Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B57EEB4460C11F1950E79D4CE1D38B0.roa
File: 5B57EEB4460C11F1950E79D4CE1D38B0.roa (raw, json)
Hash identifier: caOTCA1qnjwH8+oTsnQGyUCMIoSfmDozhMqsT9g4iYw=
Subject key identifier: FB:28:99:DD:2B:26:47:6A:52:09:35:DC:5F:A0:97:18:1E:F8:D1:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C92D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B57EEB4460C11F1950E79D4CE1D38B0.roa
Signing time: Sat 02 May 2026 09:50:31 +0000
ROA not before: Sat 02 May 2026 09:50:27 +0000
ROA not after: Tue 09 Jun 2026 09:50:27 +0000
asID: 138915
IP address blocks: 154.95.68.0/24 maxlen: 24
154.95.69.0/24 maxlen: 24
154.95.70.0/23 maxlen: 24
154.95.76.0/24 maxlen: 24
154.95.77.0/24 maxlen: 24
154.95.78.0/24 maxlen: 24
154.95.79.0/24 maxlen: 24
154.95.80.0/24 maxlen: 24
154.95.81.0/24 maxlen: 24
154.95.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 06:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117037 (0x1c92d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 09:50:27 2026 GMT
Not After : Jun 9 09:50:27 2026 GMT
Subject: CN=69f5c8e7-0a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b0:02:0b:42:df:9c:fe:3c:d9:65:b4:dc:cc:
74:d9:c6:d6:93:be:7b:7c:22:5f:b3:97:99:7c:69:
48:5f:8b:76:2e:90:f2:4f:e8:1f:e1:06:73:02:0c:
67:35:ba:4a:54:45:c2:e6:09:d4:fa:81:db:55:96:
0b:92:85:74:3c:ab:04:44:72:a7:5e:94:90:ea:97:
e3:f7:41:d8:35:14:f1:0c:79:b2:67:e0:f9:26:be:
08:1a:00:1c:b9:b3:38:fd:53:61:8a:87:de:2d:0b:
ec:f7:29:6e:dd:75:4b:40:f8:4c:97:44:a4:c2:6a:
65:3c:7b:e7:0c:bf:29:c2:50:d0:b1:1a:fd:64:f1:
b2:12:38:6f:da:dd:08:8f:ab:c6:5d:47:6c:f0:09:
9f:3e:66:f9:11:16:a7:a2:bb:27:29:b9:ed:8f:07:
6d:15:6e:40:29:cf:51:a0:2a:96:ec:45:9b:0e:31:
a8:d5:e1:6c:f8:1e:b3:bc:3c:dc:72:6b:93:10:52:
cf:d5:5d:0d:d0:8a:1c:4a:e8:3e:a1:38:98:47:86:
8c:dc:77:a9:c3:b3:97:5d:d6:9c:14:04:57:ce:dc:
3c:5a:32:e7:5d:b6:0c:e7:cf:ef:e1:b5:ee:3c:d4:
5e:b3:ae:4e:db:2b:94:77:57:46:69:af:7e:b9:97:
21:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:28:99:DD:2B:26:47:6A:52:09:35:DC:5F:A0:97:18:1E:F8:D1:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B57EEB4460C11F1950E79D4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.68.0/22
154.95.76.0-154.95.82.255
Signature Algorithm: sha256WithRSAEncryption
0a:0a:7a:f7:9e:8b:21:31:40:b3:df:b1:2d:8f:9f:66:54:c6:
4b:0e:fc:d1:42:fd:d6:e7:43:0d:6d:e2:cb:e0:3e:3f:78:c0:
51:08:59:6f:5f:55:19:cf:05:53:cc:04:87:f4:f3:d1:bf:6a:
d9:f2:76:79:1b:7e:a3:b4:d5:b6:19:5b:fa:5e:f4:54:e5:3a:
c8:ab:32:e1:68:1d:a0:9d:2f:6a:26:be:34:28:11:62:88:58:
eb:64:b9:40:cc:fd:e9:cc:b9:1b:fd:84:84:af:5a:99:68:d4:
13:bc:3c:f0:6f:0b:a5:00:98:a3:72:89:c9:ec:44:76:74:ad:
17:4c:43:ef:45:4e:9b:8c:e1:99:e6:f5:32:a3:45:80:51:3f:
16:93:a9:a7:e8:16:d5:66:09:f0:0a:b1:4f:d0:ae:6f:66:6a:
fe:32:73:5a:49:b4:84:03:e3:6e:88:6c:55:a8:3b:42:19:4b:
ff:7e:90:7a:5b:67:23:84:89:a0:b5:6d:9c:20:74:e2:45:27:
f5:94:7f:46:45:6e:50:5c:28:77:57:45:35:47:4e:9f:ee:f5:
79:f5:f2:2f:3a:59:27:35:b3:21:e4:fb:f2:6a:36:17:8d:10:
68:ef:6d:dc:ee:85:50:50:f5:21:ff:0e:84:f5:13:21:04:5c:
2b:8e:5d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:02:10 2026 by rpki-client