Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BDA703C6EDD11F184501FCCCE1D38B0.roa
File: 1BDA703C6EDD11F184501FCCCE1D38B0.roa (raw, json)
Hash identifier: AfGeBdIz7Ldx8E2x8vPGdC4etkTUsCO6IwoqZOYSODk=
Subject key identifier: 8B:AB:11:DC:9C:DE:70:2E:A5:73:7B:1D:5C:2B:AA:27:6C:1C:57:4F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D478
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BDA703C6EDD11F184501FCCCE1D38B0.roa
Signing time: Tue 23 Jun 2026 08:25:36 +0000
ROA not before: Tue 23 Jun 2026 08:25:32 +0000
ROA not after: Mon 03 Aug 2026 08:25:32 +0000
asID: 198243
IP address blocks: 154.83.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119928 (0x1d478)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 08:25:32 2026 GMT
Not After : Aug 3 08:25:32 2026 GMT
Subject: CN=6a3a4300-8bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3a:36:17:86:ad:ce:ab:be:1c:eb:8b:b9:de:
47:a4:ee:31:5b:70:0c:b9:a3:d2:74:8b:a4:4e:37:
7b:10:b8:74:da:6d:ca:d6:f7:c4:96:7e:ca:e0:62:
e4:f0:f2:f5:42:06:88:3e:e0:54:ea:87:71:eb:d6:
94:dc:7f:60:bb:6d:c6:03:16:12:b3:d9:ef:48:44:
f4:44:93:be:81:66:df:ee:4f:8c:db:79:81:92:72:
dc:1f:c3:c1:ec:aa:a2:67:2b:89:7a:aa:b9:22:96:
8b:c9:db:e5:cd:c7:8d:77:99:44:ce:b6:05:75:b7:
8c:56:63:23:e6:24:f5:f8:f1:28:f8:fa:91:aa:4d:
e8:a3:1e:60:c7:71:60:b3:da:0c:30:4d:3a:f2:6c:
6f:2b:c3:d3:3b:fa:01:92:2b:58:33:cf:c0:dc:55:
86:83:97:74:24:45:48:82:12:ef:88:2b:f2:85:91:
0c:1c:3f:a2:b3:ec:4e:60:6b:a0:dc:6d:bc:93:e2:
3f:6b:8e:ea:63:db:f7:7d:ea:35:1e:72:80:8c:05:
a6:70:f6:d7:f7:41:4d:d3:82:91:ab:c3:57:dc:63:
be:a2:e0:0c:9f:8a:41:e6:5a:00:3f:03:37:fb:2b:
b9:61:34:21:83:88:08:81:ce:bc:d0:8b:f8:c6:e1:
71:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AB:11:DC:9C:DE:70:2E:A5:73:7B:1D:5C:2B:AA:27:6C:1C:57:4F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BDA703C6EDD11F184501FCCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.210.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:b5:96:4f:9c:c3:4f:f3:75:8d:3d:39:28:2a:15:fe:5c:2b:
32:97:2c:a9:f5:92:4f:30:ef:a3:ec:f9:b7:04:63:5e:20:30:
27:54:75:11:25:a5:d0:90:af:1f:ef:2f:b4:ed:88:b4:97:51:
e5:25:51:ab:04:89:1b:f3:9a:eb:c5:55:40:4f:c3:a1:bf:ff:
8c:c5:8c:60:42:61:df:38:a2:a1:1e:f4:c6:14:23:e1:05:fc:
a4:32:4a:db:e4:0a:25:db:e7:b6:06:8f:2a:36:78:03:3b:a7:
3c:4d:f1:e8:97:73:2e:01:44:e4:44:89:b8:4b:eb:7c:78:7b:
f7:68:99:de:be:a3:74:bb:b8:53:f9:a0:67:09:96:ae:e0:26:
11:25:07:19:30:fe:03:67:82:ef:fd:90:41:24:63:44:3f:1e:
90:e7:1d:9c:9c:b6:87:44:80:e9:9f:76:75:d7:63:54:ae:9e:
97:96:8b:e0:5c:56:c7:09:42:4c:e4:88:53:1b:6b:a3:83:5e:
61:00:9a:ad:2b:fc:09:6d:8b:bf:0a:b0:c4:f1:aa:af:c2:30:
ab:88:d1:f6:71:27:8f:50:c9:4d:3c:57:4b:05:f1:1d:4f:9e:
4c:e1:9c:48:66:a1:28:70:04:d1:7a:4c:2c:ea:d9:eb:5a:3a:
cb:96:79:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:02 2026 by rpki-client