Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2B05AE060CE11F1AF57C619CF1D38B0.roa
File: E2B05AE060CE11F1AF57C619CF1D38B0.roa (raw, json)
Hash identifier: zJNZ3jl9YO9xLlLOIPKDdOns0I07kb4lY5mVV1dfh10=
Subject key identifier: 31:DF:78:66:49:09:BE:CE:67:81:FF:EB:1E:5C:F0:97:FA:05:75:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2B05AE060CE11F1AF57C619CF1D38B0.roa
Signing time: Fri 05 Jun 2026 11:08:31 +0000
ROA not before: Fri 05 Jun 2026 11:08:27 +0000
ROA not after: Wed 08 Jul 2026 11:08:27 +0000
asID: 274872
IP address blocks: 154.201.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119229 (0x1d1bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 5 11:08:27 2026 GMT
Not After : Jul 8 11:08:27 2026 GMT
Subject: CN=6a22ae2f-7068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4c:79:57:8e:18:b8:89:3a:ce:0d:40:11:47:
b1:3a:41:22:d5:a2:2e:67:2a:22:ad:3a:68:74:7d:
36:f3:ed:c2:9d:6e:1d:36:10:51:69:47:7a:c8:46:
5d:fc:f1:4d:4a:bd:4c:ca:27:65:fb:31:0c:86:d5:
22:30:a9:3d:98:27:a9:72:b8:3b:86:23:a8:66:d3:
20:3f:0b:57:15:2b:b1:6d:34:af:1f:a6:eb:64:50:
d0:84:26:1d:76:e3:ff:d1:17:83:bf:ca:03:9d:b5:
a1:95:fe:44:d6:8d:23:53:e3:ac:2b:65:a1:62:41:
05:3d:e9:fa:0e:00:74:ec:86:61:b6:70:80:4c:cd:
93:ce:ab:a1:0f:88:9f:f9:37:1f:f2:91:da:91:c4:
41:c3:5e:8d:e8:e6:01:23:a6:3d:4c:52:ee:20:36:
ce:cd:ff:bd:43:61:28:3e:b8:27:eb:e2:e5:f7:a7:
67:87:7e:31:81:62:cd:58:8d:f7:e9:ef:ed:3f:1f:
e3:29:9e:1b:76:78:df:eb:0d:b8:1a:e1:89:b8:0c:
d8:63:ba:82:4a:87:9f:0f:35:8d:6b:d1:d3:71:be:
46:65:6b:b6:26:ac:db:8d:5f:a9:96:2b:7e:d1:92:
28:22:9b:f9:e8:95:f0:d7:a3:fb:70:d0:14:6c:01:
a5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DF:78:66:49:09:BE:CE:67:81:FF:EB:1E:5C:F0:97:FA:05:75:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2B05AE060CE11F1AF57C619CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.0.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:44:8b:83:7e:1e:5a:ea:18:86:ea:a0:7d:ad:12:1d:0d:7e:
8d:b5:95:99:30:29:4c:c9:3e:b7:5d:43:a7:cd:2d:3d:30:22:
37:f4:92:fd:e2:78:d3:b5:66:7b:5b:68:33:99:04:c5:1c:0b:
72:9b:5f:ae:f5:03:1e:0d:63:84:09:f9:4a:d0:fe:b9:36:85:
55:ec:ff:84:f5:c1:96:10:53:4b:47:c7:d4:3a:f9:89:8e:7d:
fa:1f:8e:fb:df:8b:3b:00:77:22:7a:21:b1:04:d5:04:4c:b5:
b9:a5:a9:f8:f4:87:82:2c:31:d2:4d:e7:e7:c5:0d:20:2c:28:
29:e3:01:a8:5a:e4:23:7f:52:0e:4f:0c:4d:ae:cc:ba:0d:d6:
fb:60:a8:1e:64:1b:77:5c:d8:f6:36:eb:57:19:51:9c:6a:93:
dd:75:4f:35:16:85:e4:96:09:6d:8a:c3:29:67:25:0c:ac:49:
c3:6f:69:c3:a8:81:ab:9d:4e:e4:06:fb:06:10:f5:0b:bf:86:
20:78:ad:e9:5b:20:07:ee:30:b4:55:4b:1e:74:87:b7:f5:3a:
3c:e8:02:5e:40:0f:ad:d9:44:9f:28:8a:79:03:ec:72:b8:95:
80:55:65:c8:e1:49:15:e8:a5:e9:85:fa:36:45:ad:45:a5:fd:
5a:fa:86:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:52:39 2026 by rpki-client