Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B76BAE44C6C11F19C57F111CF1D38B0.roa
File: 1B76BAE44C6C11F19C57F111CF1D38B0.roa (raw, json)
Hash identifier: hHvJ+RHHVYRYTRmkKuBkdhaIJb86/K+a4or/x7a/Bxs=
Subject key identifier: C1:91:43:DE:97:95:ED:08:23:27:07:80:1E:D6:39:58:A3:95:BA:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CAC3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B76BAE44C6C11F19C57F111CF1D38B0.roa
Signing time: Sun 10 May 2026 12:31:03 +0000
ROA not before: Sun 10 May 2026 12:30:58 +0000
ROA not after: Tue 16 Jun 2026 12:30:58 +0000
asID: 151352
IP address blocks: 154.85.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117443 (0x1cac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 12:30:58 2026 GMT
Not After : Jun 16 12:30:58 2026 GMT
Subject: CN=6a007a87-df32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2f:8c:61:f2:95:02:c6:08:29:c4:41:d8:c4:
a9:00:1a:95:d3:ad:50:0c:14:8d:0d:3b:f9:f5:87:
75:78:75:34:de:78:fd:3f:35:46:d7:66:76:8c:b6:
f6:1b:18:c9:2a:39:a5:4e:af:67:6b:cd:ba:c4:a4:
bc:20:bc:ef:5a:30:00:65:0b:dd:42:8e:66:11:a1:
58:ba:5b:eb:7d:71:0c:2a:b1:79:af:3c:2a:77:8a:
99:ae:fd:f8:ac:f4:d6:1e:11:2c:1d:43:be:3e:26:
0b:56:5a:b4:bd:af:cc:e8:c0:82:6b:6b:a3:98:7d:
79:fc:7a:a3:72:39:0d:92:b3:98:30:9f:84:11:71:
a6:a7:6b:fa:34:51:0d:06:2e:2b:2b:ba:11:42:1a:
82:68:b2:e7:b6:2d:b5:93:05:e8:a6:a7:e7:56:34:
19:42:2c:42:34:0c:3f:67:fe:85:a9:52:75:d6:d8:
0a:1b:54:d5:90:a2:d2:af:b7:f6:fe:e2:c4:7f:81:
0e:e7:96:93:0b:5a:de:66:89:6f:a7:10:22:3c:a2:
30:52:d8:b1:8b:00:7c:34:9f:46:52:02:1b:a1:0a:
34:dd:20:92:fc:2f:47:94:4d:07:6e:7b:aa:ea:1f:
10:94:b2:de:9b:f4:a1:41:e2:e9:92:78:7e:fe:45:
14:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:91:43:DE:97:95:ED:08:23:27:07:80:1E:D6:39:58:A3:95:BA:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B76BAE44C6C11F19C57F111CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.20.0/24
Signature Algorithm: sha256WithRSAEncryption
67:dc:6f:39:91:6e:bf:e1:f3:d4:29:34:bb:f8:ee:01:05:e0:
48:98:55:f0:9a:c1:20:49:9d:1b:20:93:b0:d7:c4:d2:e1:66:
eb:f2:d1:8d:71:65:55:5a:da:b3:c8:96:3d:39:5a:5a:58:17:
ba:be:55:08:e5:09:96:e3:87:8b:fb:7f:ec:ad:7e:5d:6b:f0:
cb:c0:0f:e1:a9:d1:f7:0a:f0:9b:23:11:74:13:ff:38:81:53:
0f:ef:8d:b4:21:82:cf:14:99:54:1a:39:5d:e0:4d:28:80:95:
00:d8:c6:bf:b0:fb:a9:58:f5:59:a8:e1:03:bf:d2:be:77:ec:
37:6f:6a:a6:4a:4c:d2:1d:63:e7:f4:af:5d:9b:0b:79:42:0c:
69:f7:62:5e:ed:fc:46:80:2f:09:12:eb:3b:e0:69:5e:c6:c3:
96:d1:1d:df:e7:a9:6a:e8:b2:24:34:88:c1:9a:a9:4a:ee:62:
a3:91:6f:c2:2d:04:6e:ed:c9:c6:51:8c:23:a4:59:6d:3a:63:
96:ed:71:e5:e3:0d:86:55:34:07:d0:06:cb:56:b0:15:88:d8:
5f:f6:d7:b6:07:60:16:1b:6e:05:45:38:4f:d1:9d:9a:79:ff:
9d:ba:88:57:26:e4:4d:22:d8:e8:b2:1b:f4:01:11:6f:24:73:
b8:fd:ce:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:45:27 2026 by rpki-client