Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/822382104D5A11F1B43CEAB7CE1D38B0.roa
File: 822382104D5A11F1B43CEAB7CE1D38B0.roa (raw, json)
Hash identifier: +Im/NjNS5xkehrkh9qN3WjtqIANEXFSxjjm59r9cnXI=
Subject key identifier: 75:76:D9:57:D7:9C:28:A2:DF:F7:69:22:79:CE:75:0B:05:F6:98:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB27
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/822382104D5A11F1B43CEAB7CE1D38B0.roa
Signing time: Mon 11 May 2026 16:57:35 +0000
ROA not before: Mon 11 May 2026 16:57:30 +0000
ROA not after: Mon 18 May 2026 16:57:30 +0000
asID: 9294
IP address blocks: 154.195.64.0/19 maxlen: 24
154.203.96.0/19 maxlen: 24
154.205.64.0/18 maxlen: 24
154.206.192.0/19 maxlen: 24
154.218.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 06:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117543 (0x1cb27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 16:57:30 2026 GMT
Not After : May 18 16:57:30 2026 GMT
Subject: CN=6a020a7f-ef98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b1:3c:d2:85:77:9a:20:4e:a4:ac:09:bf:40:
8b:93:53:97:34:ba:2c:b4:77:46:cd:2f:a5:54:dd:
94:63:c7:c4:cd:2f:17:69:90:c0:02:52:95:a0:58:
29:33:f2:37:a9:d3:40:c2:33:2f:df:d9:b9:81:9a:
0e:37:b3:d6:b9:a4:43:d7:29:d6:a8:ce:01:24:b6:
e4:04:7a:24:cf:bf:47:61:f5:6e:bc:69:8b:9e:0a:
2c:a5:6e:f6:18:59:1e:96:fd:d0:3b:80:e0:e1:fb:
09:f6:f0:6d:ff:46:bf:73:e2:c0:55:c2:f0:52:3f:
7e:fd:a0:43:77:66:4c:9b:a7:2f:5a:2b:b0:c9:f0:
07:a9:6b:c9:55:dc:d3:42:ac:4d:54:0c:f9:75:d3:
bc:b1:9d:e1:c5:89:ae:67:8c:85:66:be:5f:63:ce:
79:76:2a:df:b6:08:0b:35:dd:12:7a:cb:23:dc:dd:
36:10:7d:de:19:2f:0c:bf:e2:e9:70:d2:76:d7:11:
a0:0d:9f:0f:c7:52:53:df:21:73:2b:71:85:fb:8f:
58:a1:8d:be:d9:97:e0:9f:e9:6a:39:73:be:08:1f:
68:76:58:27:7a:61:49:5f:c6:76:ae:1a:4f:1c:58:
6f:0b:99:fc:c5:f0:64:69:27:53:f8:e7:ad:4e:1d:
5c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:76:D9:57:D7:9C:28:A2:DF:F7:69:22:79:CE:75:0B:05:F6:98:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/822382104D5A11F1B43CEAB7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.64.0/19
154.203.96.0/19
154.205.64.0/18
154.206.192.0/19
154.218.32.0/19
Signature Algorithm: sha256WithRSAEncryption
84:b5:ad:14:b4:dd:e2:9c:ef:08:d2:f5:ed:7a:ea:9a:4a:db:
fd:06:32:31:e2:97:f0:1e:e3:a7:5d:20:c2:26:79:ef:ad:18:
50:7e:50:85:ef:73:22:cb:13:b9:2f:74:50:78:b1:77:d7:4b:
7c:dc:0c:a6:dd:a7:bd:5c:16:98:fb:1a:23:56:13:8c:fe:6f:
d2:ed:88:4c:95:ba:96:1f:ea:e4:70:7f:74:ba:7c:2f:c1:8e:
3b:e2:27:f0:49:b1:ce:00:ca:18:20:2a:90:52:81:86:9a:ce:
92:7e:5e:ab:11:c9:60:37:28:17:d6:2b:fb:2d:ef:6e:0d:7f:
db:c5:4e:cf:a6:f1:37:2c:6e:27:db:01:b4:07:11:ed:bf:80:
d2:f2:11:4c:17:96:9b:66:b9:7d:75:18:50:2c:09:ea:31:3b:
12:4b:fb:0b:1c:1a:c4:b2:f4:07:15:0f:16:a7:75:b0:02:47:
e7:09:51:9e:fe:07:90:7c:99:c0:f6:36:a6:d6:21:fa:f0:f5:
cb:f9:94:18:19:d3:dd:97:07:43:35:71:df:38:55:2e:62:ed:
47:44:0c:7b:60:e7:f6:e2:50:b0:aa:24:19:fd:20:fd:d8:87:
4e:2e:b0:c3:5f:43:79:08:34:09:8c:7a:de:3a:14:55:68:d9:
b5:f2:7a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:50:55 2026 by rpki-client