Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D786E7268FA11F1B8293AB0CE1D38B0.roa
File: 2D786E7268FA11F1B8293AB0CE1D38B0.roa (raw, json)
Hash identifier: nPAC2OD/pOhbxwK9mRcawv6QUbixSxj+YPqzdBfXNcw=
Subject key identifier: 7E:89:6D:67:8F:71:54:13:50:8C:DB:5E:9B:25:FE:B6:F7:09:2F:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D2F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D786E7268FA11F1B8293AB0CE1D38B0.roa
Signing time: Mon 15 Jun 2026 20:38:34 +0000
ROA not before: Mon 15 Jun 2026 20:38:30 +0000
ROA not after: Thu 09 Jul 2026 20:38:30 +0000
asID: 49581
IP address blocks: 154.86.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119539 (0x1d2f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 15 20:38:30 2026 GMT
Not After : Jul 9 20:38:30 2026 GMT
Subject: CN=6a3062ca-38ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6d:22:b6:91:cd:32:9d:29:95:e4:9f:5b:7a:
22:f1:4f:f4:30:05:b5:66:a3:17:b1:ba:6e:a5:d3:
04:05:c7:d8:25:5e:a3:c9:68:02:bf:aa:01:6e:46:
82:ce:8d:58:42:60:55:be:3e:a2:8f:a9:d5:ba:88:
3a:9f:b2:a7:52:64:60:58:6b:29:16:28:f4:bc:85:
45:02:9e:a7:9a:ba:57:48:ac:93:9d:18:b0:60:52:
ac:d6:4f:0e:4e:c2:b3:ba:86:15:e0:2c:31:79:34:
7d:b1:3b:de:9d:8b:70:3a:6a:c3:9b:7c:3b:96:d0:
11:20:9d:7e:f9:88:ef:82:bf:4e:90:70:fc:5e:62:
65:be:2f:7b:b4:56:e7:50:ce:ce:8f:d2:92:d9:b1:
a6:18:83:df:88:e4:68:18:70:5f:78:e8:2e:7e:3a:
02:4c:a0:f1:20:7c:0b:15:c8:ae:c6:84:ba:cf:7d:
0b:4f:b5:5e:73:ab:de:8b:03:2a:f6:6a:86:8d:cb:
aa:05:7d:17:63:9d:d7:8b:0f:bf:17:a5:c4:88:10:
e6:fe:f7:7d:7e:b1:f4:27:48:24:a1:68:ef:9c:2a:
7a:e2:de:34:55:71:b9:8d:f2:47:13:24:5e:a4:90:
92:e2:62:0f:da:86:4f:ab:56:51:9c:f9:bb:1e:0f:
9e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:89:6D:67:8F:71:54:13:50:8C:DB:5E:9B:25:FE:B6:F7:09:2F:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D786E7268FA11F1B8293AB0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.119.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e3:97:a0:8a:13:0f:aa:2d:c4:e5:09:cd:b4:e4:4e:c2:99:
62:e8:49:79:85:f2:71:ad:ec:b7:ee:3b:57:22:f0:04:7f:f0:
44:d7:9f:c7:c2:a6:52:8f:6d:16:b3:71:ba:f9:26:6a:97:df:
6b:47:1e:38:63:0c:5c:f8:38:ea:c5:b6:35:5c:14:30:96:c2:
95:a8:20:f5:f5:6f:9e:00:f8:3b:e4:9d:28:2c:76:5a:7b:0a:
65:ee:47:62:21:e1:1c:f6:86:91:84:f8:45:80:18:6a:11:b0:
9d:f0:70:58:3f:62:e3:7c:9e:60:40:96:23:94:0d:b2:34:d6:
4b:a9:81:f9:71:98:3c:21:92:fe:91:b9:e9:4b:55:71:3d:20:
65:3c:b0:23:48:b2:2f:01:aa:05:fa:77:22:67:a8:15:23:c6:
f9:06:70:2a:37:ca:78:ec:b5:8d:9e:37:7e:e5:46:c5:6c:ad:
c9:91:b7:5d:d0:07:66:c4:b2:82:8d:99:7a:ba:1c:aa:c0:78:
27:cd:4d:b0:f9:23:d8:27:6d:1d:34:2d:be:c5:ad:8e:17:a5:
f4:c6:ef:81:f6:c1:12:c9:37:0d:e8:40:0a:9b:76:d1:48:ed:
16:00:dc:fd:7c:40:bf:c7:02:ba:c5:e3:68:5c:54:1e:ca:62:
9a:8d:a8:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:30 2026 by rpki-client