Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96D9BA42618911F18FA7DE0ACF1D38B0.roa
File: 96D9BA42618911F18FA7DE0ACF1D38B0.roa (raw, json)
Hash identifier: MSz1RfR8n/xRo5StOMaTtpXS3KSzyMEeLZEYh6CG2fI=
Subject key identifier: 92:66:69:3D:5C:BD:68:DC:14:48:0F:C9:78:FB:BD:40:04:6D:3F:45
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D205
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96D9BA42618911F18FA7DE0ACF1D38B0.roa
Signing time: Sat 06 Jun 2026 09:25:00 +0000
ROA not before: Sat 06 Jun 2026 09:24:55 +0000
ROA not after: Sat 13 Jun 2026 09:24:55 +0000
asID: 138152
IP address blocks: 154.211.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 09:24:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119301 (0x1d205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 09:24:55 2026 GMT
Not After : Jun 13 09:24:55 2026 GMT
Subject: CN=6a23e76c-e5d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fe:6b:8f:a2:7a:fd:66:c7:4f:89:3c:c2:f8:
cd:92:44:e9:f6:5f:1b:80:91:65:07:97:5e:6d:e2:
65:db:07:2a:b3:df:0c:55:6e:f0:ac:b1:04:2b:0f:
ee:1d:7e:4d:8d:c6:fd:2c:6f:f9:1c:4f:56:37:e5:
c6:92:d1:5e:75:f5:99:9c:9e:e5:b1:00:c9:f7:29:
02:94:43:93:03:41:6b:1d:bd:7e:a4:f8:bd:25:0d:
f2:fc:c5:cf:23:3d:bb:77:87:0c:37:54:09:37:16:
fa:90:9a:e1:28:5b:6f:2d:c2:fd:1f:ec:54:fd:cc:
01:6e:d3:e9:f5:a5:0f:68:ce:75:fe:3f:78:04:8c:
ca:45:9a:78:9d:e2:e8:60:c6:3f:60:17:b4:d0:fd:
ea:b6:2c:8d:f3:ae:98:a7:17:13:35:3d:ba:f0:50:
66:2d:a0:7f:53:81:a6:cf:c7:69:53:6d:c7:22:2e:
81:a2:b9:16:51:7b:27:54:35:28:27:f5:d6:77:20:
be:77:30:c5:5d:50:d8:4c:04:f2:0c:30:a8:7e:d1:
39:38:09:ab:5c:e5:f9:84:83:7b:be:80:8c:56:4b:
3d:40:4e:0a:4a:45:a2:14:d0:dc:4a:9f:dd:c7:b2:
2f:d4:d2:72:e6:bf:f4:5a:b6:e6:70:d6:bc:07:70:
d8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:66:69:3D:5C:BD:68:DC:14:48:0F:C9:78:FB:BD:40:04:6D:3F:45
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96D9BA42618911F18FA7DE0ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.15.0/24
Signature Algorithm: sha256WithRSAEncryption
91:c5:8a:fb:d4:97:8f:87:4c:66:91:95:6d:40:16:30:40:01:
2e:da:95:81:ef:79:b6:16:5f:20:42:74:9c:f5:c7:7d:89:a4:
86:0d:1d:53:1f:b3:18:e4:ba:bc:a7:30:2a:a1:20:3f:5b:17:
f2:90:4d:9a:b4:b3:fb:a9:9d:81:68:2a:25:77:ab:ba:3c:55:
37:a4:93:b0:dc:98:4b:38:39:f5:95:11:bc:21:b1:fd:80:cb:
bf:a3:d7:f6:e9:ec:c1:bc:71:a4:cd:81:34:86:55:a4:41:e1:
1e:6c:2c:e6:90:6a:cd:63:55:3b:a6:b9:b0:46:2c:2b:07:35:
0a:af:5f:83:d3:da:e2:41:84:6c:96:35:9f:8a:95:ba:e3:53:
c0:ea:f8:96:16:61:7c:0c:42:51:d0:97:4e:d0:1f:00:d3:e8:
90:6b:43:60:18:c8:c5:9a:aa:1c:4a:7d:36:a3:d0:e1:97:50:
4b:51:13:38:5c:98:1e:dd:ca:ac:a3:b8:ef:55:0f:97:e3:81:
a7:51:46:43:0a:52:80:8c:d2:a9:be:fe:09:b1:71:97:60:8e:
53:f4:bb:28:c4:d6:24:68:18:63:0d:18:11:5f:a8:f8:b0:4b:
1a:f9:8b:2c:6d:57:c5:49:d8:58:31:58:3c:7e:de:1f:e9:53:
8c:97:04:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:54 2026 by rpki-client