Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3837A8A5A6211F1AE651813CF1D38B0.roa
File: B3837A8A5A6211F1AE651813CF1D38B0.roa (raw, json)
Hash identifier: 998UVZzkkP80H6KJiTNY2u9HI8LsH/cLgWHOVDtEJSY=
Subject key identifier: BE:0F:06:44:03:06:D4:F5:A6:67:FC:C4:78:36:62:57:EF:93:5B:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D010
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3837A8A5A6211F1AE651813CF1D38B0.roa
Signing time: Thu 28 May 2026 06:58:59 +0000
ROA not before: Thu 28 May 2026 06:58:55 +0000
ROA not after: Wed 01 Jul 2026 06:58:55 +0000
asID: 62240
IP address blocks: 154.194.36.0/24 maxlen: 24
154.194.59.0/24 maxlen: 24
154.194.67.0/24 maxlen: 24
154.194.207.0/24 maxlen: 24
154.198.63.0/24 maxlen: 24
154.198.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118800 (0x1d010)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 06:58:55 2026 GMT
Not After : Jul 1 06:58:55 2026 GMT
Subject: CN=6a17e7b3-0bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8e:68:5c:f5:f4:59:86:c3:6b:5f:b9:1b:57:
02:71:f2:d1:bc:b8:d4:f9:e5:e6:dd:0d:be:23:79:
e2:d9:d5:80:e0:4c:45:62:ab:06:72:e1:47:75:e8:
18:c1:89:7d:a0:b7:10:70:25:65:8d:e6:1e:00:45:
f1:ac:64:43:89:00:95:9d:6c:39:7a:f2:ea:b6:5d:
49:d4:c8:76:f9:69:41:ab:b6:a6:1c:08:12:a0:c8:
9e:27:4f:6e:b7:43:74:6a:39:88:08:d1:2f:4c:19:
c1:d0:63:63:83:b5:10:1a:4f:8c:49:7e:54:cc:05:
8c:9d:7a:47:38:0f:23:92:9f:e9:96:98:01:77:11:
e3:77:0d:5b:a3:45:73:11:fc:30:64:00:88:3f:fe:
e0:fc:0e:94:59:36:c4:31:06:4d:46:72:05:03:ff:
8b:cc:ba:76:d9:0e:24:21:f4:f0:4c:8c:07:92:70:
65:da:9a:f2:3d:de:3e:b9:1f:40:61:07:8e:90:2c:
e9:04:67:ef:99:a1:67:49:71:4a:24:5f:f5:fd:13:
6e:73:5f:63:63:22:0e:78:c6:27:8c:1b:56:14:39:
46:ef:5d:96:a2:9b:49:12:98:5b:80:39:c8:7b:51:
ab:3e:a1:0c:9e:54:7a:17:68:11:03:09:0b:e6:04:
12:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0F:06:44:03:06:D4:F5:A6:67:FC:C4:78:36:62:57:EF:93:5B:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3837A8A5A6211F1AE651813CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.36.0/24
154.194.59.0/24
154.194.67.0/24
154.194.207.0/24
154.198.63.0/24
154.198.191.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:56:ef:81:cb:09:50:75:b3:05:df:e2:7e:15:d6:0a:e3:3c:
68:f9:95:b5:1e:13:64:72:9f:6e:47:90:fe:b0:0a:cb:8a:78:
a8:6a:de:be:6b:41:d7:45:61:4b:fa:1e:28:4a:03:59:25:3d:
8e:bd:9e:da:ec:7c:e6:25:83:38:59:fb:7e:a2:8c:d4:98:7f:
ac:43:fd:49:6c:7c:73:9c:eb:a1:50:94:80:b0:ad:84:eb:b3:
21:ea:b3:ae:d5:89:19:7d:73:6b:96:17:5e:c8:55:a7:b4:ab:
bf:06:60:8e:ca:fd:b5:e1:27:2c:d0:06:76:e8:dc:31:a3:09:
d8:e7:c2:7b:6e:d0:f5:53:8c:3e:2f:e9:33:05:86:62:06:6f:
74:4c:79:85:32:84:a3:0d:48:ee:70:c5:8b:eb:94:43:8a:e8:
1c:e0:bf:16:3f:71:c5:bf:58:37:68:36:67:88:83:0a:30:5f:
7b:d9:12:0f:36:5e:ec:eb:ba:ec:13:3f:26:6d:82:af:97:ff:
b5:77:20:2f:c0:a8:8b:6d:23:ed:42:a4:ba:44:dc:11:f3:54:
f5:de:e3:67:49:29:61:d6:ba:fa:ab:c9:28:6b:96:f4:0f:2f:
f9:c4:b4:50:4c:3b:e2:45:f4:70:ae:5f:37:e8:5b:36:e1:8b:
16:ec:cb:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:31 2026 by rpki-client