Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95B0E83A55E911F18277DFD2CE1D38B0.roa
File: 95B0E83A55E911F18277DFD2CE1D38B0.roa (raw, json)
Hash identifier: ZhLzHLAoRLTxQh3GrRofy3YqR4dEuLFoSs43UiuerdI=
Subject key identifier: 71:6C:FA:4E:6E:76:E4:AD:E9:40:9E:03:36:BF:7F:0E:80:1A:98:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE1C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95B0E83A55E911F18277DFD2CE1D38B0.roa
Signing time: Fri 22 May 2026 14:21:55 +0000
ROA not before: Fri 22 May 2026 14:21:51 +0000
ROA not after: Wed 24 Jun 2026 14:21:51 +0000
asID: 200758
IP address blocks: 154.83.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118300 (0x1ce1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 14:21:51 2026 GMT
Not After : Jun 24 14:21:51 2026 GMT
Subject: CN=6a106683-4777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:98:ed:43:ba:82:8b:96:4f:ba:f3:25:7f:ff:
69:ae:ef:d8:c2:97:b9:82:32:05:fd:55:84:89:9f:
89:d9:d2:87:a0:e1:f5:c6:21:8c:4c:17:36:f0:c1:
5c:96:22:2a:b3:ef:31:80:07:3f:6c:d6:19:98:5d:
fe:d5:9b:d8:ed:26:3b:a9:7a:ce:30:bb:45:59:10:
ee:d2:9e:e2:94:17:d8:78:fa:ae:7e:76:df:fd:83:
a9:03:e6:da:da:e5:1e:97:bf:0e:58:86:02:09:1b:
10:02:02:d4:a5:c2:bc:0c:57:56:52:02:ed:93:68:
b3:37:72:28:dd:ff:14:87:d4:cc:f8:33:8e:5e:b1:
e7:9b:03:cf:60:7a:6f:32:7e:dd:29:13:17:af:77:
ac:d9:ef:85:9c:3e:26:9c:4a:3a:92:96:f0:a4:41:
f0:42:89:eb:6c:f4:66:f8:53:f4:be:20:c5:a9:c6:
8a:0f:52:4a:14:78:c3:fa:c1:93:dd:1d:21:f4:c1:
2f:29:ff:29:39:84:b8:a7:86:79:1a:37:a2:4e:ef:
fd:b3:de:18:ec:63:2c:0f:87:e0:cd:d7:d7:63:82:
ea:7f:ce:bf:00:90:b7:d1:00:02:04:db:81:99:85:
79:7e:f6:77:eb:87:32:b3:e5:f8:f6:af:93:53:18:
c8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:6C:FA:4E:6E:76:E4:AD:E9:40:9E:03:36:BF:7F:0E:80:1A:98:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95B0E83A55E911F18277DFD2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.186.0/24
Signature Algorithm: sha256WithRSAEncryption
68:7e:ab:43:8e:ee:e9:4c:84:5d:09:7c:29:32:f1:14:61:0e:
28:f9:92:0f:41:0a:93:55:5c:c6:a3:35:59:cb:22:1f:88:4c:
c5:5c:ea:b9:80:18:c1:cc:72:d1:ea:e1:be:b3:46:00:32:ee:
4b:62:4f:17:c1:c1:8b:89:cb:47:bb:71:99:50:52:75:81:57:
75:cd:65:b8:08:cb:e0:71:28:62:4d:5a:b3:d2:04:12:c0:0a:
6e:04:72:26:b8:7e:4d:10:2c:61:1e:a5:70:06:a0:47:26:be:
3d:f2:b4:e0:41:fc:cf:2a:32:42:e9:03:17:fa:53:49:d5:da:
79:f1:47:11:6e:56:c4:34:5a:63:ec:bd:f7:cc:a2:a7:e9:36:
68:3c:58:74:2a:98:9b:a8:9d:a9:e7:f9:dc:ae:dc:a5:2e:1c:
9e:7f:81:b4:fd:c2:a8:e9:cf:85:76:a7:54:83:5e:67:db:fd:
cc:e4:3c:e9:da:92:37:83:8e:82:f9:0f:cb:ab:c4:f8:44:0f:
20:bb:25:33:64:cc:33:e6:4a:44:a9:da:4d:6e:19:56:88:e0:
d8:78:66:a9:39:26:13:de:69:8a:2c:87:88:72:c3:a4:13:c6:
80:16:c7:c8:73:55:38:0e:db:65:80:d8:79:1b:59:94:bf:17:
2a:46:64:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:05:29 2026 by rpki-client