Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B8DE66C5B9A11F18E739BE8CE1D38B0.roa
File: 8B8DE66C5B9A11F18E739BE8CE1D38B0.roa (raw, json)
Hash identifier: M8vJH4lPNqCvnolwQRQ+tXL6YXMNybdCJ0yXNhij+Iw=
Subject key identifier: 59:A2:59:96:53:12:46:FA:6C:19:3F:60:17:B9:42:AF:61:10:D7:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D071
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B8DE66C5B9A11F18E739BE8CE1D38B0.roa
Signing time: Fri 29 May 2026 20:11:15 +0000
ROA not before: Fri 29 May 2026 20:11:09 +0000
ROA not after: Wed 01 Jul 2026 20:11:09 +0000
asID: 62240
IP address blocks: 154.194.7.0/24 maxlen: 24
154.194.38.0/24 maxlen: 24
154.194.83.0/24 maxlen: 24
154.194.84.0/24 maxlen: 24
154.194.85.0/24 maxlen: 24
154.194.118.0/24 maxlen: 24
154.195.115.0/24 maxlen: 24
154.195.119.0/24 maxlen: 24
154.196.83.0/24 maxlen: 24
154.196.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118897 (0x1d071)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 20:11:09 2026 GMT
Not After : Jul 1 20:11:09 2026 GMT
Subject: CN=6a19f2e3-c619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d4:32:a1:d5:8e:5f:85:35:e7:ec:27:cf:ab:
df:01:bd:e2:42:5c:9a:75:60:e7:3f:04:98:e8:0d:
f6:c4:9f:7d:da:0b:aa:bc:05:96:b9:3e:42:e9:e4:
04:e4:93:3a:81:e9:30:47:65:41:bb:9f:d8:54:bb:
e2:09:bc:04:74:16:98:e4:52:0b:ec:cc:0d:31:d9:
84:23:37:05:48:99:69:4d:ca:c2:f9:36:f8:95:1a:
73:24:4a:7b:75:05:8d:2a:2d:00:7e:57:d0:c2:b7:
03:56:17:3e:6e:2a:0c:d2:db:a8:bb:c1:5a:f0:10:
82:a9:c5:1b:d9:24:3d:ae:71:53:8f:df:0c:4c:fe:
87:ac:00:0d:08:75:0b:6c:ac:29:a9:d1:3b:48:19:
f2:bd:ec:37:e9:bd:df:bf:d8:46:1e:f5:3a:2d:11:
b4:6d:60:25:76:81:76:a0:73:1c:54:eb:af:6d:d0:
43:d8:fd:cf:45:1d:d7:b2:e1:a9:91:81:cd:12:84:
37:a3:f0:a0:24:3d:05:b5:d8:fe:1e:7a:97:2e:bd:
30:3c:c0:be:1e:e5:9a:0e:74:28:01:b7:ac:a6:82:
9c:5e:4c:28:93:6d:91:e7:08:db:c0:63:a5:5a:70:
ca:47:6b:08:64:9d:82:d3:72:92:69:6d:a9:8e:4d:
d5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A2:59:96:53:12:46:FA:6C:19:3F:60:17:B9:42:AF:61:10:D7:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B8DE66C5B9A11F18E739BE8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.7.0/24
154.194.38.0/24
154.194.83.0-154.194.85.255
154.194.118.0/24
154.195.115.0/24
154.195.119.0/24
154.196.83.0/24
154.196.88.0/24
Signature Algorithm: sha256WithRSAEncryption
79:57:2f:dd:24:6e:03:16:d1:8d:5f:8e:67:ae:9c:a3:00:b9:
cb:b6:ce:fb:0f:08:b6:a9:42:e5:94:23:d8:23:3d:a3:18:81:
28:17:5a:21:a8:37:04:f4:bf:1c:90:ff:f9:e8:59:f3:0c:58:
92:94:b6:9b:8a:57:89:94:d7:13:2f:e0:07:f8:da:cf:b0:b7:
e0:3b:cc:11:92:2f:09:e0:82:ed:99:05:50:ac:0a:4b:a3:fe:
94:de:b5:30:44:34:82:4f:7e:1d:87:a6:64:2c:fc:43:53:ec:
38:7e:d7:60:f6:49:55:49:60:55:83:87:5c:8b:d3:d8:1e:d8:
01:f8:7a:a2:dc:9e:62:ee:42:92:db:1f:86:6c:4d:b4:22:3e:
af:99:79:b9:8b:b8:e3:e1:6d:f6:09:c7:3c:e4:f8:7b:b8:49:
5b:bd:a8:af:61:b7:25:f6:eb:03:98:61:b8:53:11:48:8e:61:
a0:f5:22:da:c9:d7:ad:c9:a1:28:32:47:e4:c9:1a:d0:70:e7:
94:69:e4:5a:05:09:f2:7d:a6:a0:05:8b:3b:9d:6e:da:ba:44:
09:e7:51:e6:d1:31:3b:4a:cf:0b:3c:80:2b:21:07:64:25:82:
b7:18:f0:37:31:be:57:06:35:83:c3:b8:cf:53:b4:44:db:e8:
4d:c7:dc:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:22 2026 by rpki-client