Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72C5F60A579511F1A0079EFFCE1D38B0.roa
File: 72C5F60A579511F1A0079EFFCE1D38B0.roa (raw, json)
Hash identifier: aNeMUIEUGghUPFiau7eiWuUl4VaUq8OM6zqUBw/wRoM=
Subject key identifier: 5A:CB:9E:C4:0B:8C:D4:69:CB:18:FB:06:8D:16:7A:E4:23:BE:CB:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CEF7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72C5F60A579511F1A0079EFFCE1D38B0.roa
Signing time: Sun 24 May 2026 17:24:42 +0000
ROA not before: Sun 24 May 2026 17:24:35 +0000
ROA not after: Fri 28 Aug 2026 17:24:35 +0000
asID: 142032
IP address blocks: 154.219.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118519 (0x1cef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 17:24:35 2026 GMT
Not After : Aug 28 17:24:35 2026 GMT
Subject: CN=6a133459-a3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:99:78:e4:8d:14:9e:08:e1:6b:89:8d:3d:c4:
ec:07:ae:de:6d:98:6c:64:e7:8e:e5:a3:59:ed:56:
ee:78:2d:fd:6f:2d:76:48:1c:a2:39:cc:d0:cb:80:
64:96:73:88:85:3c:3f:4f:69:ff:b0:08:ed:92:f7:
5a:48:7d:00:8b:98:b8:f2:c1:67:b0:b6:ef:08:17:
a3:20:2d:b2:57:e0:09:6c:99:4b:68:4d:58:ba:d5:
a9:99:f9:93:a4:62:c5:bb:31:2b:a4:bf:a3:da:8c:
72:0c:4a:a9:87:94:24:f1:ed:79:c9:1a:cc:c7:6d:
ec:f7:1a:f6:d6:55:56:e1:a9:3a:66:8e:ff:ce:bb:
d3:3c:73:6e:ed:aa:ca:b5:7c:85:e8:4f:ab:c7:59:
f4:22:bf:ef:02:96:35:9f:4a:9a:d8:74:60:f2:d3:
93:f4:7b:94:d5:d3:21:9d:df:89:f8:fd:7b:1d:cf:
10:2a:4f:7d:41:7e:a0:2f:7f:7e:f7:31:52:a3:b7:
e0:ac:15:86:5f:3d:52:dd:39:26:5c:ed:65:a4:a6:
22:94:ff:b5:c8:ff:06:ee:8e:1f:e1:68:5a:ff:83:
cb:8c:e4:93:3c:f5:d2:96:d2:1a:bb:91:c5:b6:f0:
eb:35:6e:17:86:80:35:f4:b3:0d:b0:13:10:c5:ed:
8a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CB:9E:C4:0B:8C:D4:69:CB:18:FB:06:8D:16:7A:E4:23:BE:CB:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72C5F60A579511F1A0079EFFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.96.0/19
Signature Algorithm: sha256WithRSAEncryption
54:f2:94:f3:b9:fe:ee:8e:ea:19:b9:29:e0:68:c7:b8:25:fd:
8a:66:e1:93:7f:1c:09:ea:67:a0:be:57:16:0a:8f:56:25:2a:
27:5a:00:f0:2e:c0:f0:93:02:31:ed:53:4e:12:96:b6:62:ac:
dd:b6:7d:15:78:ea:21:d8:41:9b:b2:5e:b7:7d:d4:8e:c5:a7:
d6:36:26:0a:45:56:88:68:9b:88:07:d6:41:7b:48:69:06:91:
38:4f:a5:5b:6c:6a:08:65:73:27:de:ed:5b:93:50:a3:a9:22:
c6:44:7b:00:dd:29:c2:a5:0b:12:49:83:99:d5:c0:1d:de:36:
59:56:aa:f5:1b:f1:92:52:dc:0e:d2:94:93:69:ec:4c:b9:3f:
44:fb:c9:4f:cf:ac:54:3a:f3:8c:1f:9d:db:0b:ce:a6:13:0f:
26:32:8e:80:df:0f:c3:4a:55:45:03:d3:83:d9:87:92:93:f8:
3f:8c:30:45:c6:28:5f:71:e8:8c:8b:b7:a7:f6:6b:ba:5b:79:
0b:cb:fa:55:f8:f1:39:ec:8e:04:de:bb:69:f2:e5:2f:be:39:
bd:b9:de:d2:52:ea:e2:87:1b:6b:5d:95:cb:f2:ef:c6:ae:f2:
54:4d:7e:c5:a6:23:f6:bc:5f:03:5d:8e:9d:8d:54:79:0c:11:
59:59:08:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:03:30 2026 by rpki-client