Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9880BD605BA711F1A55792B8CE1D38B0.roa
File: 9880BD605BA711F1A55792B8CE1D38B0.roa (raw, json)
Hash identifier: F0H44bEyio+DUwxz4WRcNiaLo1kxtNYQkxwkdQ4T3PE=
Subject key identifier: 97:E7:97:36:4F:E8:58:2E:93:13:57:8C:94:86:85:72:59:1F:D9:13
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D09F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9880BD605BA711F1A55792B8CE1D38B0.roa
Signing time: Fri 29 May 2026 21:44:40 +0000
ROA not before: Fri 29 May 2026 21:44:30 +0000
ROA not after: Wed 01 Jul 2026 21:44:30 +0000
asID: 62240
IP address blocks: 154.194.112.0/24 maxlen: 24
154.194.113.0/24 maxlen: 24
154.195.16.0/24 maxlen: 24
154.195.17.0/24 maxlen: 24
154.195.18.0/24 maxlen: 24
154.195.19.0/24 maxlen: 24
154.195.172.0/24 maxlen: 24
154.195.173.0/24 maxlen: 24
154.195.174.0/24 maxlen: 24
154.195.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118943 (0x1d09f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 21:44:30 2026 GMT
Not After : Jul 1 21:44:30 2026 GMT
Subject: CN=6a1a08c8-5ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cc:ff:56:8f:c5:b1:6e:8f:35:cb:59:db:34:
79:bf:45:8c:c1:53:b3:e2:e4:76:58:b2:42:a6:a5:
5f:f6:1f:d4:9b:b5:ea:08:8c:0a:6b:11:2e:19:14:
a3:da:d1:e0:45:29:f6:0f:d9:70:93:00:ff:e8:22:
a9:e3:99:9a:51:b0:88:57:5d:8e:4c:3a:9f:5b:e0:
43:bf:8d:ca:32:b0:63:d0:ac:2d:e4:5a:a0:d3:6a:
e9:af:d8:0b:79:c6:b5:9b:ea:7e:fb:5d:fe:b5:8e:
fd:72:39:fb:46:c3:46:b0:db:4b:a1:86:14:b2:f5:
9e:ac:fc:02:5e:53:3f:22:ef:14:92:cd:d2:a5:fa:
7b:b1:ca:9d:34:11:20:7c:4d:46:63:42:6c:3b:d1:
8d:78:28:8c:47:3f:db:5c:d6:48:33:29:46:36:79:
0e:d9:02:33:c2:fd:ca:51:ab:58:6d:a4:fb:df:fc:
92:5a:40:db:e9:7d:d6:79:b0:e0:3a:0a:f6:a8:e2:
ef:47:5b:da:3f:f1:f2:c2:7f:c2:0d:32:5b:13:b9:
48:4a:f9:43:9a:ea:29:2f:e0:1c:96:47:5f:a1:81:
04:83:c4:a3:49:63:6c:cf:5b:2a:24:fb:c5:f0:c2:
f2:e9:3a:33:03:0c:14:33:b5:ca:0c:f5:83:20:33:
8c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E7:97:36:4F:E8:58:2E:93:13:57:8C:94:86:85:72:59:1F:D9:13
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9880BD605BA711F1A55792B8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.112.0/23
154.195.16.0/22
154.195.172.0/22
Signature Algorithm: sha256WithRSAEncryption
12:4f:c1:99:2b:cf:fc:49:0e:d0:12:c7:27:38:34:5e:be:61:
25:41:29:c3:0b:19:f7:fb:2a:fb:4b:73:82:db:45:f7:85:80:
95:c5:e6:cc:03:33:cd:b6:fe:79:23:dc:ef:63:fc:f0:ca:bd:
70:90:08:c3:52:fb:b2:1c:58:22:98:66:f6:31:af:33:0c:ec:
9b:25:06:4d:19:8f:7a:0e:63:e8:14:49:f1:1e:41:63:cb:f5:
9b:dd:67:7a:0e:df:a4:bf:3f:63:e2:fc:15:1a:c5:a5:c8:a3:
b0:69:02:1b:ad:1b:71:b7:d2:1a:c4:37:e7:f1:a7:6c:b7:ea:
56:1f:ae:34:f4:28:01:04:8e:4d:68:34:44:6b:b9:7c:bf:59:
d0:8f:d5:a6:a4:8f:2b:6f:40:86:fa:24:52:d5:54:92:b5:a0:
b2:a8:92:27:5c:ed:79:fb:b8:c6:d4:df:b4:0c:ef:7f:ea:68:
cb:34:ca:b3:ad:a8:03:c2:00:dc:45:e8:82:05:3c:3c:2b:94:
0f:45:f0:4c:fe:d7:bd:5b:f5:71:9d:8f:31:03:e4:e8:61:35:
7a:32:c5:6c:76:5a:bb:1b:9c:a3:ca:e1:73:7e:2b:a3:0e:b8:
c3:ce:97:11:35:dd:17:30:41:65:99:a3:56:c4:4d:bf:ed:86:
db:5e:6b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:38 2026 by rpki-client