Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FAA36704E2811F184985C18CF1D38B0.roa
File: 9FAA36704E2811F184985C18CF1D38B0.roa (raw, json)
Hash identifier: FCpB2G2oVEDjM834wNUPCFoRYiwPeLsJfXei1J2BnYY=
Subject key identifier: C6:51:6E:03:E7:4F:1C:C8:51:10:4D:42:FC:7D:3F:93:FC:AE:2A:84
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB4B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FAA36704E2811F184985C18CF1D38B0.roa
Signing time: Tue 12 May 2026 17:33:01 +0000
ROA not before: Tue 12 May 2026 17:32:56 +0000
ROA not after: Mon 03 Aug 2026 17:32:56 +0000
asID: 149440
IP address blocks: 154.81.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117579 (0x1cb4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 12 17:32:56 2026 GMT
Not After : Aug 3 17:32:56 2026 GMT
Subject: CN=6a03644d-2581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1d:5d:91:c4:05:25:d0:98:94:cd:d3:8d:1d:
b8:ab:c0:ab:1e:f4:28:99:74:e6:34:f8:09:9d:63:
69:bb:8b:1b:23:0d:37:e4:a7:4c:64:a3:b8:ab:cb:
82:5b:bf:21:5f:d9:dc:98:45:9c:7c:c7:25:67:f5:
08:42:d6:14:45:a1:5f:b2:a6:76:92:08:f6:7c:23:
f0:12:06:05:5f:95:56:2a:2a:21:4a:14:97:76:67:
3f:88:a3:a6:2d:26:08:35:fe:8a:35:e7:38:48:03:
11:b1:1e:07:79:85:8c:8b:61:f6:1c:b2:6c:a1:c9:
4f:1e:14:59:1c:81:d1:f7:0f:d7:0e:4a:6a:91:08:
b4:2a:cf:58:6c:47:1a:12:5f:e9:30:ee:aa:8a:d3:
2f:eb:e2:0d:6a:26:8f:20:93:53:9b:19:0b:c1:b4:
3f:5a:a3:7c:36:b2:91:a7:09:a4:71:74:bd:26:c1:
69:43:30:d8:8d:08:f6:a4:67:ee:42:ed:90:04:a9:
22:08:13:e7:ca:71:68:58:c1:77:5b:b5:8a:12:ec:
58:82:43:91:8a:ed:27:07:28:ee:34:93:5d:63:44:
21:5c:be:de:20:48:b9:0f:f0:7e:7d:a8:18:db:bf:
55:a1:01:fe:71:f9:49:57:de:b8:dc:57:5d:3c:dd:
c1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:51:6E:03:E7:4F:1C:C8:51:10:4D:42:FC:7D:3F:93:FC:AE:2A:84
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FAA36704E2811F184985C18CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.220.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2e:6a:39:72:80:ca:bc:12:ec:83:53:8c:c8:c2:ed:8e:03:
41:3d:6d:cf:1c:62:56:e4:e7:27:1a:98:55:c0:75:7f:ed:b0:
66:16:18:7c:d1:b9:3b:36:f6:ff:74:33:3c:29:83:1f:a6:ef:
28:de:2b:a3:da:db:6b:98:0b:56:08:44:5a:44:96:84:a4:60:
bf:0c:a5:1c:b5:ea:9f:1f:17:1e:01:cd:1e:1b:46:ff:c8:33:
b8:7a:0e:fd:9c:8f:6f:77:ff:25:aa:40:57:4a:9b:6d:78:12:
eb:6e:f6:80:48:39:c5:c0:e8:61:e3:22:dd:40:86:c6:b7:a8:
92:45:77:12:d8:1a:35:64:a1:c4:d0:ac:c8:c9:a1:36:49:e8:
ba:6b:17:01:45:08:0f:0c:89:c9:0e:68:39:44:0c:a2:8f:12:
38:08:9d:e7:c8:b1:99:e6:24:13:f4:c1:72:fc:6a:8b:d5:05:
a2:51:3f:ba:17:a6:c9:f8:ee:68:32:d9:c1:8e:3d:2f:ac:2a:
85:a4:18:00:a1:5e:f4:57:e1:9c:b9:6b:2a:55:28:f4:bb:67:
ab:a1:e2:df:4e:9b:a1:22:1a:35:21:3e:b6:d1:e0:2a:21:62:
68:c4:95:c5:0e:a9:85:3d:c0:77:b7:29:03:c0:77:09:f9:10:
66:9e:5e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:45:56 2026 by rpki-client