Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82464046554F11F1AEEDE4A1CE1D38B0.roa
File: 82464046554F11F1AEEDE4A1CE1D38B0.roa (raw, json)
Hash identifier: LenYw1U/Rod3q+A54i/H/h2Nusv5dPndizgW+y26+AY=
Subject key identifier: 56:5E:CA:8B:E4:0B:E6:5E:C0:43:E2:04:CD:F2:55:EA:D0:20:D8:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CDC7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82464046554F11F1AEEDE4A1CE1D38B0.roa
Signing time: Thu 21 May 2026 19:59:00 +0000
ROA not before: Thu 21 May 2026 19:58:56 +0000
ROA not after: Sat 22 May 2027 19:58:56 +0000
asID: 150293
IP address blocks: 154.210.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118215 (0x1cdc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 19:58:56 2026 GMT
Not After : May 22 19:58:56 2027 GMT
Subject: CN=6a0f6404-a460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:38:34:bf:4d:3f:0c:f2:ca:fb:2f:9c:fe:c7:
20:8f:88:6f:86:2f:b0:c5:67:cb:a7:26:d5:0e:d5:
91:d3:5b:e0:41:2a:17:e7:d1:f3:f9:8b:2b:83:35:
45:db:4e:02:6d:29:a5:f1:be:d7:16:28:90:5a:35:
b1:94:55:cb:ab:94:fb:6c:34:bf:f8:8f:43:80:79:
0c:80:96:b0:db:b2:cd:0d:dd:ba:6f:ab:09:29:39:
f7:3d:20:8c:65:32:b4:16:9c:af:a8:66:dd:17:61:
c3:f4:f6:bd:38:57:50:fc:7c:06:d7:9d:7a:8f:1f:
b4:9a:9c:15:eb:cf:8b:83:2a:52:54:d6:f4:4b:9d:
f4:82:9c:5d:79:94:d0:a8:82:24:7e:76:7f:8d:c4:
19:bb:93:23:97:b2:d4:c1:2d:2e:23:87:da:a6:00:
af:a7:ca:09:f9:f8:91:ce:7f:a8:34:ab:77:f1:3f:
d2:32:ae:a6:07:ee:0f:ce:87:97:bb:e5:87:9a:eb:
75:2f:fa:ce:1d:4b:a9:02:81:04:08:16:54:93:a1:
c8:1c:09:a3:5d:2d:3a:ec:0a:09:7e:f3:9e:14:15:
0b:8f:db:62:c1:ac:c4:08:8a:a7:5a:f1:6d:7c:17:
36:44:c9:15:2c:95:9b:3e:a3:02:3c:98:b9:c6:31:
0f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5E:CA:8B:E4:0B:E6:5E:C0:43:E2:04:CD:F2:55:EA:D0:20:D8:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82464046554F11F1AEEDE4A1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.0.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:d4:f1:30:07:ae:5c:ea:8b:a8:f3:d2:32:bd:bd:18:34:a6:
3d:0c:c1:2a:70:56:23:7c:e4:dd:b4:e8:7f:df:c8:08:f7:96:
6c:d9:bc:f4:ce:a2:86:02:ed:f7:98:09:a5:9e:75:05:5d:08:
cf:c7:ff:58:e7:ac:36:8a:be:f5:6e:64:8b:aa:ab:4b:a3:0f:
3e:d0:ea:fe:2d:08:52:0f:47:53:a0:0e:23:86:35:e0:3b:a2:
7c:4c:29:60:36:5f:d9:de:88:3a:46:0d:2a:4c:02:e2:e1:b5:
73:d2:b0:e6:7d:b1:13:26:47:67:9e:63:d1:d0:e7:7b:02:29:
fc:27:11:0d:30:db:c1:a4:f3:4c:68:ba:25:f4:3a:61:6e:1a:
76:28:96:83:49:b3:1c:75:a9:3b:a2:c4:25:e3:e4:55:e0:0b:
bb:87:0d:03:bb:10:8e:40:2a:77:7f:3f:2d:04:cd:77:c7:6f:
75:ad:83:83:79:4e:ff:3f:56:5d:9f:cb:10:20:3e:13:da:f2:
24:30:5a:99:58:93:c6:c9:53:5b:7d:45:ed:26:4d:79:02:8e:
9f:02:ca:90:e9:80:36:09:98:a2:1a:75:8f:34:3c:95:c8:93:
83:cf:b6:d0:7a:26:19:b1:bb:df:7c:10:49:78:b8:b9:ff:5f:
10:db:78:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:21:13 2026 by rpki-client