Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5FF2C984D0A11F1ABF550DDCE1D38B0.roa
File: A5FF2C984D0A11F1ABF550DDCE1D38B0.roa (raw, json)
Hash identifier: QZkzlY+r+sdR0n3PnNF35+hofEzaL9A+3t2l8ZumGPw=
Subject key identifier: 34:08:A6:C6:40:13:71:B4:4B:A0:80:DF:35:90:8F:7C:D7:65:17:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5FF2C984D0A11F1ABF550DDCE1D38B0.roa
Signing time: Mon 11 May 2026 07:25:56 +0000
ROA not before: Mon 11 May 2026 07:25:51 +0000
ROA not after: Sun 21 Jun 2026 07:25:51 +0000
asID: 2914
IP address blocks: 154.216.132.0/24 maxlen: 24
154.216.133.0/24 maxlen: 24
154.216.134.0/24 maxlen: 24
154.216.135.0/24 maxlen: 24
154.216.136.0/24 maxlen: 24
154.216.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117507 (0x1cb03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 07:25:51 2026 GMT
Not After : Jun 21 07:25:51 2026 GMT
Subject: CN=6a018484-5d3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2e:ba:8a:65:3e:c0:0f:34:0f:3f:7b:92:40:
80:03:e7:67:4f:c6:13:90:e1:71:34:00:a0:79:ab:
e8:54:25:7a:81:48:28:9a:6b:0a:3e:35:8e:d2:cc:
43:a9:26:d1:59:8e:7f:50:3a:2e:72:6b:29:f4:65:
c3:e1:ff:93:a5:10:d0:31:93:68:51:ce:3e:dc:f3:
9f:dc:e0:14:c2:7f:a2:67:17:46:75:8f:a8:b3:1d:
49:ad:16:17:17:70:20:10:bc:6f:64:0d:03:42:e3:
b7:5f:de:4a:93:fc:54:38:3a:aa:b4:87:3e:8e:7f:
10:f1:af:0b:26:e3:e8:74:73:e4:99:4d:be:eb:f1:
53:66:6b:f0:ab:c2:bb:6c:ec:00:79:2f:13:72:f0:
2d:3b:38:4e:1a:8d:0d:f4:91:59:3e:15:7d:28:80:
fe:3a:02:f9:9d:c8:a2:26:43:c6:7b:d9:d4:e5:42:
3c:3a:85:87:30:6b:b8:79:91:68:07:fb:ec:e3:97:
6a:a1:56:1e:d3:d3:6e:b7:52:f2:a7:9d:ff:fe:ab:
cd:d5:8d:3e:23:65:97:07:4a:45:a3:47:f4:7d:30:
24:ab:67:b2:de:37:6c:dd:b9:6e:c7:50:c7:3e:6b:
42:78:ba:46:77:4f:f3:bb:ea:64:93:dd:60:58:ec:
32:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:08:A6:C6:40:13:71:B4:4B:A0:80:DF:35:90:8F:7C:D7:65:17:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5FF2C984D0A11F1ABF550DDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.132.0-154.216.137.255
Signature Algorithm: sha256WithRSAEncryption
95:2d:13:bc:53:de:52:13:01:59:73:af:b5:b0:1c:4f:1b:f4:
69:b1:e2:c9:6b:62:6c:67:9e:1e:6f:d6:ec:a7:11:aa:ce:d3:
91:ae:72:19:f7:9b:f6:ea:d2:f6:27:74:1e:79:c0:73:77:d1:
d3:08:73:a7:1b:f0:48:6a:38:17:12:b1:ba:2a:9e:f8:e2:8f:
79:45:77:f6:7b:2f:4c:6c:0b:11:b6:ae:cf:36:1b:cc:58:a8:
e0:64:da:aa:4b:e0:77:54:ae:c5:0e:71:d8:4f:bc:98:4e:fc:
ea:36:02:f2:eb:f8:3b:ef:21:cd:64:51:2d:a8:5b:78:50:a9:
0b:24:14:23:0e:59:16:83:19:d0:28:a0:94:7c:fe:b5:4f:f0:
48:63:8d:4b:ea:12:af:b1:11:3d:e9:a9:13:6b:cb:db:18:b6:
91:c1:8b:2f:12:51:15:5f:02:38:08:7f:12:17:85:39:a0:19:
2a:f5:88:19:2e:14:96:36:b4:6f:95:e0:7e:d2:78:2a:f1:27:
2c:c8:a8:22:83:d9:2c:46:46:12:cf:f8:ea:75:50:1e:16:8b:
19:cc:1c:54:37:bd:5e:b4:04:e9:7f:7b:a3:f3:97:53:a8:70:
da:eb:53:8e:a9:8c:15:dd:a6:47:d8:31:de:77:ef:9e:b8:a8:
ae:95:52:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:45:39 2026 by rpki-client