Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6EED6F1E4D5D11F182DD0BCACE1D38B0.roa
File: 6EED6F1E4D5D11F182DD0BCACE1D38B0.roa (raw, json)
Hash identifier: v/WbIjHy7tqd/1pGfVGYN8U0I+/w7UPdQ8E0vKPUtvY=
Subject key identifier: 63:CB:BE:6C:AB:09:14:89:AB:96:98:53:1B:A8:D7:38:92:10:35:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB2B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6EED6F1E4D5D11F182DD0BCACE1D38B0.roa
Signing time: Mon 11 May 2026 17:18:32 +0000
ROA not before: Mon 11 May 2026 17:18:27 +0000
ROA not after: Mon 18 May 2026 17:18:27 +0000
asID: 136907
IP address blocks: 154.220.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117547 (0x1cb2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 17:18:27 2026 GMT
Not After : May 18 17:18:27 2026 GMT
Subject: CN=6a020f67-92d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:55:0f:46:42:4b:6a:8c:2c:68:ca:62:01:
9b:d1:09:f0:aa:c6:92:f4:04:f8:f9:da:53:d8:19:
30:66:38:52:d7:ed:47:54:0f:a3:f7:33:da:ff:19:
c3:1d:76:fd:4f:6b:11:17:9b:56:10:61:02:4d:09:
5f:86:b0:e6:f2:1f:2b:47:bc:f4:c3:c0:ae:61:36:
23:40:03:fa:17:94:1e:1c:94:e2:21:cf:dd:18:f8:
20:e7:8c:f6:a3:1f:ec:4a:21:40:bc:61:9c:a7:0d:
84:c8:1f:85:e3:c5:49:50:2d:b0:cf:1c:b4:01:3d:
85:e6:28:61:bc:9d:6f:69:f0:fd:da:0f:b7:ef:a0:
e4:cb:c4:71:b9:9d:da:64:fa:69:f9:9e:ba:2f:5e:
f2:f0:ee:93:ee:d0:20:ed:bf:47:e5:fb:aa:80:00:
eb:9b:36:d5:61:ee:f5:13:af:24:30:65:41:18:7d:
f0:fb:7f:42:17:99:ab:9e:7b:99:98:c2:99:59:c6:
17:ea:9c:3b:68:2e:df:90:df:01:1e:25:93:44:21:
01:53:99:9a:af:13:a6:fb:11:58:33:88:92:43:8b:
29:4a:3b:63:8d:b1:02:78:95:ad:ff:08:92:09:25:
69:18:68:ef:ba:ce:72:54:15:fb:66:5d:96:5c:e1:
02:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CB:BE:6C:AB:09:14:89:AB:96:98:53:1B:A8:D7:38:92:10:35:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6EED6F1E4D5D11F182DD0BCACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1f:f4:cf:8e:7a:e8:72:e6:11:73:7a:4b:04:1f:92:ae:35:af:
61:7b:ce:58:60:92:bb:53:03:25:a9:bc:48:33:19:ba:58:9c:
d8:a2:ee:c1:9f:c5:58:76:41:e3:27:48:bb:93:38:43:b1:f5:
c3:f7:ea:7a:07:fb:b9:27:d0:4a:50:c3:a9:84:f3:5a:96:29:
61:4a:7a:8d:b6:70:65:f7:a2:00:ef:8d:da:75:29:45:63:23:
76:8c:62:e5:e7:3c:12:7c:e7:81:e9:4e:45:32:b5:7f:b4:8f:
39:2b:e7:01:26:b5:b0:3b:e7:18:8d:3f:e2:bd:1c:d8:6e:3b:
61:2c:b5:ef:3b:f4:b5:01:1f:6d:c6:ba:f8:75:47:f9:58:9b:
12:32:85:b7:f4:fd:7c:27:89:0d:4c:54:aa:1d:e1:8a:21:db:
2f:ca:13:ed:fb:2f:78:ec:8b:b7:45:ef:71:86:f7:db:35:71:
f6:8f:31:35:0c:17:16:8a:81:62:b4:a9:1a:aa:18:6d:71:ea:
5d:63:7a:0c:7d:9a:3a:6e:ac:e4:94:f0:0a:e6:58:3e:ec:77:
28:d3:0f:40:39:bc:7d:af:99:11:63:97:a8:27:29:59:93:d7:
c6:da:5d:f5:20:53:f4:47:9e:f5:d1:aa:27:9d:d6:4f:c5:df:
10:a8:14:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:14:22 2026 by rpki-client