Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F14F5C2664BC11F18FDC00FCCE1D38B0.roa
File: F14F5C2664BC11F18FDC00FCCE1D38B0.roa (raw, json)
Hash identifier: Yajg4VCqnzcGVYWfawehUezAvumbYj1K/ji4/ny7A+Q=
Subject key identifier: 9B:22:F0:53:E0:6F:04:C9:89:57:24:98:C6:38:0B:11:20:47:54:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D27E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F14F5C2664BC11F18FDC00FCCE1D38B0.roa
Signing time: Wed 10 Jun 2026 11:10:09 +0000
ROA not before: Wed 10 Jun 2026 11:10:04 +0000
ROA not after: Thu 16 Jul 2026 11:10:04 +0000
asID: 22773
IP address blocks: 154.202.14.0/24 maxlen: 24
154.202.15.0/24 maxlen: 24
154.202.16.0/24 maxlen: 24
154.202.17.0/24 maxlen: 24
154.202.18.0/24 maxlen: 24
154.202.19.0/24 maxlen: 24
154.202.20.0/24 maxlen: 24
154.202.21.0/24 maxlen: 24
154.202.22.0/24 maxlen: 24
154.202.23.0/24 maxlen: 24
154.213.206.0/24 maxlen: 24
154.213.207.0/24 maxlen: 24
154.213.208.0/24 maxlen: 24
154.213.209.0/24 maxlen: 24
154.213.210.0/24 maxlen: 24
154.213.213.0/24 maxlen: 24
154.213.214.0/24 maxlen: 24
154.213.215.0/24 maxlen: 24
154.213.216.0/24 maxlen: 24
154.213.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119422 (0x1d27e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 10 11:10:04 2026 GMT
Not After : Jul 16 11:10:04 2026 GMT
Subject: CN=6a294611-1cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:56:af:e0:49:10:6a:d1:71:da:74:ed:e2:59:
f6:ef:3c:2b:77:0e:44:61:cb:08:6e:38:a9:b5:2c:
07:4f:0f:72:db:c1:0d:3f:27:df:98:c5:a1:34:92:
64:95:8e:63:48:1d:5c:8f:b5:c5:cb:57:1d:ba:c9:
53:47:2b:46:e9:73:c8:bf:06:8a:ad:70:fa:32:df:
b0:56:84:65:bb:90:ea:0d:5a:fd:04:e3:eb:2d:26:
a5:aa:e6:76:21:3f:af:8e:4f:76:de:9a:fb:df:b6:
ee:76:0a:52:a6:39:a8:50:0c:6b:3b:4c:4f:2a:3e:
04:78:97:82:b6:4a:45:47:fa:85:1a:ff:d2:87:93:
e6:7b:a0:49:30:a5:a3:72:12:3e:fe:33:aa:73:91:
8d:73:59:2b:47:3c:ee:94:d9:45:96:91:6e:58:d3:
5f:5c:df:12:30:28:7a:90:7c:fd:22:eb:33:a5:ad:
0a:7d:fa:f6:c1:4a:7e:ad:13:35:3f:0a:4a:77:f2:
30:18:34:4a:ac:35:90:af:e9:75:40:a8:52:ef:97:
57:f2:00:19:e4:31:14:f2:5b:f9:c4:68:84:cf:0e:
87:17:8b:18:0d:07:55:a9:30:58:c9:1c:c7:8a:ac:
41:e7:b7:5d:89:9e:37:0c:e1:f8:c7:ee:97:e7:72:
bf:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:22:F0:53:E0:6F:04:C9:89:57:24:98:C6:38:0B:11:20:47:54:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F14F5C2664BC11F18FDC00FCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.14.0-154.202.23.255
154.213.206.0-154.213.210.255
154.213.213.0-154.213.217.255
Signature Algorithm: sha256WithRSAEncryption
4a:6c:30:54:35:6b:09:5e:c3:aa:37:06:5a:9e:b1:ba:87:ec:
1e:0f:ef:12:bf:25:85:15:63:f2:8c:9a:d0:c4:30:cb:e2:a7:
ed:66:3e:9f:c2:56:0a:01:16:2b:98:b3:00:f6:6f:fd:d3:60:
2f:63:03:6e:0f:d5:00:14:b3:d3:76:c9:78:89:a6:37:46:be:
5b:c4:ad:74:6f:53:62:d0:6a:03:dc:c1:e0:57:28:00:bc:7b:
1c:28:5c:69:96:15:46:19:dc:f8:30:ce:ef:7b:30:a9:ac:da:
bf:ef:00:1d:2c:c7:a7:ba:ff:47:ae:74:8c:10:ab:db:09:b5:
fd:b4:bc:35:f9:db:33:79:d1:a3:58:a7:ec:a0:5f:ca:aa:bc:
87:8a:e5:ca:3e:84:87:5b:13:a0:83:b5:02:66:f2:fe:f3:66:
18:ca:33:76:ee:0d:63:b7:ce:7b:c2:0c:88:7c:96:0d:77:d3:
9d:b2:cb:9c:51:42:3d:70:5c:33:3e:2f:56:a9:a6:7e:ae:fe:
45:1d:c2:a5:64:76:c8:0f:04:8d:2e:10:a1:d7:1a:7b:8c:b1:
78:a7:f4:0d:e9:09:5f:46:e4:9f:ee:d7:5c:53:09:9a:33:f1:
4d:5e:fe:d1:40:4d:2a:63:a5:fe:d3:e4:4c:b6:65:bf:e8:be:
3c:cf:d1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:45:12 2026 by rpki-client