Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BB2255C060B811F1B8F69614CF1D38B0.roa
File: BB2255C060B811F1B8F69614CF1D38B0.roa (raw, json)
Hash identifier: Qd+DpZmdxLT9BDZPc+ynCEvEhnwWMFCKDQS+cMMMW/c=
Subject key identifier: A9:D1:49:5A:C9:D7:33:A6:3E:84:1F:E1:B2:EC:55:21:2B:F0:37:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1B3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BB2255C060B811F1B8F69614CF1D38B0.roa
Signing time: Fri 05 Jun 2026 08:29:56 +0000
ROA not before: Fri 05 Jun 2026 08:29:51 +0000
ROA not after: Mon 13 Jul 2026 08:29:51 +0000
asID: 20457
IP address blocks: 154.198.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 16 Jun 2026 00:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119219 (0x1d1b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 5 08:29:51 2026 GMT
Not After : Jul 13 08:29:51 2026 GMT
Subject: CN=6a228904-f958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:93:de:d0:c0:8c:eb:27:f6:d9:01:74:6f:dd:
a6:fa:4b:06:ae:da:ae:83:32:48:66:83:01:f8:b0:
cb:e7:5a:49:40:93:51:f5:f6:6c:4f:a0:00:6a:29:
60:32:ec:f9:2a:ee:a7:fb:1c:41:e1:9b:0d:72:1f:
fb:b7:65:f0:1e:cd:72:fb:e4:fa:77:b2:55:b8:11:
3a:0c:d2:63:94:42:04:36:75:9f:c4:ca:eb:3a:54:
03:dd:1d:40:67:dd:e9:51:77:6a:bb:d0:b9:61:74:
0c:54:43:f0:d3:e1:de:53:7c:5d:eb:0a:54:44:15:
6d:c4:4a:e5:ae:6c:cd:91:c2:f4:88:73:7a:73:cf:
b4:52:a5:60:c1:df:d6:4d:bf:2c:f5:b0:b9:4b:0b:
52:c0:ef:64:cd:d4:b3:48:d6:f3:5c:3e:a4:db:39:
9c:03:71:9a:40:6e:58:0a:c3:0e:cf:c2:80:35:0b:
c4:8f:07:02:ff:2f:69:80:66:09:83:1b:ad:a3:2e:
92:38:b7:dd:07:50:aa:34:06:48:6b:d1:9a:aa:75:
a6:ec:4f:06:e7:13:10:49:60:b0:00:46:9f:22:9e:
00:38:a1:a2:ab:89:07:2a:4e:c9:33:9b:88:02:0d:
3f:05:c7:47:9e:93:3a:bb:d7:f0:8d:bd:ba:d5:ec:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D1:49:5A:C9:D7:33:A6:3E:84:1F:E1:B2:EC:55:21:2B:F0:37:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BB2255C060B811F1B8F69614CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.11.0/24
Signature Algorithm: sha256WithRSAEncryption
49:67:ed:62:a1:ae:93:5d:b1:db:35:26:61:ca:01:6d:ea:be:
1b:98:bc:64:08:3c:b2:49:2a:a5:12:d9:10:93:8f:0a:a6:ef:
2f:81:16:7b:0d:2d:6a:b7:62:15:25:49:ef:40:27:9c:be:ff:
c0:eb:44:09:0c:ae:ac:20:de:29:1d:7c:87:36:ed:30:d5:66:
d9:35:7e:f5:26:b5:37:63:b7:2e:8d:66:d1:01:87:42:c5:ba:
54:06:1c:9f:2e:97:21:da:f5:72:08:1d:5c:8f:7e:1c:59:5e:
92:e5:41:df:c2:c2:9f:70:61:62:ce:d3:11:87:5f:b4:55:37:
54:67:db:53:3d:2a:d2:f2:46:15:b3:27:e4:5f:2c:5e:3a:80:
a0:53:1f:52:38:56:f8:9e:0e:9b:6b:b1:19:ef:d9:b3:b4:d4:
cf:85:93:ce:fc:22:05:3a:b7:a4:a8:c2:00:58:69:79:2f:c1:
fd:38:b3:89:4d:2d:ac:b6:99:05:be:fe:f7:5f:c9:7e:d4:08:
32:80:ad:b6:40:a6:cc:79:35:22:6f:bd:77:f7:ff:a7:fe:35:
e5:40:6a:f4:e1:03:09:28:e9:cc:d8:cd:85:32:52:33:13:cb:
64:70:e5:fc:a3:58:ea:b4:51:c3:c1:7a:aa:37:42:0c:7c:ab:
b5:44:3a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:13:43 2026 by rpki-client