Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC96551C600011F1923DC4B4CE1D38B0.roa
File: CC96551C600011F1923DC4B4CE1D38B0.roa (raw, json)
Hash identifier: pCMKjH8baiLOfejPY5f8lAJzYEON7cZ+O5vxHwkRj/g=
Subject key identifier: 5E:44:DB:0A:E4:81:25:70:9B:A0:D4:7D:BB:C3:2B:95:8F:7F:29:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1A6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC96551C600011F1923DC4B4CE1D38B0.roa
Signing time: Thu 04 Jun 2026 10:33:18 +0000
ROA not before: Thu 04 Jun 2026 10:33:13 +0000
ROA not after: Fri 10 Jul 2026 10:33:13 +0000
asID: 136907
IP address blocks: 154.95.72.0/22 maxlen: 24
154.95.96.0/22 maxlen: 24
154.95.100.0/22 maxlen: 24
154.95.104.0/22 maxlen: 24
154.95.108.0/22 maxlen: 24
154.95.112.0/22 maxlen: 24
154.95.116.0/22 maxlen: 24
154.95.120.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119206 (0x1d1a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 10:33:13 2026 GMT
Not After : Jul 10 10:33:13 2026 GMT
Subject: CN=6a21546e-26af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:62:07:e3:59:59:1b:0a:97:5b:c4:15:d9:b7:
28:77:11:ad:1d:89:94:ea:db:37:ad:33:46:f7:68:
3c:8f:bf:b6:20:c8:9f:eb:a2:4c:62:6f:b3:a1:f6:
bf:fa:79:49:d6:eb:7e:98:4e:eb:7f:06:db:26:d3:
41:63:c8:6c:ab:dd:73:d6:d8:2c:5d:b0:2c:11:a5:
6c:c4:a2:b8:fd:38:80:6b:57:6e:b1:e6:9b:65:1f:
04:83:80:13:e2:0e:fd:ee:28:40:be:dc:e3:a8:41:
89:26:db:51:b5:40:13:22:d9:b7:d6:fd:39:66:cf:
7a:39:a7:8c:ef:9e:d5:f8:2b:36:a1:6a:35:00:c4:
4c:ca:08:86:23:76:41:f3:2f:95:cd:a2:f7:56:3e:
fe:00:6f:87:44:29:d1:33:02:9b:1f:56:16:e3:f3:
f6:58:5a:97:9a:66:28:38:fd:2f:80:4c:2b:2b:ff:
98:c1:e0:99:af:cc:30:2d:2b:96:c4:c6:da:be:7c:
5f:26:74:90:5a:90:1c:88:11:f8:1e:b8:0c:e3:f8:
59:2f:69:ae:ff:4c:8f:5d:b9:c9:04:c0:22:f5:3d:
fc:63:75:90:20:d3:07:8a:f6:b4:f4:a1:3f:80:32:
5c:46:79:a7:e9:7a:e1:39:13:f5:55:1f:d0:32:a7:
17:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:44:DB:0A:E4:81:25:70:9B:A0:D4:7D:BB:C3:2B:95:8F:7F:29:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC96551C600011F1923DC4B4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.72.0/22
154.95.96.0-154.95.121.255
Signature Algorithm: sha256WithRSAEncryption
48:5e:bc:f6:b9:d2:59:b2:c1:10:88:89:76:10:8a:f9:1c:fc:
13:bd:8a:ad:e2:ed:58:d3:c6:b6:0c:d0:65:2f:93:44:0d:85:
d0:16:62:f5:be:5a:26:f1:63:8e:86:72:cf:e4:f2:37:69:87:
2c:32:a8:ee:b1:4e:35:12:f5:6b:b6:55:3a:14:c3:a4:ba:ce:
aa:16:21:06:9b:a6:41:cc:2c:d6:1f:42:91:a1:74:70:09:ef:
63:41:61:62:3f:ac:6d:d9:48:25:c4:05:44:01:17:b8:0b:42:
b2:ba:6f:28:8f:ff:2a:52:92:27:0a:fd:e4:8c:40:39:59:c5:
6c:99:3d:88:50:13:ef:0c:64:e4:42:0e:20:64:80:75:33:a6:
65:a2:36:69:1f:1e:6a:14:a1:65:e7:d0:00:fc:09:f1:0b:93:
2d:76:93:18:00:53:af:d8:cc:35:df:f9:27:8d:aa:85:b8:fb:
ef:50:cf:fb:8f:ba:2d:e4:4e:ed:98:9f:1c:ed:87:20:eb:02:
b2:cb:02:f1:5c:c5:99:e0:b6:6b:20:70:1a:c7:da:02:41:a5:
d8:bc:3c:6e:2a:82:59:19:91:cc:98:92:24:51:b7:f5:28:37:
74:f7:e1:1e:8e:07:89:44:7a:e9:50:53:24:50:63:63:74:aa:
87:97:b1:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:45:31 2026 by rpki-client