Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E91E94FC550F11F19840C3A5CE1D38B0.roa
File: E91E94FC550F11F19840C3A5CE1D38B0.roa (raw, json)
Hash identifier: Dp5MsMfHtMubToinH2fY3w8gIOqjzNOI5Um35zlXnzE=
Subject key identifier: 3B:C5:3E:7F:FC:42:DF:34:6E:31:D2:86:BF:7F:D9:7B:BF:BD:18:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD54
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E91E94FC550F11F19840C3A5CE1D38B0.roa
Signing time: Thu 21 May 2026 12:23:45 +0000
ROA not before: Thu 21 May 2026 12:23:41 +0000
ROA not after: Wed 19 Aug 2026 12:23:41 +0000
asID: 55020
IP address blocks: 154.91.48.0/20 maxlen: 24
154.91.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 16 Jun 2026 00:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118100 (0x1cd54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 12:23:41 2026 GMT
Not After : Aug 19 12:23:41 2026 GMT
Subject: CN=6a0ef951-3c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4a:e0:84:13:15:89:6e:04:db:c9:05:08:49:
e0:a3:eb:e9:07:ea:24:66:85:24:fe:41:09:7a:7d:
db:5f:83:c8:b2:37:f1:4a:8b:db:09:15:6d:a5:3f:
74:af:3c:43:fa:db:9c:e9:39:3f:86:6c:22:4e:60:
ad:98:df:5a:f1:b4:3f:b7:d3:43:6e:f8:28:d2:d1:
82:44:57:66:25:3d:ac:98:58:21:7b:76:a1:a8:36:
d1:15:97:f2:86:b2:0b:0c:12:17:34:93:a0:fb:c2:
fd:0f:be:3b:e4:e8:f1:f1:38:5e:68:ec:56:a6:96:
dd:20:e8:e8:a1:34:ca:16:b2:61:c1:8c:30:31:6e:
ea:db:d0:9d:8d:96:60:0e:20:58:d0:37:96:0b:c5:
ce:3b:ee:92:07:52:c4:f5:de:87:b5:9c:1b:de:08:
0e:dc:f4:dc:54:d7:a0:26:00:62:1d:69:ea:ab:40:
23:68:86:85:70:cc:80:e6:5b:fa:9a:75:3b:7e:00:
39:b1:ad:47:19:01:35:33:da:f8:9b:f1:64:df:b9:
19:5d:a4:4e:a5:1f:78:c5:eb:56:e4:e1:e8:a0:fa:
00:21:f2:e8:b5:9b:45:3c:4f:74:09:ee:ce:3e:8f:
63:be:1b:59:6d:d7:7c:00:b4:c9:1d:96:78:3c:41:
b4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C5:3E:7F:FC:42:DF:34:6E:31:D2:86:BF:7F:D9:7B:BF:BD:18:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E91E94FC550F11F19840C3A5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.48.0/20
154.91.176.0/20
Signature Algorithm: sha256WithRSAEncryption
c7:86:17:74:3d:e1:6e:63:a5:a3:fd:7f:8f:8f:a9:4e:58:40:
5b:40:29:95:a2:ca:21:2e:68:b8:4b:e1:15:a7:8e:43:0b:67:
9e:29:17:40:6c:40:fd:66:0d:df:89:60:02:59:e7:b0:a2:7c:
3e:f0:da:b6:80:4a:32:b2:4c:05:02:b6:b9:0c:ab:79:57:2d:
14:36:9c:6c:f4:6e:49:20:38:09:16:50:33:10:90:77:98:3f:
26:9b:f6:a4:96:1a:ff:aa:e7:b2:d8:13:9e:6b:11:ee:3d:47:
9c:58:25:e9:e6:af:15:bb:d0:9d:5d:43:dd:af:6d:59:59:74:
e5:26:5e:72:b1:54:19:61:5e:2e:c1:28:bf:fd:e2:fa:d9:d6:
24:bd:77:c2:ed:8f:82:bf:42:77:ac:ae:57:08:0e:5a:b2:bd:
3e:9c:93:da:f2:9c:43:8a:fc:7e:63:c0:ad:4a:a0:35:a0:37:
8a:f8:ac:c0:ac:0f:36:dc:57:ee:4f:77:f3:79:b7:d7:4d:5a:
97:c9:5f:c1:40:ce:ff:5b:14:3a:c4:f8:27:9c:ab:62:88:94:
25:49:07:1c:ca:2c:18:a1:df:68:e9:fc:13:30:cc:48:eb:de:
fd:7b:10:99:6b:68:0e:ea:a7:86:89:ce:4e:64:4f:1f:27:6c:
ab:54:c6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:47:34 2026 by rpki-client