Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6861DB260BA11F1B247DFA2CE1D38B0.roa
File: E6861DB260BA11F1B247DFA2CE1D38B0.roa (raw, json)
Hash identifier: FdSiX2mDzJ7aIFAidOzEJJEbm/4229qe72ELAOcjnXM=
Subject key identifier: 64:9F:84:E4:5C:77:B3:CB:D0:9E:E6:E1:86:E5:13:A4:68:10:BD:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1B5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6861DB260BA11F1B247DFA2CE1D38B0.roa
Signing time: Fri 05 Jun 2026 08:45:28 +0000
ROA not before: Fri 05 Jun 2026 08:45:22 +0000
ROA not after: Sat 25 Jul 2026 08:45:22 +0000
asID: 272854
IP address blocks: 154.194.13.0/24 maxlen: 24
154.194.14.0/24 maxlen: 24
154.194.54.0/24 maxlen: 24
154.197.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119221 (0x1d1b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 5 08:45:22 2026 GMT
Not After : Jul 25 08:45:22 2026 GMT
Subject: CN=6a228ca7-ff8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ea:72:8c:1b:7c:d1:cd:97:4d:5c:a8:66:5d:
ec:6d:56:25:96:65:b8:18:82:21:9f:e4:89:31:5a:
11:cb:ac:0a:d7:48:ae:97:df:08:52:09:37:6e:4a:
cd:ee:4b:83:af:6a:4e:38:b6:ea:4f:b8:0f:5f:74:
24:f8:86:85:86:54:95:da:62:2a:b1:cc:2c:19:d9:
52:64:31:ce:02:65:cb:3e:3c:9b:b7:c7:3c:f0:32:
a6:be:c1:a9:3b:0f:23:a6:ab:57:c4:4a:83:15:d0:
8a:96:8d:4f:53:51:7a:0b:70:f1:41:c9:9c:d8:b6:
4c:0a:88:15:2b:fb:ae:83:ed:5d:e2:0d:40:2e:b1:
c0:57:aa:d4:34:be:5b:bc:1e:6b:ca:c1:4c:f5:38:
6f:5a:c6:68:65:08:46:55:5c:6d:29:62:4f:cf:2f:
15:3f:95:2b:f7:0e:7c:1c:4c:08:83:b4:26:cb:b7:
4b:bc:78:4d:02:e3:b4:60:00:a0:4f:ac:e0:96:50:
ee:54:ed:1f:8c:bb:d7:80:cc:79:4f:09:19:79:e9:
b3:32:c3:36:e8:88:fb:65:94:9d:cc:79:7c:3c:c6:
ed:64:b7:e6:93:ed:5e:b9:7f:a4:87:a7:45:ec:24:
8f:bd:19:7b:a7:c7:5b:f2:65:de:9b:2e:71:68:01:
9d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9F:84:E4:5C:77:B3:CB:D0:9E:E6:E1:86:E5:13:A4:68:10:BD:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6861DB260BA11F1B247DFA2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.13.0-154.194.14.255
154.194.54.0/24
154.197.1.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:61:34:b0:e2:dc:fb:1c:59:e4:ad:05:cd:8f:0a:29:d0:fa:
03:79:e9:af:4d:0b:83:5e:c7:39:f8:a2:e5:d8:70:b0:54:d4:
9a:b1:2e:03:c3:7f:95:a4:70:21:2c:ac:ee:e1:7f:8e:f3:9c:
92:a3:3e:8f:9d:ad:c3:e7:e3:2e:b1:d5:b7:72:eb:fb:16:df:
a5:ef:82:15:b6:f1:0b:d6:3c:41:8d:1b:79:bd:00:38:fb:fd:
42:25:9e:10:65:8c:d1:64:50:24:4c:03:9e:5d:bd:e6:e1:20:
e3:60:1b:e2:07:88:c8:85:ad:a5:f7:7c:c4:4e:31:2a:f8:6e:
28:48:91:4f:ef:9f:d1:a0:de:c0:46:24:a6:bf:e0:21:65:6a:
fa:b0:5a:a5:cb:11:00:41:bf:b6:90:59:d5:c7:18:16:88:78:
70:87:00:5a:2e:ce:0d:04:a7:ea:f8:91:e2:f3:16:85:75:0d:
72:4a:ef:6a:32:d9:cc:64:77:6a:9b:7b:70:e8:34:79:c5:f4:
f7:b6:79:c4:7a:3c:84:64:c7:06:35:12:f9:5e:08:2d:5c:1a:
5e:c6:18:a4:8d:4d:92:ba:37:c7:17:f8:bc:83:ee:9c:6f:d1:
90:15:f3:7e:1a:5a:b0:25:7a:16:1c:04:4c:9a:81:34:50:3a:
97:b3:75:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:45:22 2026 by rpki-client