Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F6335AC690911F1BDBFF506CF1D38B0.roa
File: 0F6335AC690911F1BDBFF506CF1D38B0.roa (raw, json)
Hash identifier: 6e7WipF/Zg3sLFO5Jzq99hb0y0m7DATMfxFgQLfpwGk=
Subject key identifier: A1:12:73:E2:88:A1:F4:F2:67:73:BA:BC:63:9C:BA:99:38:6B:F9:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D2FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F6335AC690911F1BDBFF506CF1D38B0.roa
Signing time: Mon 15 Jun 2026 22:25:06 +0000
ROA not before: Mon 15 Jun 2026 22:25:02 +0000
ROA not after: Wed 15 Jul 2026 22:25:02 +0000
asID: 147176
IP address blocks: 154.197.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119547 (0x1d2fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 15 22:25:02 2026 GMT
Not After : Jul 15 22:25:02 2026 GMT
Subject: CN=6a307bc2-e417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:da:74:f8:9c:1a:4f:19:3c:1c:77:cc:62:2c:
c3:d7:c3:0d:49:c4:8d:8a:ac:02:fa:90:10:5b:b2:
67:ca:75:ee:ba:87:76:94:71:27:5c:0e:72:eb:f7:
f0:7c:b4:90:62:60:d3:ea:9c:73:4f:42:36:8b:f8:
8e:08:9d:ae:5a:10:e1:9a:60:5f:15:d1:b6:98:79:
dd:87:80:34:eb:91:01:ee:f7:42:d5:dd:b3:5d:23:
21:96:85:88:9e:09:74:0c:28:db:db:87:c3:4e:e5:
fd:36:2b:f6:b4:8d:88:ec:a5:ec:8c:78:b0:ee:5d:
99:fc:a9:1f:64:27:64:35:59:b3:3b:df:c1:e1:fa:
3e:b5:d7:a0:05:94:9c:f1:34:38:31:c5:e1:9a:d4:
cb:b4:07:41:a0:c0:c4:a6:29:ad:1d:f8:5a:e9:5d:
13:f9:5f:61:96:78:48:29:01:ac:11:23:7f:ec:cc:
6c:38:8e:0c:05:04:25:04:f6:01:8d:9d:1f:d5:43:
37:16:f2:94:73:48:fb:84:ee:b0:50:6a:db:9e:f4:
9f:2e:87:3d:a3:af:93:87:ef:1c:95:a3:7c:3d:e6:
bc:d0:56:9c:19:f7:dd:77:bb:af:c0:0c:28:ce:e6:
90:19:9c:4a:04:48:27:da:38:bc:7f:f0:e1:f0:cf:
cf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:12:73:E2:88:A1:F4:F2:67:73:BA:BC:63:9C:BA:99:38:6B:F9:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F6335AC690911F1BDBFF506CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.102.0/24
Signature Algorithm: sha256WithRSAEncryption
70:7b:52:1d:d4:08:42:54:69:74:c0:46:85:ca:b3:e2:ef:b4:
37:db:f9:6f:3a:08:22:5d:59:26:2d:35:75:48:f9:7a:ce:ad:
60:48:a3:f1:fb:ea:bd:32:90:09:dc:f3:c0:0b:be:37:58:eb:
31:be:19:44:54:6c:b7:f1:86:4c:35:bc:dd:79:ba:a6:f3:57:
b7:96:79:ed:a5:e1:3d:d9:a1:88:6d:e2:f1:cc:82:c2:ca:04:
68:99:db:ec:d2:e1:83:e9:ee:54:dd:a1:9e:b2:de:f7:46:d2:
fd:a9:60:f8:59:be:28:87:c7:ef:70:c5:41:f1:44:a5:c1:e9:
10:bf:db:16:21:3c:74:a0:6e:10:6a:93:70:a7:37:19:71:a3:
95:24:04:30:ca:ef:c0:db:bf:f9:46:d1:41:80:52:e7:cd:22:
dd:e1:05:92:24:05:ad:8d:31:f0:30:78:db:43:db:14:b2:f2:
e2:f4:1a:ee:38:9a:5e:26:16:4f:98:c9:10:3a:25:04:f3:60:
4e:45:1b:20:7d:59:5b:0a:49:ec:e2:08:40:b9:89:31:72:f3:
52:99:3c:bc:08:8d:d0:4b:86:3b:fc:02:aa:a1:32:56:2a:56:
20:71:bb:59:13:65:03:a0:24:3a:c8:8a:ea:44:02:a5:56:42:
0d:aa:3e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:37 2026 by rpki-client