Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91062D504D0F11F19030D2F9CE1D38B0.roa
File: 91062D504D0F11F19030D2F9CE1D38B0.roa (raw, json)
Hash identifier: GNVun2by2hzM45jUiGDhu5Er8vzmfGEeYCMFF/NATBQ=
Subject key identifier: 47:5F:83:78:32:DC:6E:AE:F0:72:4C:F0:9D:EF:55:3D:63:2D:3A:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91062D504D0F11F19030D2F9CE1D38B0.roa
Signing time: Mon 11 May 2026 08:01:08 +0000
ROA not before: Mon 11 May 2026 08:01:03 +0000
ROA not after: Mon 08 Jun 2026 08:01:03 +0000
asID: 151347
IP address blocks: 154.84.211.0/24 maxlen: 24
154.84.234.0/24 maxlen: 24
154.84.236.0/24 maxlen: 24
154.84.238.0/24 maxlen: 24
154.84.240.0/24 maxlen: 24
154.84.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117521 (0x1cb11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 08:01:03 2026 GMT
Not After : Jun 8 08:01:03 2026 GMT
Subject: CN=6a018cc4-8ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:64:92:30:78:71:c0:55:96:3f:f5:16:08:d4:
dd:0d:dc:75:03:be:82:70:12:a8:25:22:f8:93:6d:
f4:95:80:91:6e:1a:34:5e:9a:6e:be:ee:6b:5a:c0:
47:26:72:8c:40:06:bb:ae:12:db:ae:ca:d9:f3:a4:
78:b8:0d:69:ac:78:79:8c:5f:64:30:e2:7f:ff:b9:
74:76:72:36:c4:5b:46:7e:e3:9a:3b:08:45:e4:36:
7b:e8:8e:a3:65:31:7b:49:e7:c7:a2:6b:b2:4e:9f:
30:4a:68:9c:95:43:63:f0:96:66:c2:68:fd:ef:7f:
ce:e3:61:54:5b:61:e1:2b:12:68:f0:8f:32:3d:ed:
cd:ab:d1:27:df:b1:fc:3a:91:2d:ba:f8:1e:7f:e0:
2e:86:ee:f7:ac:03:ac:07:df:a7:2c:25:1b:ba:77:
ab:41:99:a0:91:11:dd:f6:3f:2c:e0:26:fd:98:e8:
4f:cd:63:28:d6:04:66:73:aa:25:58:62:c2:e3:ae:
d1:a2:59:96:19:ec:34:9c:d7:25:b5:47:d8:4b:46:
83:04:86:c2:e5:ff:90:06:ca:d4:3e:4c:b3:74:d5:
e0:8e:9f:bb:66:a9:7b:63:49:de:34:bd:9e:65:0b:
c5:c6:74:c7:8d:2c:42:b5:a3:d4:d6:77:11:59:85:
47:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5F:83:78:32:DC:6E:AE:F0:72:4C:F0:9D:EF:55:3D:63:2D:3A:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91062D504D0F11F19030D2F9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.211.0/24
154.84.234.0/24
154.84.236.0/24
154.84.238.0/24
154.84.240.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:4b:4d:e6:4e:8d:0e:04:4d:9d:bc:3e:f0:dd:e3:d5:3d:fb:
3f:85:8e:26:38:90:4c:f1:24:f6:77:af:d2:cf:1a:fd:e0:14:
5f:d2:19:e2:c2:9e:1b:a7:9d:2a:d0:16:91:c2:cb:3e:c6:0c:
5f:18:48:67:96:3e:76:f8:b6:37:e5:97:ad:9a:50:9f:65:bf:
48:bf:69:cb:50:bb:a2:a5:21:e6:28:0f:a7:bb:4f:50:4c:4c:
dd:79:c8:35:75:26:d5:d6:60:48:3a:31:62:1c:d6:7f:44:13:
cc:fa:75:0e:cb:64:cb:21:50:e0:c9:bc:0a:ea:7f:77:f2:d4:
c6:78:f6:83:39:64:c2:dd:fa:c8:37:e2:6a:9d:de:b4:dc:54:
ac:0a:a5:43:d2:14:3f:59:ad:88:27:2c:ba:65:1f:56:ff:29:
fa:2b:af:29:a9:d1:80:ae:1c:5b:90:aa:71:39:64:51:ce:89:
b0:93:d4:6b:86:97:43:e9:c9:33:19:62:46:3f:ac:c2:7a:8c:
29:27:07:35:26:f2:4b:f2:cb:02:88:c0:3b:74:a1:3b:60:22:
b4:85:21:ac:35:76:c3:9c:54:04:dd:9d:d4:49:7c:1d:50:19:
18:e8:71:e6:4f:84:4e:05:c5:7a:d5:78:56:0b:20:14:ac:eb:
15:b7:b5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:56:17 2026 by rpki-client