Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B78CDF145BA611F198C245B3CE1D38B0.roa
File: B78CDF145BA611F198C245B3CE1D38B0.roa (raw, json)
Hash identifier: /QQP/a+u02z+6AOGp+q/Hr8ZySqLcFKyqmAdsbM60N4=
Subject key identifier: E4:61:DD:66:C2:88:78:C6:3F:AF:B4:8F:41:E6:80:DA:47:E9:54:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D09D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B78CDF145BA611F198C245B3CE1D38B0.roa
Signing time: Fri 29 May 2026 21:38:23 +0000
ROA not before: Fri 29 May 2026 21:38:18 +0000
ROA not after: Wed 01 Jul 2026 21:38:18 +0000
asID: 62240
IP address blocks: 154.195.148.0/24 maxlen: 24
154.195.149.0/24 maxlen: 24
154.195.150.0/24 maxlen: 24
154.195.151.0/24 maxlen: 24
154.195.167.0/24 maxlen: 24
154.195.168.0/24 maxlen: 24
154.195.169.0/24 maxlen: 24
154.195.170.0/24 maxlen: 24
154.195.171.0/24 maxlen: 24
154.196.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118941 (0x1d09d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 21:38:18 2026 GMT
Not After : Jul 1 21:38:18 2026 GMT
Subject: CN=6a1a074f-3497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6b:14:ad:57:f9:41:13:33:f2:6c:77:d5:77:
f4:a9:54:36:07:cc:de:01:a5:b9:18:24:60:36:a0:
4d:1e:96:7e:fd:1c:f8:c6:43:fd:78:b8:13:aa:87:
3f:69:f5:b7:03:cc:aa:9c:37:10:42:c7:c7:41:b9:
e7:79:df:8f:09:3f:e4:28:77:5a:93:8c:f6:ed:ac:
e2:39:83:36:25:40:d9:9c:94:60:13:6a:a3:2b:b9:
b5:0b:db:20:f0:e9:1d:83:2c:05:9c:b0:00:4f:72:
c0:63:38:fc:38:aa:76:65:57:66:9a:0f:e6:b9:3d:
e0:96:40:37:57:9d:c2:49:3d:2c:ca:cc:ee:d2:81:
ef:59:ba:92:81:ac:50:e1:c8:f7:39:57:35:06:d2:
90:a4:4f:9a:57:69:d7:1f:eb:1f:d8:e8:bc:93:0a:
28:17:2a:7e:e5:19:5c:41:a8:d8:06:b5:67:1b:4e:
90:80:ee:31:1d:f4:f3:6d:b0:d5:96:a7:0f:7d:0e:
ee:4f:17:79:bd:83:a3:85:6f:11:9e:98:4a:b1:4c:
37:27:ff:71:c3:38:15:2b:ea:bd:52:c8:ae:45:5a:
a4:8b:eb:75:c4:c9:45:e3:61:1e:da:3e:0d:d8:45:
55:60:47:b4:9f:00:52:4a:83:ab:d8:3e:19:e9:94:
99:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:61:DD:66:C2:88:78:C6:3F:AF:B4:8F:41:E6:80:DA:47:E9:54:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B78CDF145BA611F198C245B3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.148.0/22
154.195.167.0-154.195.171.255
154.196.30.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:a7:51:ac:19:98:a4:1e:05:d7:08:e2:89:a1:6e:92:e1:c2:
f0:be:a7:98:0d:a1:66:98:4f:e6:46:70:13:b1:ce:6a:55:68:
28:28:c3:f2:15:20:c6:6a:41:f0:95:27:5e:96:5a:cc:7e:9c:
03:d2:fb:53:72:a2:c8:6f:1b:aa:19:61:b9:40:ad:4e:55:aa:
b2:71:b9:83:f9:a4:f6:3d:f8:b2:62:44:8e:e9:54:39:99:45:
f8:b9:61:48:42:5b:3a:3c:40:a8:ed:58:49:d2:bd:43:4b:39:
dd:19:fd:30:63:80:56:8b:02:9a:04:d0:1a:e5:c7:d9:95:f8:
20:72:2d:b4:70:12:85:0b:3f:6f:8e:e9:0e:2d:aa:e1:45:2f:
97:24:b6:ef:33:d8:a8:50:ec:19:a9:a1:a8:d4:84:b5:dc:13:
d0:b5:fd:84:ef:2b:c7:2a:c1:72:95:ca:5d:cb:eb:86:43:cf:
7f:e1:23:93:dd:31:79:48:50:d7:00:bc:56:23:e2:9e:e5:41:
3e:af:a9:2a:b1:27:78:7d:5c:90:d5:34:25:57:6c:1f:3d:f0:
ba:73:e8:b5:38:81:34:3c:b1:2f:c1:65:6a:51:60:93:ce:fd:
4c:c0:e3:ba:a2:1b:3a:4b:d5:57:30:bc:de:4d:f1:b5:68:4d:
f7:64:81:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:16 2026 by rpki-client