Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA47C46577511F183A8CAC1CE1D38B0.roa
File: 6FA47C46577511F183A8CAC1CE1D38B0.roa (raw, json)
Hash identifier: F5sgKbPMHEUwIVEv3xxAUS40Ny8Jvv59dKy/yfotfW8=
Subject key identifier: 03:66:AD:B6:57:E6:BF:BE:E7:81:F3:CC:FF:93:9B:59:5D:60:1C:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CED5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA47C46577511F183A8CAC1CE1D38B0.roa
Signing time: Sun 24 May 2026 13:35:32 +0000
ROA not before: Sun 24 May 2026 13:35:28 +0000
ROA not after: Fri 10 Jul 2026 13:35:28 +0000
asID: 63099
IP address blocks: 154.82.163.0/24 maxlen: 24
154.83.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118485 (0x1ced5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 13:35:28 2026 GMT
Not After : Jul 10 13:35:28 2026 GMT
Subject: CN=6a12fea4-a3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:61:f1:fe:5b:74:5c:d2:a7:99:7f:2b:29:
e9:d6:17:eb:69:1a:0e:6c:67:d3:69:7d:df:22:47:
3d:be:47:02:84:23:ca:64:4a:81:c4:9b:c3:d4:35:
b6:d7:ae:ab:22:16:c4:08:fc:aa:62:d3:fa:bb:ba:
32:16:f1:6e:76:60:d0:3a:2b:2c:49:e3:26:3d:3a:
76:bf:22:eb:bf:80:2f:b3:c1:38:ac:30:26:7e:58:
7d:70:62:8d:27:42:64:ba:c8:0b:03:f0:cf:74:f0:
19:53:f9:20:a2:dd:98:42:33:dc:1d:59:f5:4b:2c:
2d:07:0c:bb:4b:17:89:3a:cb:0e:77:94:6a:41:d4:
00:6a:85:af:ce:53:09:18:8a:d0:4f:16:ed:07:59:
a8:3f:b9:83:ce:83:f0:31:06:ba:5b:bc:22:37:f7:
93:92:c7:15:7f:8f:6e:26:62:cf:54:2e:be:24:68:
5e:48:32:8c:ec:70:ee:32:58:22:68:53:a4:d1:26:
73:79:63:55:e5:a0:56:c1:e4:b7:62:ef:c6:df:46:
c3:c1:d4:d9:f7:6a:f4:a9:96:f5:65:f4:fb:86:93:
8a:3b:91:24:c8:1d:2b:f3:58:2f:1c:4e:cb:fa:15:
aa:96:af:1f:79:cf:59:7b:69:35:1e:a4:56:89:3b:
1f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:66:AD:B6:57:E6:BF:BE:E7:81:F3:CC:FF:93:9B:59:5D:60:1C:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA47C46577511F183A8CAC1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.163.0/24
154.83.106.0/24
Signature Algorithm: sha256WithRSAEncryption
66:0f:f4:91:e4:0a:e7:df:d6:59:96:ef:05:3f:e7:51:6a:d3:
2e:40:14:9b:d5:b0:40:d2:14:e6:49:fa:03:24:e8:3f:1b:4e:
ef:61:d6:b0:52:6e:e4:71:64:9b:5b:1e:2a:01:ff:1f:e5:e7:
a3:89:a5:db:a6:dd:ad:d7:ad:d7:66:a8:9d:46:d2:94:e8:67:
b3:4c:fb:ae:c6:9a:4c:91:65:fa:1e:2d:d3:df:c8:32:e0:16:
05:d4:e8:d2:96:3c:dc:06:17:b9:f4:49:9a:d4:99:e9:27:dd:
43:50:ed:3a:c3:af:3e:43:a6:c1:64:47:14:3a:14:18:89:21:
bf:bb:06:06:0f:bf:46:d7:29:9a:9e:39:82:69:b2:be:24:12:
37:ed:68:9d:0d:5d:2c:e4:12:22:8d:70:4c:24:eb:16:36:1f:
4d:84:f5:42:fa:fc:af:76:ee:dc:67:ad:b9:f3:41:54:82:5a:
b8:58:ee:4a:fe:d6:68:2e:28:b6:00:ef:2d:94:ef:8c:80:47:
be:2b:05:42:35:d1:5a:83:fd:84:ba:27:8e:46:37:26:03:20:
34:46:90:f2:6d:c1:be:29:5f:8f:4c:9a:18:6f:12:ae:58:a7:
3c:ed:ba:a8:68:37:62:50:94:38:c4:4d:14:e0:d1:1f:48:e9:
7c:aa:35:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:18:07 2026 by rpki-client