Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EE42414647511F1BF0D01C3CE1D38B0.roa
File: 8EE42414647511F1BF0D01C3CE1D38B0.roa (raw, json)
Hash identifier: QaRJ1P1FdxUk13DuV83gC/70/JamQsyVqhGOoNKUxqM=
Subject key identifier: F6:89:B8:67:E3:62:92:C7:26:12:B3:F1:F3:A2:A2:4E:FF:C0:11:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D25A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EE42414647511F1BF0D01C3CE1D38B0.roa
Signing time: Wed 10 Jun 2026 02:39:10 +0000
ROA not before: Wed 10 Jun 2026 02:39:05 +0000
ROA not after: Wed 17 Jun 2026 02:39:05 +0000
asID: 150150
IP address blocks: 154.89.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119386 (0x1d25a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 10 02:39:05 2026 GMT
Not After : Jun 17 02:39:05 2026 GMT
Subject: CN=6a28ce4e-5685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:46:6c:0a:a8:e1:77:3c:65:d6:15:ff:94:1f:
46:56:e1:9c:86:77:db:6a:c1:cd:6f:9b:b1:18:24:
5e:c4:15:a3:9c:2e:1b:8e:03:5d:47:e2:8d:77:52:
c7:d2:e6:1a:d7:df:7b:98:61:3a:45:de:48:df:76:
fb:cd:97:ba:d5:36:21:e4:7b:9a:70:b0:3a:ec:32:
be:40:a2:1c:c0:16:ed:ce:82:03:a3:95:7a:df:2f:
6e:47:b4:7a:83:25:d5:fd:ce:fd:d3:dc:d6:e4:78:
02:a6:c1:d5:34:30:03:4a:4d:8a:a9:c8:78:7e:ef:
6e:dd:fa:ba:e1:13:8d:6f:65:b5:9c:30:56:4f:33:
33:07:02:97:29:d4:a5:04:48:68:bc:3d:97:72:49:
c0:50:23:55:e6:b0:b1:83:07:99:95:17:70:a2:ad:
43:5e:5d:43:98:6d:cf:42:a5:ac:be:c6:04:fa:2d:
01:e9:fa:52:76:3b:0d:f2:c9:ed:35:0a:79:42:67:
6c:d4:3b:c5:13:66:8f:04:c5:13:a8:95:ca:dd:70:
68:ac:66:fc:b0:9e:7d:97:4b:d8:2c:15:57:58:ba:
30:6e:eb:ad:ba:72:87:ff:09:3b:a0:b8:08:a5:06:
07:17:91:08:52:74:33:a9:a6:54:05:9a:18:3d:3f:
70:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:89:B8:67:E3:62:92:C7:26:12:B3:F1:F3:A2:A2:4E:FF:C0:11:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EE42414647511F1BF0D01C3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.0.0/24
Signature Algorithm: sha256WithRSAEncryption
91:90:b4:95:fa:de:6f:7d:a7:8e:54:4d:7d:bf:4e:7b:db:90:
4b:75:ef:84:ba:1e:3a:0e:0e:f3:5c:44:de:6d:3b:8c:08:04:
e2:e7:07:72:ca:d2:a1:b9:48:d2:00:a1:df:c5:9d:23:7e:01:
89:0b:60:b4:a7:9b:6f:c7:f9:df:14:41:10:d8:e4:c9:19:94:
7e:60:b5:d6:b9:ad:dd:13:21:63:6c:9b:5e:31:1f:61:ef:4b:
34:73:aa:3c:7e:28:5a:67:f7:38:af:05:c1:1a:c0:ba:57:ef:
a5:0a:f8:e4:bc:02:41:50:45:ef:7e:59:0d:20:e6:5e:86:32:
67:69:5b:cd:d5:8b:16:11:cd:d4:f0:07:8c:03:e0:7c:d4:93:
bf:07:ed:2a:82:3a:5a:61:b2:24:88:72:c5:8d:0e:e0:1f:40:
5a:3c:fa:aa:2a:50:17:41:87:fb:58:63:42:9e:ba:19:d2:bf:
62:ac:5d:f9:e0:6e:c2:40:7f:e1:8c:3b:c7:e9:a0:98:4b:3f:
de:7f:65:51:41:86:91:d3:7e:fb:d9:1f:98:9a:ea:36:9c:c7:
b0:1c:39:f5:f6:b5:e3:77:69:34:df:df:b4:84:fd:3f:51:78:
d3:ea:05:2a:69:2d:6a:4f:2e:11:b9:32:9a:3b:d4:cc:2d:0e:
6d:c1:3d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:55:45 2026 by rpki-client