Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/818843EC506E11F1B2A567F1CE1D38B0.roa
File: 818843EC506E11F1B2A567F1CE1D38B0.roa (raw, json)
Hash identifier: uE9U4BK55LPojzBIkozy1NVbrWuiDbuhVYJm+/Psuik=
Subject key identifier: 3E:A6:61:2D:0B:17:6D:14:17:E2:4E:E3:CF:12:6A:41:ED:04:E9:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CBC4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/818843EC506E11F1B2A567F1CE1D38B0.roa
Signing time: Fri 15 May 2026 14:58:18 +0000
ROA not before: Fri 15 May 2026 14:58:13 +0000
ROA not after: Mon 22 Jun 2026 14:58:13 +0000
asID: 401701
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117700 (0x1cbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 14:58:13 2026 GMT
Not After : Jun 22 14:58:13 2026 GMT
Subject: CN=6a07348a-d689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1e:77:7b:62:3e:2d:4e:44:3b:e0:52:ac:0e:
ea:5c:e3:e7:b7:bb:67:cd:95:1a:f6:ff:50:ae:2b:
b9:c4:50:05:41:54:b7:c2:4c:91:97:c2:2b:8d:c7:
09:9a:a2:c6:db:78:88:fb:86:a0:0a:ba:95:19:7c:
e8:c0:8a:36:f4:76:34:30:b5:2e:02:29:36:64:6e:
9b:a6:b6:c2:c0:c1:2e:36:54:c9:d9:6d:36:dc:29:
8b:af:bd:3f:4c:6d:d1:62:4c:eb:0d:2b:e6:92:14:
8a:47:c0:74:92:8a:50:c8:0b:4f:d3:47:8d:e5:9a:
0b:1e:5a:9b:07:e7:34:41:49:ad:7c:44:76:12:79:
f8:77:5b:7a:bf:5d:c3:2b:5e:38:75:7e:8d:ee:fd:
1c:56:f4:8a:2b:65:06:21:b3:84:6c:38:79:ba:c6:
dd:27:7b:72:30:1f:11:6a:f5:51:9c:60:a7:ff:8b:
b8:d3:c4:9b:7f:e7:2b:e6:cc:b8:e9:66:19:3a:15:
54:ab:ef:ce:c4:b1:cf:49:20:28:40:a5:8c:e7:a2:
6a:65:d0:92:af:13:a4:20:86:9f:58:6d:5b:92:5a:
b7:df:15:93:e7:00:9a:af:69:a6:dd:ec:ad:d3:a4:
a5:f0:37:b9:c4:17:fe:04:85:c6:b6:4b:10:e5:c2:
17:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A6:61:2D:0B:17:6D:14:17:E2:4E:E3:CF:12:6A:41:ED:04:E9:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/818843EC506E11F1B2A567F1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
64:d2:41:3b:b7:a2:be:18:90:ca:78:d6:e6:c2:b3:25:82:a8:
92:bd:e6:03:d6:15:43:11:2e:b7:79:4e:14:fe:b3:4a:cf:ea:
2d:3c:e4:20:61:e7:94:1f:89:78:9d:55:03:a8:61:bd:f9:c9:
87:17:64:c0:b4:8d:e4:54:13:77:53:ad:a1:eb:53:69:d2:db:
d4:69:32:3b:38:1e:37:4a:9d:ed:d6:6c:46:ea:0a:e8:97:2b:
58:ca:ff:d6:99:cc:40:99:63:62:e6:ae:76:25:12:36:d6:d7:
f1:5d:a7:b8:ac:62:8b:d0:83:ea:2e:ac:91:f2:32:4b:61:22:
31:cc:0b:73:98:74:1e:85:ab:54:6c:91:4d:87:37:64:58:86:
48:1b:7d:07:66:b4:9a:30:dc:59:ee:4c:12:45:67:d5:7e:a2:
5c:b7:77:71:71:fb:4e:84:2e:19:81:d7:6f:1c:9d:5b:96:2a:
91:18:97:ac:5e:af:e6:fe:ec:b6:5a:fb:b4:92:26:e0:01:ed:
e2:c0:a4:0a:40:2e:b0:e0:7e:71:4f:59:36:c6:fa:45:4e:88:
0b:b7:d0:fd:db:9b:2f:b8:ab:16:8d:cc:c3:05:42:b9:ec:a8:
26:48:25:35:46:13:f1:c5:e9:8a:5b:41:18:ca:47:ae:48:0f:
88:b2:87:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:12 2026 by rpki-client