Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E49418A624C11F18F223AAFCE1D38B0.roa
File: 9E49418A624C11F18F223AAFCE1D38B0.roa (raw, json)
Hash identifier: 2VLA4paNiI0ceSkHw2gnmXe5tNZPdmgNn3bZbLDdDdE=
Subject key identifier: 57:E3:E9:EE:7C:76:8E:AD:0A:93:74:00:E8:5F:F8:5D:79:3E:B2:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D22D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E49418A624C11F18F223AAFCE1D38B0.roa
Signing time: Sun 07 Jun 2026 08:41:04 +0000
ROA not before: Sun 07 Jun 2026 08:40:59 +0000
ROA not after: Wed 29 Jul 2026 08:40:59 +0000
asID: 214467
IP address blocks: 154.222.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119341 (0x1d22d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 7 08:40:59 2026 GMT
Not After : Jul 29 08:40:59 2026 GMT
Subject: CN=6a252ea0-1591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2e:d1:2d:af:31:a0:35:82:c1:7f:ff:38:84:
06:be:0f:89:d0:f6:7e:23:4d:ee:9a:2b:3d:e6:11:
00:ae:97:07:0d:b9:39:8a:71:10:48:f9:76:51:73:
d8:57:f1:92:2c:3d:d8:e0:18:5d:ca:34:3a:6a:12:
39:46:85:25:96:76:5f:05:41:d8:0e:59:dc:11:35:
60:f4:81:cc:a9:03:8a:9b:3c:c6:1e:1a:a3:87:8f:
ce:8c:65:de:7b:c4:d9:87:4c:e0:46:8e:15:97:3b:
9a:49:4c:05:2e:a6:94:4e:7b:c4:39:4b:bc:03:f0:
ea:5b:1e:65:94:7b:dd:24:f0:d1:34:c0:e4:84:e9:
a0:8d:1c:56:26:e4:a6:36:c2:3c:f6:e0:5e:8b:6a:
17:ea:3f:b0:94:5b:ac:ff:9d:41:66:e6:47:ea:30:
4c:d5:44:9c:ce:d8:cb:cf:89:1b:96:9a:94:e7:ae:
3b:87:10:37:9f:da:87:c3:b9:e2:a6:c4:88:92:83:
61:2a:18:dd:40:64:81:3e:28:09:75:f9:3b:7e:8a:
c0:18:f6:18:a5:d6:80:e6:26:f3:96:1d:4f:c3:64:
03:4d:0d:67:03:2c:1a:88:3b:07:17:b5:ae:3e:90:
f5:48:45:c9:7a:bd:48:94:38:0d:2c:6a:3a:7a:42:
e5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E3:E9:EE:7C:76:8E:AD:0A:93:74:00:E8:5F:F8:5D:79:3E:B2:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E49418A624C11F18F223AAFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.10.0/24
Signature Algorithm: sha256WithRSAEncryption
31:50:cf:35:19:1d:50:3c:5e:67:93:c7:b1:04:18:9c:f0:48:
ba:ff:0e:d1:17:25:e4:da:6e:19:d0:35:a9:0e:1c:22:ea:b1:
a2:8d:b2:2d:aa:ca:f7:60:32:e3:ee:45:d7:c0:e6:87:aa:9b:
a7:f9:7f:7c:3b:8c:13:61:12:79:d2:11:a5:22:4f:de:65:fc:
74:9b:4c:66:cc:89:7a:b3:2b:fb:a9:0a:5c:1e:1d:7d:bc:4b:
0c:0b:d0:dc:76:be:ee:95:4f:19:c5:ac:18:4e:7c:a1:d4:90:
2c:64:07:a3:f3:d3:d6:e6:11:1a:d7:1d:c5:b1:9f:2e:29:23:
6c:6a:fc:4f:9c:eb:99:81:ea:72:17:4a:66:07:c4:0d:42:7b:
8d:48:0a:74:1d:db:5c:0f:b7:87:4a:d4:24:27:67:b4:a8:a6:
23:fd:ea:35:ba:f8:55:cb:62:ea:53:8e:90:b0:ea:a2:b0:3d:
61:d4:76:0f:87:05:f5:83:08:76:35:9c:5c:b2:23:31:01:3a:
f9:05:0e:45:4e:ce:ba:5e:5c:5f:7e:1f:92:fb:42:80:18:95:
f0:76:47:8a:bb:4c:e2:d4:3e:b6:3c:8c:fd:a1:bc:f8:b9:f5:
bc:6c:de:30:e2:9d:9a:f2:a4:3a:8e:d7:3b:e4:14:0e:b7:ac:
e0:e8:99:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:39 2026 by rpki-client