Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D0E16AE6C7A11F1820CCEFDCE1D38B0.roa
File: 0D0E16AE6C7A11F1820CCEFDCE1D38B0.roa (raw, json)
Hash identifier: oMLh3UBwRDQBDc5T8pu0Ayh1qjTIhrGwhhylqkptj80=
Subject key identifier: 32:75:DA:27:59:39:14:6F:76:B9:BB:F3:F2:9D:38:B6:8D:03:43:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D3FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D0E16AE6C7A11F1820CCEFDCE1D38B0.roa
Signing time: Sat 20 Jun 2026 07:31:29 +0000
ROA not before: Sat 20 Jun 2026 07:31:24 +0000
ROA not after: Mon 27 Jul 2026 07:31:24 +0000
asID: 138915
IP address blocks: 154.93.110.0/24 maxlen: 24
154.93.111.0/24 maxlen: 24
154.93.114.0/24 maxlen: 24
154.93.115.0/24 maxlen: 24
154.93.120.0/24 maxlen: 24
154.93.121.0/24 maxlen: 24
154.93.122.0/24 maxlen: 24
154.93.124.0/23 maxlen: 24
154.93.124.0/24 maxlen: 24
154.93.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119803 (0x1d3fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 07:31:24 2026 GMT
Not After : Jul 27 07:31:24 2026 GMT
Subject: CN=6a3641d1-a24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:9b:66:83:70:01:54:f1:01:b2:1e:22:01:
7f:0f:4f:20:b4:af:c6:e6:2b:33:bc:e1:2c:14:69:
e4:09:97:ff:80:6c:5d:b0:9c:8c:49:aa:42:cf:9c:
ca:f0:90:5d:05:ee:66:c3:f8:ab:68:8c:c6:69:39:
14:26:91:9c:ed:9e:3c:4a:dd:b4:3f:82:f4:c2:52:
ef:3b:04:07:1b:8b:32:eb:31:97:0e:8b:88:fc:ff:
6f:6b:ff:99:2f:3a:97:77:51:04:41:42:9d:31:8b:
a2:d7:98:34:f9:8d:a8:12:f2:38:88:fa:00:02:a6:
5e:08:11:1a:31:23:08:e7:b6:7d:b9:1b:4d:42:f9:
8f:b6:84:af:fd:1b:ff:fc:c4:08:33:8a:f6:76:b3:
69:72:b7:f2:57:6e:a7:9a:bc:69:84:53:d3:a5:dd:
c7:6e:a7:9c:8d:b9:4b:7e:73:e5:f3:64:2d:36:1d:
57:a2:1b:5e:3a:d8:83:bf:53:85:75:ca:3d:57:ad:
0a:ff:3d:8a:c8:78:83:e3:d7:2a:6c:fb:8e:cf:e4:
1d:e0:d1:bf:22:3a:84:03:15:84:d0:fc:bc:3c:89:
42:a4:20:2b:22:4e:b7:c2:1f:0a:62:ee:cf:82:94:
86:0b:ff:98:fa:8c:7b:aa:b9:a1:68:2f:cb:cc:76:
c0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:75:DA:27:59:39:14:6F:76:B9:BB:F3:F2:9D:38:B6:8D:03:43:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D0E16AE6C7A11F1820CCEFDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.110.0/23
154.93.114.0/23
154.93.120.0-154.93.122.255
154.93.124.0/23
Signature Algorithm: sha256WithRSAEncryption
97:07:9d:c0:8a:6a:5c:bd:6b:33:44:77:87:b0:3c:93:f9:f5:
b6:2b:b3:a7:08:b0:61:61:5d:fb:12:89:15:19:f1:fb:9d:87:
e4:8f:cc:c9:47:3f:fc:ec:3f:0d:53:77:0a:e8:62:cd:d2:44:
9d:13:a1:f7:d4:c7:86:65:ce:e0:b1:ef:69:10:57:ef:db:da:
6e:4a:71:e0:56:c5:ec:83:f6:f2:19:6b:f9:bf:a5:38:27:4a:
6c:c3:b8:e9:1d:2d:96:a6:07:5e:e9:ba:07:46:86:c3:b8:85:
4a:2e:08:98:83:a2:6b:db:58:d1:30:d9:40:ff:e7:6e:80:e2:
32:39:c7:14:2a:09:65:eb:2d:4b:80:47:e5:57:cc:f4:7a:12:
d7:67:6f:6c:5f:7c:ee:e4:b7:28:11:62:81:d4:1a:6a:1b:1a:
51:1f:73:42:1e:99:c9:98:dc:70:e0:50:36:f3:55:7b:25:64:
77:32:c4:68:21:ec:df:a8:a5:5d:b9:79:7f:33:9c:29:2e:f2:
9f:fc:dd:25:c2:88:f8:3d:d6:01:53:0c:49:ce:a9:f3:01:7d:
b6:01:33:4c:94:86:1a:18:d3:6b:aa:49:0d:63:ef:11:a6:2a:
91:37:83:8b:a3:64:04:84:42:4d:d4:01:0a:73:4f:90:f7:c9:
81:58:42:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:16 2026 by rpki-client