Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02FF76D8699811F1BB14F8F6CE1D38B0.roa
File: 02FF76D8699811F1BB14F8F6CE1D38B0.roa (raw, json)
Hash identifier: /Ro67qLkaTfQgpIVS5cUhMaJBNkStePJd1cjEMtldsU=
Subject key identifier: 2E:F5:1E:8B:5D:81:EA:31:7A:22:F7:6F:F2:4F:06:88:41:49:CB:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D35D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02FF76D8699811F1BB14F8F6CE1D38B0.roa
Signing time: Tue 16 Jun 2026 15:28:23 +0000
ROA not before: Tue 16 Jun 2026 15:28:19 +0000
ROA not after: Thu 24 Dec 2026 15:28:19 +0000
asID: 4755
IP address blocks: 154.81.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119645 (0x1d35d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 15:28:19 2026 GMT
Not After : Dec 24 15:28:19 2026 GMT
Subject: CN=6a316b97-8e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:af:4a:a3:b7:a0:c4:31:cf:83:b6:c8:12:
e3:ab:9f:b5:4b:cc:01:f8:70:e3:a9:fa:e4:7e:b1:
5d:66:38:f7:d7:d0:f9:87:c8:bb:f8:17:de:92:94:
ff:68:fd:86:82:cd:a8:9f:d0:2d:61:ca:80:f8:89:
72:db:fb:1f:34:92:20:3e:e3:8d:18:c1:49:7d:f0:
ae:6a:43:3e:e5:b1:53:cc:68:16:69:f5:6f:0c:7a:
ad:0c:b9:a8:13:3a:23:41:c4:5b:e1:e8:71:6f:cf:
02:45:4e:fa:d5:95:e6:12:55:c2:97:2c:cb:9b:23:
71:03:be:3c:39:aa:75:87:55:79:ea:d8:e8:08:e5:
33:c6:7d:ca:ea:3f:1e:7d:79:97:5e:d5:20:0f:1e:
10:af:fc:26:6d:be:ee:56:d2:2e:d2:5d:0e:ae:37:
4a:92:b0:45:b4:ba:e2:5e:96:5e:02:71:b1:20:41:
df:e9:ca:ac:d9:fb:f0:ef:55:fb:57:e4:bd:3a:35:
85:da:24:91:f4:35:4a:87:bc:76:fb:cb:ed:37:5e:
88:c9:96:82:88:1b:f1:38:95:ff:2d:13:45:9a:4b:
e0:1e:95:0d:eb:66:5d:90:b6:72:8c:0b:c2:df:b9:
f3:ed:67:cd:8f:f3:5d:15:2f:3d:2f:33:35:1d:f5:
43:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F5:1E:8B:5D:81:EA:31:7A:22:F7:6F:F2:4F:06:88:41:49:CB:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02FF76D8699811F1BB14F8F6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:8c:6f:db:01:31:cf:0d:84:71:79:eb:01:3a:e4:64:0e:dc:
9a:70:97:cf:47:b5:51:2b:05:31:66:ae:2b:5d:36:c8:a2:be:
b8:39:4b:40:fe:a1:bb:d2:c1:8d:aa:c7:7d:fb:96:27:30:70:
9b:33:0b:ec:ee:22:f8:cc:ea:bc:9f:4f:00:e3:8a:ce:b7:f1:
dc:37:7a:9f:7a:cf:23:e5:bc:63:fa:58:3b:17:ac:fd:e6:31:
fe:17:84:c3:b5:c8:24:19:9b:26:b4:00:4d:a7:01:e9:3c:91:
b0:92:67:81:fc:7f:82:8f:23:0b:e3:41:79:ac:29:6f:e6:f1:
f4:7b:e4:a9:2f:aa:e5:49:ba:d0:5d:89:6c:5d:7d:33:db:33:
15:b6:54:1d:37:e0:18:91:d5:f8:3a:c9:d2:a3:56:42:01:28:
54:d7:e4:58:25:4a:54:e9:f6:7c:29:71:38:c1:ea:29:dc:a9:
7a:fa:4a:fa:13:69:24:b5:f2:ca:5a:d8:7c:3d:46:ba:2e:8e:
0e:53:f2:ea:b9:86:a1:06:81:3e:66:fc:31:8e:03:70:dd:34:
bc:60:07:23:6e:d8:b4:4b:cd:f4:94:16:48:80:01:dd:2f:09:
79:d3:90:92:e4:0d:90:52:26:d2:ea:7f:f6:6f:3d:c8:95:f4:
f6:7d:a1:63
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdNdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjE2MTUyODE5WhcNMjYxMjI0MTUyODE5WjAYMRYw
FAYDVQQDEw02YTMxNmI5Ny04ZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtz2vSqO3oMQxz4O2yBLjq5+1S8wB+HDjqfrkfrFdZjj319D5h8i7+Bfe
kpT/aP2Ggs2on9AtYcqA+Ily2/sfNJIgPuONGMFJffCuakM+5bFTzGgWafVvDHqt
DLmoEzojQcRb4ehxb88CRU761ZXmElXClyzLmyNxA748Oap1h1V56tjoCOUzxn3K
6j8efXmXXtUgDx4Qr/wmbb7uVtIu0l0OrjdKkrBFtLriXpZeAnGxIEHf6cqs2fvw
71X7V+S9OjWF2iSR9DVKh7x2+8vtN16IyZaCiBvxOJX/LRNFmkvgHpUN62ZdkLZy
jAvC37nz7WfNj/NdFS89LzM1HfVD9wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC71
HotdgeoxeiL3b/JPBohBSctDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMkZGNzZEODY5OTgxMUYxQkIxNEY4RjZDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlE8MA0GCSqGSIb3DQEB
CwUAA4IBAQCajG/bATHPDYRxeesBOuRkDtyacJfPR7VRKwUxZq4rXTbIor64OUtA
/qG70sGNqsd9+5YnMHCbMwvs7iL4zOq8n08A44rOt/HcN3qfes8j5bxj+lg7F6z9
5jH+F4TDtcgkGZsmtABNpwHpPJGwkmeB/H+CjyML40F5rClv5vH0e+SpL6rlSbrQ
XYlsXX0z2zMVtlQdN+AYkdX4OsnSo1ZCAShU1+RYJUpU6fZ8KXE4weop3Kl6+kr6
E2kktfLKWth8PUa6Lo4OU/LquYahBoE+ZvwxjgNw3TS8YAcjbti0S830lBZIgAHd
Lwl505CS5A2QUibS6n/2bz3IlfT2faFj
-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:00 2026 by rpki-client