Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA90085A5D8A11F1B08AB3C4CE1D38B0.roa
File: FA90085A5D8A11F1B08AB3C4CE1D38B0.roa (raw, json)
Hash identifier: 4vNSoiXxt4/eJv3mN3Ahv/o113CsueCi+wORkPL7WeM=
Subject key identifier: 94:AC:07:CC:E8:86:E0:CC:42:18:18:A4:75:13:CC:F3:C8:F6:A1:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D122
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA90085A5D8A11F1B08AB3C4CE1D38B0.roa
Signing time: Mon 01 Jun 2026 07:24:52 +0000
ROA not before: Mon 01 Jun 2026 07:24:47 +0000
ROA not after: Mon 06 Jul 2026 07:24:47 +0000
asID: 264605
IP address blocks: 154.88.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119074 (0x1d122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 07:24:47 2026 GMT
Not After : Jul 6 07:24:47 2026 GMT
Subject: CN=6a1d33c4-0d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:31:f8:8b:32:78:62:78:0a:8d:34:62:41:6c:
73:48:04:46:44:95:fa:d1:9e:12:84:ec:e1:36:8b:
51:45:e4:88:34:e3:9b:8e:f4:5e:1f:b4:f5:03:67:
8b:4e:70:58:fb:f6:07:c1:a1:25:7b:f0:43:ff:19:
22:fb:40:6e:13:21:4c:5c:65:e8:00:b7:de:62:aa:
e7:df:c0:50:00:07:6f:4c:cb:fe:0d:4c:f9:87:b4:
25:ad:ed:aa:9e:05:f9:67:cb:23:8c:ca:f1:be:7d:
6c:26:7b:8d:ac:87:90:1d:b7:3d:ce:9f:dc:5c:d3:
4e:54:e0:1d:c1:4c:b8:15:5d:c5:0c:23:93:dd:96:
cf:57:68:58:51:95:a0:7a:b6:3c:4a:96:01:fc:5e:
13:5d:75:e5:35:81:ee:b2:3e:22:11:25:b6:3f:f5:
69:28:00:f2:47:df:23:9c:64:c9:ef:7c:c8:4b:58:
71:1d:bc:ec:f9:0e:16:ec:e7:ed:71:ad:24:18:b2:
d2:1b:15:18:d2:46:01:f5:35:6c:6b:2b:38:ca:63:
34:40:ed:d1:46:dd:1b:7f:12:5f:2a:7e:69:39:8b:
4d:2c:38:66:13:9a:22:63:b2:1c:fa:dc:ca:51:a4:
28:3c:b3:17:1e:cd:f3:85:65:df:04:c8:4f:7b:b7:
0c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AC:07:CC:E8:86:E0:CC:42:18:18:A4:75:13:CC:F3:C8:F6:A1:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA90085A5D8A11F1B08AB3C4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.192.0/18
Signature Algorithm: sha256WithRSAEncryption
5c:eb:5c:97:f0:a0:72:4b:22:c6:0b:bf:d1:08:8f:c5:8a:75:
cd:7a:2a:2f:39:3f:94:77:59:57:24:6b:43:eb:0d:be:2d:99:
be:30:51:db:37:e4:0e:c0:97:f8:2f:29:f6:3f:15:8f:a6:21:
7c:bf:05:b5:f9:5d:d6:b1:2f:05:e6:20:ae:1b:14:49:f3:34:
fc:15:5a:e1:a2:84:90:46:a6:b7:39:2c:fe:d1:f2:34:bf:42:
f9:a9:bf:b3:c3:b7:82:92:ff:a4:c8:d4:f4:0f:40:16:73:7b:
f2:eb:97:4a:75:20:71:68:a9:64:70:5d:c7:f5:32:b2:8d:00:
59:06:6f:52:94:2f:7a:98:2b:fa:06:f7:f0:6d:c9:a8:42:ef:
96:51:71:ba:76:e8:3a:e8:f7:f2:ff:81:bc:5a:ec:14:65:f1:
89:95:63:2f:a7:e9:be:60:ba:5b:ad:2e:a8:1d:46:df:57:71:
5a:f2:20:18:75:bb:bd:de:3e:e9:60:f6:c4:1e:89:a4:a0:47:
c4:8e:85:2b:c8:75:e8:0f:de:fc:fd:e8:4b:2a:67:f1:db:b7:
e5:38:9f:9a:64:6a:4d:d2:07:2f:09:3d:56:89:84:62:30:ce:
dd:46:2d:94:66:3c:1a:68:ba:92:f3:2b:d9:51:8b:29:87:5b:
af:ce:0c:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:06:50 2026 by rpki-client