Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89CF192C5BC211F1BD583AD8CE1D38B0.roa
File: 89CF192C5BC211F1BD583AD8CE1D38B0.roa (raw, json)
Hash identifier: 11XWwO+hs3lCy2VQpaFG4cc9a8LdvzwMjtpbw6TmLIk=
Subject key identifier: A2:B2:46:CA:72:D5:43:AA:30:D8:F7:39:24:3C:27:14:90:D7:E7:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D0C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89CF192C5BC211F1BD583AD8CE1D38B0.roa
Signing time: Sat 30 May 2026 00:57:32 +0000
ROA not before: Sat 30 May 2026 00:00:27 +0000
ROA not after: Sun 30 May 2027 00:00:27 +0000
asID: 209242
IP address blocks: 154.192.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118979 (0x1d0c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 00:00:27 2026 GMT
Not After : May 30 00:00:27 2027 GMT
Subject: CN=6a1a35fc-c0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d0:9a:a6:59:7e:a8:50:32:b2:5f:28:82:9b:
13:5e:c9:48:43:a6:14:d8:d2:5e:5a:2a:37:d2:85:
88:ec:e2:6c:07:f1:0d:13:6d:9b:fb:c8:23:88:e4:
0c:83:45:0f:90:11:89:a6:06:c4:ae:bd:48:30:fd:
38:35:93:a5:8f:74:ea:49:c9:bc:75:82:e3:2e:53:
5a:d9:53:49:5f:a0:24:14:3f:87:8a:77:16:aa:8b:
95:eb:ca:1f:6f:00:79:e5:78:d0:6a:7f:c9:cc:81:
27:1a:ec:53:1e:d0:d5:a6:c7:34:4c:c1:ef:b0:2d:
ca:4c:bf:d3:08:1a:0d:2d:37:d5:fe:e0:2e:28:f1:
ed:49:fb:b1:67:85:2c:c1:a3:27:a6:91:0c:d6:b0:
f3:05:10:ef:f4:79:f8:4d:b4:80:0a:eb:57:5d:d7:
8a:5e:e8:f6:af:a6:b2:3b:44:a9:4e:2a:85:ef:35:
75:d3:f4:e8:ab:1c:24:47:ef:a6:cd:f3:c2:62:d1:
a2:51:6f:98:51:ad:ea:e7:b6:03:d5:22:5f:9c:b9:
33:1f:0d:96:b6:08:dc:29:f6:c8:d0:e7:66:66:27:
5c:82:68:72:e0:fd:81:54:44:d6:8b:1f:db:b2:e6:
37:18:32:5d:fe:67:f6:f9:8b:81:76:b4:6a:d2:de:
60:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B2:46:CA:72:D5:43:AA:30:D8:F7:39:24:3C:27:14:90:D7:E7:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89CF192C5BC211F1BD583AD8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.192.0.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:ae:9b:8e:a8:6d:74:c3:b6:e7:08:43:d9:68:94:a8:b3:6f:
4c:9f:92:3b:1c:1a:b4:7f:59:bd:3d:c4:91:9a:9c:55:c8:3b:
1f:b1:14:2b:fc:55:16:45:fd:34:3d:37:0d:b4:8b:ff:d0:91:
d9:bf:c6:cc:35:d5:9d:c2:1a:af:71:e4:91:f1:a2:e8:e6:f3:
cd:fa:69:ed:06:6b:e1:14:41:cd:4d:ba:de:4b:8e:e8:cc:42:
b9:bb:02:8d:03:52:70:0c:19:16:78:a1:b9:79:a3:b4:36:cf:
7b:71:9b:bd:59:9c:40:dd:23:58:f8:16:0c:c4:ad:90:e7:46:
80:ea:61:25:ad:38:05:00:b7:e8:8e:f9:a9:a2:9c:4d:1d:4b:
7a:a5:6b:cc:a4:43:92:35:fc:2d:0e:26:ea:88:99:a3:b7:c8:
aa:81:67:26:12:2b:36:a3:a2:2c:d5:cf:2c:07:57:e0:3a:05:
58:4c:76:fa:33:b5:28:34:72:1b:0e:d1:94:78:d4:cf:0a:6e:
35:15:e9:91:a6:cf:7b:af:2e:dc:1c:d2:d2:59:42:4d:8b:a5:
6a:95:f9:69:11:40:18:f5:51:3d:ed:80:05:5f:b6:9c:30:66:
b2:4c:1b:2e:7c:b9:9d:ea:db:79:40:00:70:11:7a:01:c9:11:
3d:f0:65:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:01:30 2026 by rpki-client