Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7961450A5DBC11F183F81AEBCE1D38B0.roa
File: 7961450A5DBC11F183F81AEBCE1D38B0.roa (raw, json)
Hash identifier: envtWh2juG3vjY5TIRbQONp7jkNejiZolxxE1i+dntw=
Subject key identifier: 51:98:0F:CF:D0:F6:1F:E8:FA:BF:AF:79:60:93:DA:A1:C6:BA:4C:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D12C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7961450A5DBC11F183F81AEBCE1D38B0.roa
Signing time: Mon 01 Jun 2026 13:19:10 +0000
ROA not before: Mon 01 Jun 2026 13:19:05 +0000
ROA not after: Mon 06 Jul 2026 13:19:05 +0000
asID: 271988
IP address blocks: 154.88.160.0/20 maxlen: 24
154.88.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119084 (0x1d12c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 13:19:05 2026 GMT
Not After : Jul 6 13:19:05 2026 GMT
Subject: CN=6a1d86ce-7464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:23:a0:2d:69:7a:a7:16:e6:f1:bb:ec:c6:fa:
ca:f5:83:93:81:93:8f:61:09:75:7d:ec:1e:f0:21:
94:27:21:49:c2:2e:8c:c5:03:40:e3:ac:65:9f:06:
ee:40:f8:36:a0:27:93:e6:cc:8b:6e:1c:f8:91:e5:
5e:08:c2:67:88:6f:f6:bb:29:60:33:84:c6:bd:7d:
99:b0:77:10:56:9a:c5:1d:58:9d:8a:d7:56:8f:25:
a3:f6:5a:d1:c9:a3:5d:a1:f5:6c:e3:c6:92:09:ab:
5b:1c:11:f7:3d:f2:c1:94:52:29:c9:c4:04:71:4b:
b8:53:9c:07:05:ba:01:06:43:2f:21:ec:9e:7b:5e:
3a:04:46:41:6c:1a:3b:5e:83:bf:4e:77:22:c9:94:
fd:b3:8a:6e:9e:a2:54:95:76:74:7a:6e:4d:7c:cb:
e6:8a:a3:47:95:bf:2c:ef:d8:a5:f7:0f:87:d8:f9:
67:e0:9c:61:64:f1:ae:85:1b:25:57:bf:4b:97:a1:
c4:69:06:d8:4e:2e:b6:b5:64:8a:c7:d2:be:9c:54:
aa:d1:46:09:35:48:70:bd:f2:98:65:02:39:14:ab:
cc:da:fc:33:e3:74:1d:d6:fd:ac:c4:36:42:a3:71:
5b:3f:51:f9:1d:60:a4:68:5a:8e:36:b1:a7:4c:77:
ce:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:98:0F:CF:D0:F6:1F:E8:FA:BF:AF:79:60:93:DA:A1:C6:BA:4C:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7961450A5DBC11F183F81AEBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.160.0-154.88.179.255
Signature Algorithm: sha256WithRSAEncryption
85:15:5c:1f:19:b5:fa:fa:19:9f:c7:a2:8e:37:ec:ad:5f:5f:
f3:e4:ee:63:dd:d0:94:7b:6a:d1:e7:e4:61:7b:8d:f8:4e:08:
1e:2d:87:ab:c0:c2:bc:18:e5:1d:b7:41:ce:d8:01:20:7b:64:
32:3c:48:80:d6:20:aa:a6:54:72:5a:c4:7d:1a:86:69:e1:eb:
43:d1:60:d8:7d:84:95:01:cf:9c:73:01:8d:26:15:6b:ae:52:
49:c7:ed:c6:fe:8b:a7:f8:46:0a:f9:02:9c:65:96:fa:c4:22:
ac:95:98:d2:14:09:9b:a2:bb:3a:29:39:b0:19:f5:79:ca:27:
25:38:fa:09:ce:b3:23:e3:68:81:5d:91:f2:97:01:15:5e:e3:
e2:cb:df:57:b6:6c:3e:4e:e8:89:6a:d6:9b:9c:53:1e:b8:57:
3d:3b:ea:93:8b:56:f7:83:60:1f:0c:85:b2:b1:d3:b1:ca:af:
20:0e:c8:5e:21:bd:d3:58:47:60:66:f2:53:da:d2:8e:bd:43:
91:6f:95:9e:97:1b:d9:60:18:07:6d:d4:c2:e9:22:f2:91:d8:
fe:68:3e:54:8f:1c:b5:73:52:7e:ac:c1:f5:7a:61:f3:f2:98:
a4:44:c7:d1:f5:9a:1d:1e:38:a4:c1:68:33:e7:0e:88:e8:64:
66:1a:cb:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:44 2026 by rpki-client