Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13703FF46C7F11F18A9F491BCF1D38B0.roa
File: 13703FF46C7F11F18A9F491BCF1D38B0.roa (raw, json)
Hash identifier: G4mVxddmHgP/eoNmlb9/mTBiExZ/jRda388U9bwihwk=
Subject key identifier: E3:F4:17:24:FA:7B:9D:2C:F8:B0:E2:66:A3:4C:43:98:D2:0D:C3:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D405
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13703FF46C7F11F18A9F491BCF1D38B0.roa
Signing time: Sat 20 Jun 2026 08:07:27 +0000
ROA not before: Sat 20 Jun 2026 08:07:22 +0000
ROA not after: Mon 27 Jul 2026 08:07:22 +0000
asID: 63139
IP address blocks: 154.93.77.0/24 maxlen: 24
154.93.78.0/24 maxlen: 24
154.93.79.0/24 maxlen: 24
154.93.80.0/24 maxlen: 24
154.93.81.0/24 maxlen: 24
154.93.82.0/24 maxlen: 24
154.93.83.0/24 maxlen: 24
154.93.95.0/24 maxlen: 24
154.93.123.0/24 maxlen: 24
154.94.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119813 (0x1d405)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 08:07:22 2026 GMT
Not After : Jul 27 08:07:22 2026 GMT
Subject: CN=6a364a3f-5cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:68:83:22:73:2b:12:ce:7b:c1:d3:c6:c5:8b:
c1:8a:fb:49:56:9d:f1:b3:69:7f:2f:cb:29:4c:56:
ad:84:75:e0:04:e5:6b:17:5f:85:e4:70:64:fc:de:
e5:af:01:cf:b7:72:d1:96:32:5e:83:35:1e:8d:ab:
94:c4:ae:f0:22:e3:5c:fd:b8:e6:67:89:62:f7:70:
e4:9a:1e:a8:0a:3b:2c:4b:2b:50:c3:e6:ce:dd:36:
38:73:93:0a:41:19:79:85:39:18:07:b0:59:00:8b:
68:39:ca:69:88:17:3b:00:97:b3:1e:23:15:20:7f:
dc:0a:6f:e4:ea:94:df:4d:2c:09:bd:f4:62:af:14:
4e:40:03:13:f5:71:fe:5f:fb:43:83:6d:a2:99:d7:
01:f0:d7:db:37:75:38:33:49:5d:3e:ad:de:f1:84:
75:5e:36:78:bc:7c:99:7a:ec:25:f3:96:cb:68:b4:
ea:62:ea:36:eb:31:5b:4e:8b:3f:d7:c2:51:03:9e:
27:2b:4b:db:98:34:81:01:67:f0:89:04:ce:f2:1c:
20:e1:75:ae:e8:eb:8e:90:8c:e2:94:ec:33:ba:b5:
73:4c:d1:01:7a:bd:ff:5f:ad:55:6b:09:16:b5:69:
e2:3a:14:16:ba:13:8c:9f:a3:05:25:d1:5d:91:e3:
8c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F4:17:24:FA:7B:9D:2C:F8:B0:E2:66:A3:4C:43:98:D2:0D:C3:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13703FF46C7F11F18A9F491BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.77.0-154.93.83.255
154.93.95.0/24
154.93.123.0/24
154.94.111.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:3d:d1:d9:cf:89:49:1a:26:54:ec:f2:af:97:71:5b:1e:35:
a0:14:a9:91:d6:d8:e3:65:cb:b2:67:bd:f1:19:c3:2c:66:a7:
d2:66:2a:04:8f:33:86:50:10:27:2f:bc:cf:e3:81:d8:a8:e4:
71:31:7e:43:c1:f0:71:3f:06:3d:ac:a7:78:4a:13:6b:3c:61:
ff:a8:0e:28:32:ac:10:ae:8d:54:31:41:47:f0:54:8a:99:5f:
85:86:90:4e:94:06:1f:a2:7d:c2:83:05:49:fd:e6:36:82:9d:
1d:29:0a:32:10:ad:64:55:ec:b0:5f:ca:d3:0d:56:6b:28:55:
05:9f:92:3a:a7:d7:eb:54:29:62:c7:2f:66:e4:c5:5b:5b:a1:
88:4c:79:c6:91:bd:58:0a:7e:47:30:f7:d6:74:92:75:e3:d4:
17:5b:1b:7d:a8:9c:05:ae:bf:80:60:d1:19:6f:af:33:5f:39:
29:0a:20:80:d3:92:e5:c5:1c:54:5a:b5:18:1e:05:71:aa:de:
15:f9:cb:76:2f:de:3b:44:c7:83:d5:6f:a2:71:56:dd:c6:ef:
e3:c9:39:e7:74:23:0f:9e:10:a9:58:6f:ea:f2:33:fd:c7:3d:
55:d7:85:42:5a:38:39:cc:d4:e2:ee:57:d9:f5:75:96:20:a4:
e2:ae:35:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:38 2026 by rpki-client