Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8E903E658FA11F18376E502CF1D38B0.roa
File: B8E903E658FA11F18376E502CF1D38B0.roa (raw, json)
Hash identifier: +YIRqsx8wAGQX6yz770oqKn3/P/5S6BBuVD0FVWDT/A=
Subject key identifier: 4F:6A:7D:65:85:7F:79:92:88:72:87:AB:DB:3E:44:E2:45:18:49:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CFBF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8E903E658FA11F18376E502CF1D38B0.roa
Signing time: Tue 26 May 2026 12:02:09 +0000
ROA not before: Tue 26 May 2026 12:02:01 +0000
ROA not after: Sat 04 Jul 2026 12:02:01 +0000
asID: 198652
IP address blocks: 154.83.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118719 (0x1cfbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 26 12:02:01 2026 GMT
Not After : Jul 4 12:02:01 2026 GMT
Subject: CN=6a158bc1-9129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b1:5a:69:4c:98:2e:3a:bd:ed:98:44:eb:f8:
b3:82:3b:85:3b:af:fd:1c:35:55:03:6c:7c:12:da:
15:0e:3f:7a:45:32:2e:f9:33:f6:2e:49:96:96:4e:
be:6f:5d:13:14:ef:7f:fb:a9:fb:76:01:9c:02:92:
6e:d4:d8:e3:b9:55:44:49:8c:7e:d4:14:f7:f5:4c:
e0:96:95:57:a0:d4:88:1b:dd:72:f6:46:31:af:0e:
00:70:6b:a8:b8:42:bc:00:e8:fc:3e:d1:5b:62:0c:
23:1f:f3:c2:72:38:f4:93:39:b9:a6:87:8c:87:2c:
81:f0:17:09:63:e2:7a:ea:86:12:42:a5:99:1b:f4:
0f:73:87:4c:a3:7e:9c:58:e6:62:26:b6:fe:3d:5c:
6e:dd:91:13:5a:c0:0d:e0:2b:8c:10:fa:66:93:d2:
2b:28:80:c9:f1:10:8c:79:fe:ee:96:7c:aa:c7:c9:
11:5f:b7:d8:a0:70:39:d9:46:c1:41:70:50:82:76:
58:ff:6e:ca:24:d7:5c:ca:04:c8:04:ec:8e:a6:13:
81:f1:73:ea:af:90:32:0c:b7:28:ad:7f:c0:0e:03:
17:e9:d7:da:bf:5c:39:b0:4c:bd:f6:c8:fc:86:b9:
e3:ab:7f:ba:b9:50:50:ef:07:91:ba:e3:38:e7:d0:
3c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6A:7D:65:85:7F:79:92:88:72:87:AB:DB:3E:44:E2:45:18:49:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8E903E658FA11F18376E502CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.210.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:96:8b:42:50:88:ff:2c:07:9f:a3:08:a9:08:b8:6d:76:d7:
0d:a6:78:9a:1b:d3:35:7f:a5:3f:87:a8:2c:81:55:f0:ec:08:
1f:69:d8:42:d3:4a:3e:4d:3a:e8:b9:17:f8:2f:3c:94:ed:e6:
dc:94:3c:25:71:c6:af:6a:6d:92:ee:2b:1b:40:50:e8:db:56:
ba:55:af:a6:36:24:b5:51:9f:e4:51:7f:5b:04:98:32:3e:76:
58:bc:be:f5:d8:3a:3d:71:9b:53:cd:6b:be:56:b9:f2:d1:76:
1f:61:af:bb:e2:18:fb:63:2b:ef:8f:13:12:7c:69:97:9d:1e:
6c:3d:10:5c:26:c9:19:ba:c7:9b:72:4e:ad:c1:1e:34:36:0e:
60:bf:6b:ba:29:f1:f2:f2:7b:ac:8e:5e:59:20:6a:57:35:75:
d7:db:f6:5d:17:e1:8b:63:37:d5:ae:3c:31:73:5b:c1:32:a7:
86:a1:45:ee:e2:72:f7:c3:78:26:cb:23:7f:e8:76:50:55:df:
a6:4c:f6:44:2c:f9:3b:2d:54:d5:63:32:1b:41:51:64:f9:7f:
22:4e:c7:0f:c4:67:39:0d:4e:d9:4d:32:3e:4f:da:9e:fc:a3:
9c:b3:47:f8:0f:75:3c:82:a5:66:e6:bd:e7:99:86:e2:13:11:
aa:c2:84:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:32 2026 by rpki-client