Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C1BEFBA584111F1AE536519CF1D38B0.roa
File: 6C1BEFBA584111F1AE536519CF1D38B0.roa (raw, json)
Hash identifier: iEQ5wzNNXyNU0CcDvm69Uosi3KmwVkCCJbFyWUDdYAk=
Subject key identifier: BE:0F:6E:20:19:06:D0:8F:47:28:11:83:4B:6D:F1:7F:68:9B:7F:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CF81
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C1BEFBA584111F1AE536519CF1D38B0.roa
Signing time: Mon 25 May 2026 13:55:44 +0000
ROA not before: Mon 25 May 2026 13:55:39 +0000
ROA not after: Wed 19 Aug 2026 13:55:39 +0000
asID: 55020
IP address blocks: 154.91.48.0/20 maxlen: 24
154.91.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118657 (0x1cf81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 25 13:55:39 2026 GMT
Not After : Aug 19 13:55:39 2026 GMT
Subject: CN=6a1454e0-0ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:61:5f:34:7f:e8:21:22:81:cf:96:c0:ec:
b2:69:34:db:96:9f:77:80:10:98:3a:87:40:34:b9:
04:88:c5:fd:9a:25:c5:a8:71:26:c1:d5:bf:b6:df:
9e:71:bb:a4:c3:33:eb:0b:82:23:35:2d:14:eb:32:
13:b9:2e:e5:c3:ff:22:6a:b1:e4:ac:fc:3d:ff:a8:
e6:bf:9a:e7:3a:ca:c1:0b:31:08:91:87:63:5b:ef:
30:d9:2e:7a:fd:dc:a0:6d:10:d8:06:7f:7c:b7:bd:
35:35:f1:50:e0:6a:1f:72:e3:4c:ee:20:00:8f:83:
90:f4:ed:df:37:60:36:ee:1c:10:5b:92:20:a1:80:
bd:b8:20:47:d1:2f:0c:05:83:a4:d1:61:4b:18:81:
46:0a:e5:8f:0d:89:1b:76:3b:58:92:cb:29:34:6b:
1d:11:80:a4:e6:85:7f:3d:e7:d4:81:74:4b:01:62:
b4:d8:c1:30:f4:55:dd:11:0a:ae:b3:5a:6d:75:43:
a0:c7:0a:e8:20:d1:53:99:23:e2:91:dd:92:e5:50:
a2:c1:95:88:a8:83:06:ba:e9:99:8a:e3:39:b1:39:
2c:4d:c3:86:c2:56:f5:c2:41:df:0b:2e:72:3d:7f:
f0:4a:01:7c:aa:5c:52:35:70:da:6c:6f:7f:27:ec:
57:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0F:6E:20:19:06:D0:8F:47:28:11:83:4B:6D:F1:7F:68:9B:7F:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C1BEFBA584111F1AE536519CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.48.0/20
154.91.176.0/20
Signature Algorithm: sha256WithRSAEncryption
60:2f:42:d4:b0:09:86:ec:63:8d:7f:c8:e5:7f:03:3f:b8:19:
32:e9:c8:ef:86:a7:e8:3b:e7:38:cb:60:8b:1a:1b:85:11:71:
11:ca:47:d9:8d:41:69:a6:a4:51:6e:7c:91:28:41:35:33:96:
eb:7b:8a:00:4b:da:ad:09:95:43:bb:9f:e1:83:58:b3:e3:96:
92:a7:85:a0:7b:a9:5d:37:52:33:e5:cd:23:17:40:4f:80:92:
a8:24:02:1b:09:d9:00:70:7e:ec:00:44:62:ce:79:ab:15:66:
d2:95:91:20:09:a9:ee:18:5f:6f:e2:fb:38:20:b6:8c:e9:2c:
25:7f:be:a2:38:a4:ff:6d:a6:58:21:7a:b7:e7:c9:03:9a:a8:
7e:eb:c3:1d:ec:cc:ee:2b:c6:15:e9:81:26:19:3b:06:a5:35:
e8:9f:4c:85:28:1b:2b:3a:b9:9b:0b:48:1b:b7:25:e7:46:2d:
3d:74:39:bb:4f:44:5c:49:8f:01:ec:72:de:ef:44:5a:0a:58:
c5:73:17:4a:07:bf:7e:06:b6:9b:84:18:2d:99:f0:c8:a3:a3:
de:4d:dd:b1:43:dc:1d:e2:4c:35:e4:95:b9:f2:0d:44:cd:09:
a2:d0:4d:ee:1a:31:67:55:94:9c:52:ed:48:ee:9e:e2:34:17:
1d:d6:f1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:05:50 2026 by rpki-client