Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/736499B85B9B11F1AFC07FEECE1D38B0.roa
File: 736499B85B9B11F1AFC07FEECE1D38B0.roa (raw, json)
Hash identifier: Y1qSIHOK+sdbL7EK9cwnCOXEMbrMj2RQsnUlnXXa+Is=
Subject key identifier: CC:3D:92:64:9F:9C:2C:E7:0B:47:B8:7C:AD:CD:C7:2D:FA:2D:12:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D073
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/736499B85B9B11F1AFC07FEECE1D38B0.roa
Signing time: Fri 29 May 2026 20:17:44 +0000
ROA not before: Fri 29 May 2026 20:17:39 +0000
ROA not after: Wed 01 Jul 2026 20:17:39 +0000
asID: 62240
IP address blocks: 154.194.70.0/24 maxlen: 24
154.194.71.0/24 maxlen: 24
154.194.75.0/24 maxlen: 24
154.194.86.0/24 maxlen: 24
154.194.87.0/24 maxlen: 24
154.194.88.0/24 maxlen: 24
154.195.121.0/24 maxlen: 24
154.195.122.0/24 maxlen: 24
154.196.84.0/24 maxlen: 24
154.196.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118899 (0x1d073)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 20:17:39 2026 GMT
Not After : Jul 1 20:17:39 2026 GMT
Subject: CN=6a19f468-0fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:de:10:b0:cf:4f:b7:53:b8:eb:60:5f:9e:46:
15:16:e0:e9:60:b5:80:11:89:35:82:03:d1:6d:2b:
a6:ef:d9:18:a7:4d:d2:e1:97:8c:08:89:fd:a2:ac:
83:e7:f1:84:21:90:77:c5:ac:7c:7b:27:6c:ef:d4:
62:15:5d:08:d7:c4:fb:2c:4f:cd:38:17:78:2e:64:
28:04:a9:c6:d5:99:56:88:d5:cf:2d:58:e9:77:cf:
a3:64:69:f8:f7:cb:09:79:e8:cb:d5:d0:7c:c8:d0:
3b:bb:54:58:ad:3a:d0:ae:87:ce:57:7d:06:dd:ff:
ad:03:d3:f5:3c:db:0a:6d:70:53:c8:8a:46:c4:9a:
eb:c3:8c:cc:76:b0:9d:81:3b:88:50:02:1f:c0:97:
48:17:f7:93:b4:b7:5a:91:b1:2c:67:55:ad:07:4b:
ed:f9:8b:88:63:f0:c1:f9:16:ca:39:6c:cb:34:b3:
33:e1:bc:da:30:6d:bc:d5:d6:ad:5a:8e:e0:27:18:
5c:1b:58:7b:f5:53:e8:70:93:85:80:83:3e:c6:a0:
70:2e:8f:3d:4a:cc:86:bf:34:51:2b:04:95:13:b1:
47:5a:74:d1:88:66:14:4f:22:d3:70:4b:da:8c:2a:
f3:0b:d8:6e:32:c1:23:b7:2f:20:cb:6f:2a:7e:2b:
6a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3D:92:64:9F:9C:2C:E7:0B:47:B8:7C:AD:CD:C7:2D:FA:2D:12:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/736499B85B9B11F1AFC07FEECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.70.0/23
154.194.75.0/24
154.194.86.0-154.194.88.255
154.195.121.0-154.195.122.255
154.196.84.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:b2:57:f5:74:09:d3:42:fb:05:6d:bd:f6:46:f5:9e:f2:8d:
b4:0e:70:99:1c:fb:39:30:a6:ad:3c:c7:cc:de:39:ef:2a:7c:
f5:8d:cb:83:a6:43:2d:26:7f:ec:cd:b6:4f:de:e5:13:3f:ad:
4a:8d:95:04:b1:93:dd:6c:33:58:9d:2c:e1:7b:65:bb:ab:d2:
b7:4c:db:0a:56:97:e2:93:b7:59:7b:32:41:b9:4b:75:9b:93:
e0:fb:3c:a5:1f:c3:57:cd:25:b7:bb:12:50:2a:d8:d8:b1:51:
b7:d2:3d:7b:8f:b0:94:7d:14:ee:7a:90:88:8b:cd:30:4b:5f:
de:28:45:53:e2:09:d4:e6:80:68:92:4d:90:a0:8a:dc:50:0e:
f9:71:b1:ba:08:13:af:ed:e9:fd:f4:19:e0:d4:23:34:67:08:
0d:74:5b:c4:e7:74:aa:ce:85:78:38:d6:4a:7e:8e:eb:32:29:
e2:4e:f7:75:1d:bf:a2:49:a3:0e:eb:c8:24:84:43:35:0b:76:
96:d2:5e:84:74:55:bb:17:f3:b0:3b:98:f7:ca:a7:16:87:bf:
5f:83:54:a4:61:b4:3c:6d:0b:e8:80:53:55:b7:9c:ca:36:81:
76:82:44:c2:17:1b:88:c9:50:75:46:df:70:84:a4:e9:b0:dc:
35:9b:09:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:13 2026 by rpki-client