Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF6C055C2ADD11F1BC18A6B4DAE4EC9C.roa
File: AF6C055C2ADD11F1BC18A6B4DAE4EC9C.roa (raw, json)
Hash identifier: F5aljKDO2s9FwC2yd6P9cRIlIvJkJD9zdl9+JxAt4yY=
Subject key identifier: C6:04:56:5C:2D:92:0D:CE:04:EB:32:DC:17:DA:65:A1:A0:21:68:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C185
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF6C055C2ADD11F1BC18A6B4DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 19:38:25 +0000
ROA not before: Sat 28 Mar 2026 19:38:20 +0000
ROA not after: Sat 16 May 2026 19:38:20 +0000
asID: 40779
IP address blocks: 154.222.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115077 (0x1c185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 19:38:20 2026 GMT
Not After : May 16 19:38:20 2026 GMT
Subject: CN=69c82e31-8554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d1:3f:b5:dc:4a:ee:04:52:ce:bb:88:b3:27:
79:7a:b2:e0:24:ec:f9:cb:4b:d6:49:fd:d5:bd:33:
af:7d:87:f9:15:87:a9:f9:9a:ca:2a:ad:c2:fe:87:
7d:fd:a9:fb:02:0f:8a:b5:97:e4:1a:39:11:d6:b4:
35:e6:b2:1b:58:fc:8f:bd:1d:a7:39:23:f6:e5:39:
bd:f0:f2:5e:0e:b7:4d:4b:b4:1c:a8:ba:b4:9d:14:
42:8d:5c:78:99:d9:2b:1d:dc:c9:be:0e:bd:14:59:
6e:9a:09:4b:b6:f9:57:c4:25:a5:b4:89:c1:31:ed:
d4:4d:3d:d0:b2:70:d0:57:5e:9e:4c:07:e6:b6:6b:
66:f4:1e:bd:e2:3a:a4:b3:fb:ec:66:45:74:e2:3b:
68:eb:5b:be:61:ec:7c:7c:a4:22:c4:49:76:3b:b9:
e5:50:d9:70:e7:6c:e6:f5:1f:1c:12:89:80:6b:e0:
47:08:47:ea:a8:18:52:ac:6f:89:60:7c:15:c5:9c:
60:b0:d2:4e:07:bd:50:c2:08:df:b6:0a:9a:fb:e6:
b3:f1:b6:a7:f2:a0:d6:37:7a:22:e2:4c:92:85:79:
47:ce:9f:c9:f9:d1:ab:ac:ad:32:9b:a7:8e:42:01:
f4:10:f1:b5:a2:4c:11:8a:39:9e:5d:6b:50:a1:e7:
57:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:04:56:5C:2D:92:0D:CE:04:EB:32:DC:17:DA:65:A1:A0:21:68:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF6C055C2ADD11F1BC18A6B4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.16.0/20
Signature Algorithm: sha256WithRSAEncryption
62:26:6f:6c:a1:63:58:af:01:44:d9:18:c5:5f:b9:62:b0:93:
f3:91:15:2b:b1:c0:42:f9:b7:13:4a:84:f6:c0:4b:40:7a:9c:
bf:7e:a1:31:a7:86:62:e0:21:1a:b8:69:97:53:d9:5d:9a:00:
e5:13:fd:60:90:5a:09:27:0b:52:8f:a1:fb:f7:40:e3:4c:64:
89:e6:82:24:59:75:31:6d:f7:77:06:54:e6:fb:f8:fd:bc:44:
fe:70:fd:ae:33:df:55:e3:90:0b:47:9c:ec:20:81:22:c8:03:
c7:de:a8:a8:1b:be:82:85:f4:ce:7a:96:3b:00:ce:83:85:10:
5f:fd:6b:17:ed:8c:5f:89:24:b3:11:31:58:40:55:90:97:41:
1d:b5:d6:e0:32:6f:32:51:f1:29:b3:bc:3a:55:6f:0d:f9:19:
78:8a:9a:f6:4c:6b:8a:36:3f:cc:0c:03:7b:41:3d:33:19:c2:
88:e7:39:42:ae:b4:4f:86:24:27:77:dd:fc:8d:6d:c0:09:1f:
b9:d0:60:9c:ea:10:f6:28:34:35:cf:29:66:53:75:7f:dc:ed:
2e:4f:1d:d1:03:ca:b7:b1:03:c8:25:d3:0c:73:ea:0d:21:3d:
0e:22:a2:ad:a0:a8:5e:cf:85:c3:3c:f4:56:4e:af:43:66:3e:
85:37:6c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:21 2026 by rpki-client