13 Apr 2026 11:32:10 +0000
ROA not after: Sun 17 May 2026 11:32:10 +0000
asID: 22773
IP address blocks: 154.194.6.0/24 maxlen: 24
154.194.63.0/24 maxlen: 24
154.194.66.0/24 maxlen: 24
154.194.240.0/23 maxlen: 24
154.198.6.0/23 maxlen: 24
154.198.14.0/23 maxlen: 24
154.198.17.0/24 maxlen: 24
154.198.18.0/23 maxlen: 24
154.198.190.0/24 maxlen: 24
154.202.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115992 (0x1c518)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 11:32:10 2026 GMT
Not After : May 17 11:32:10 2026 GMT
Subject: CN=69dcd43f-f3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:49:83:04:3f:03:80:29:fc:b1:f7:53:e6:c5:
52:91:77:8d:cd:ff:d1:4c:9d:ef:a4:0b:01:e4:d2:
ea:16:52:30:8d:5c:c9:99:65:ce:5a:03:fa:5d:15:
73:ac:bd:8a:92:f5:ff:13:37:ab:5c:3c:f9:d6:16:
a9:7f:a2:4b:68:54:9b:b5:f3:77:50:cb:52:24:3b:
37:bb:00:c6:09:04:86:39:7c:8f:aa:4b:fa:0b:79:
1f:9d:1d:f2:1b:1b:4a:a6:98:33:c8:49:21:3e:20:
c0:b4:ce:07:55:98:d7:f8:6f:6c:50:a1:e5:32:12:
1d:d2:4e:57:5d:10:e2:5d:f1:d3:84:ea:e8:63:26:
ed:41:68:6c:10:d4:bd:e5:4a:9d:e6:26:bc:14:c4:
0d:06:8c:a5:e4:7d:0d:79:f9:a4:c4:0b:4f:b3:49:
a8:4b:78:e5:23:91:bd:14:bb:86:18:45:b7:15:1d:
01:5f:69:62:b3:3a:a3:e6:d0:5d:b5:d6:98:b3:9a:
39:34:bc:30:35:23:d9:cc:6f:cb:d8:e7:a8:61:60:
45:26:a6:77:12:a8:12:b1:72:3a:80:00:c9:51:b4:
ef:7c:64:70:b0:a8:ce:93:f2:0c:b4:d2:55:13:77:
9d:f7:57:4b:ee:1e:40:09:e1:16:a0:d5:d5:3d:79:
b3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:18:B1:A4:87:54:DF:DB:C7:D3:8F:CD:99:7B:E0:FE:4A:00:68:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BE19EC2372C11F1AD0A48E8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.6.0/24
154.194.63.0/24
154.194.66.0/24
154.194.240.0/23
154.198.6.0/23
154.198.14.0/23
154.198.17.0-154.198.19.255
154.198.190.0/24
154.202.99.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:77:77:ed:66:2c:93:d6:0d:f6:89:ba:4a:ec:2c:6c:1b:ac:
f0:a1:24:12:2e:08:06:79:96:02:97:9d:b9:26:e0:d1:45:3a:
1d:d9:f1:9f:87:7a:41:fa:b3:15:44:a1:84:30:cb:a6:c0:bb:
d7:5b:2c:30:3a:59:97:82:07:d0:42:32:9b:73:65:b7:23:60:
65:2a:63:40:f3:4c:42:d6:82:30:c8:e9:bc:5e:3f:b4:f4:92:
ab:80:4a:97:9c:27:b1:32:d3:ad:b7:fa:ff:e8:fc:6e:ed:90:
6b:43:a6:52:29:fb:9a:7a:10:e8:0b:48:ff:a9:f5:6a:67:f4:
ed:4a:88:b8:e7:09:9f:e5:09:f8:30:2e:1b:0a:e5:da:ff:d1:
cd:0b:df:54:2f:47:7b:18:cd:0c:49:55:74:45:2c:ec:a7:6a:
b9:3f:31:06:7b:d4:ce:54:a9:b4:05:5e:42:84:2f:b5:6a:3a:
37:b2:54:9f:da:f5:ed:84:24:d6:55:10:7d:8a:a5:aa:39:01:
5e:f1:2b:7d:ba:a1:75:f0:10:d3:34:d3:8a:27:05:b3:6c:da:
28:7e:b8:fe:0f:99:40:2c:31:43:0e:83:89:93:fc:f4:dc:fe:
e0:df:b4:05:18:f7:3f:83:1e:c8:ec:0e:ac:43:22:2b:ac:64:
66:da:05:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:39:07 2026 by rpki-client