Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ACB2B9A6E5711F18A098012CF1D38B0.roa
File: 1ACB2B9A6E5711F18A098012CF1D38B0.roa (raw, json)
Hash identifier: umwsxnZJGpX44x1Ip6D3zM0ZRm+mjUYBu11juJx1qtQ=
Subject key identifier: 27:B2:96:A8:5B:57:7B:DF:D7:1D:35:A9:B1:36:B7:DC:63:D6:03:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D457
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ACB2B9A6E5711F18A098012CF1D38B0.roa
Signing time: Mon 22 Jun 2026 16:26:22 +0000
ROA not before: Mon 22 Jun 2026 16:26:17 +0000
ROA not after: Mon 28 Dec 2026 16:26:17 +0000
asID: 400619
IP address blocks: 154.84.32.0/21 maxlen: 24
154.84.40.0/21 maxlen: 24
154.84.40.0/22 maxlen: 24
154.84.44.0/22 maxlen: 24
154.84.48.0/21 maxlen: 24
154.84.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119895 (0x1d457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 16:26:17 2026 GMT
Not After : Dec 28 16:26:17 2026 GMT
Subject: CN=6a39622e-e4a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:07:0d:a1:80:ae:69:3c:ca:10:2c:ca:55:1c:
f2:79:9c:c9:05:3a:fa:25:b2:11:92:d6:98:35:39:
4d:79:d6:6b:da:66:26:bb:66:5e:29:33:de:fb:35:
0c:44:c5:90:4b:56:7d:98:dd:cc:4b:fd:45:d7:25:
b4:20:bf:4d:9a:24:73:7e:86:06:7d:3d:5c:cb:7d:
1e:98:c9:9b:fa:d6:7a:12:7e:8a:bf:ec:44:79:42:
7a:e4:10:a2:cc:23:c0:97:02:c7:f7:7b:0b:3c:a2:
48:68:16:3b:d6:29:28:65:bc:31:ea:b3:9c:73:9a:
a1:ea:7a:a0:fd:a7:29:fa:29:60:c4:89:a5:0c:03:
4b:a2:75:6c:9f:c9:a2:9e:94:6e:0e:46:df:dc:91:
2a:9e:b6:3e:22:bf:64:4e:fc:73:d0:13:45:54:6f:
87:b7:3a:97:2d:4d:1b:97:35:a0:76:6e:0d:16:57:
b1:1b:39:18:19:5c:1a:ed:0c:4e:e0:da:7b:e5:6b:
4a:eb:06:4a:1c:86:cc:36:e7:a8:84:5f:69:82:00:
2f:5a:21:dc:e3:da:f9:92:11:64:4e:93:03:71:ec:
da:4d:61:42:1f:26:44:71:c5:55:2d:ce:f4:0d:83:
24:e8:72:79:6e:8e:e6:4f:ea:6d:24:55:f8:04:d1:
15:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B2:96:A8:5B:57:7B:DF:D7:1D:35:A9:B1:36:B7:DC:63:D6:03:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ACB2B9A6E5711F18A098012CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3a:11:17:88:66:fb:4b:c5:7d:0c:f2:df:cb:f6:32:4c:72:43:
13:7a:4f:dc:b3:7b:a4:6c:22:5b:90:e3:ce:67:4e:7e:91:d5:
3e:77:c4:8d:2e:c3:66:5d:ae:1d:70:74:0c:00:6e:69:b2:3e:
f7:98:60:fc:3b:9a:21:2b:06:9d:65:14:fb:f8:bc:06:e0:e7:
35:5d:65:a6:80:06:23:e6:b2:23:40:3d:92:e0:20:fd:8d:5a:
78:cd:74:7e:e6:65:c8:87:c0:d3:09:35:6b:91:73:45:7e:5d:
31:dc:59:3e:f6:10:02:4c:71:d6:98:4c:67:f9:e0:f9:b2:72:
e1:f1:c8:77:5d:8d:92:4f:16:d3:25:58:3f:3a:be:f4:33:01:
af:50:64:50:46:69:36:e4:4c:ea:65:19:34:33:60:ba:d0:5f:
a3:f5:f3:07:4c:aa:53:00:57:3e:2b:ed:48:bf:22:07:9d:e8:
78:9b:0a:c5:a2:9c:75:5d:24:40:f0:9b:c8:d7:e7:3a:b4:bc:
6f:10:e7:c1:69:df:42:0d:e4:8e:9c:23:aa:1e:b2:2f:18:17:
e9:a0:55:96:26:e5:f4:22:50:0c:cf:8c:ff:c9:5f:dc:d3:e7:
4e:37:c8:2a:ac:12:16:1f:8a:46:28:4f:ce:09:c8:92:df:2b:
f2:ba:80:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:46 2026 by rpki-client