Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/349891FC6F2411F1A4CE84F3CE1D38B0.roa
File: 349891FC6F2411F1A4CE84F3CE1D38B0.roa (raw, json)
Hash identifier: 84DBcpV/opUImZaqH6duY6iRoLqakrWi4QeoDFt+txs=
Subject key identifier: 0A:B4:F0:D4:B7:59:DC:AB:B5:D3:07:FB:4C:A1:2A:49:B1:87:06:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D4AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/349891FC6F2411F1A4CE84F3CE1D38B0.roa
Signing time: Tue 23 Jun 2026 16:54:32 +0000
ROA not before: Tue 23 Jun 2026 16:54:26 +0000
ROA not after: Tue 28 Jul 2026 16:54:26 +0000
asID: 200758
IP address blocks: 154.83.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119980 (0x1d4ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 16:54:26 2026 GMT
Not After : Jul 28 16:54:26 2026 GMT
Subject: CN=6a3aba48-aa76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8b:3b:53:f1:81:83:fd:4b:9e:39:93:b3:9c:
2a:db:ea:e7:d3:f3:b9:2c:32:6f:8e:0f:01:d0:45:
dd:dd:6f:00:63:89:9b:16:dc:f1:ce:cd:89:c5:f6:
f5:51:8e:c8:f6:00:ad:42:c4:3c:3b:31:a3:e4:46:
4a:90:15:aa:06:75:a2:13:9b:6f:19:a9:89:eb:b8:
ab:7b:73:ef:6c:17:7f:47:e2:51:d2:fb:d3:d6:29:
7e:07:12:de:50:56:8e:8b:7c:3a:d2:24:1b:f1:ea:
5c:31:f3:94:2a:cb:79:82:d7:ea:21:70:4b:de:94:
81:6e:77:8a:e7:6f:5c:f8:b9:b4:96:4d:f3:d1:24:
e3:01:a4:21:33:d1:f1:1e:c8:24:87:ba:58:5f:83:
93:a2:43:82:8b:16:63:d0:35:cf:50:c3:e9:f8:80:
c4:fe:a7:49:a1:32:31:b8:13:74:2e:1e:1f:af:96:
53:5d:b7:b3:5f:65:aa:f3:c0:c1:d4:5c:77:82:d5:
47:2f:1b:1d:a8:e9:24:43:f5:3e:ed:a4:9a:2c:14:
35:8f:ee:13:4e:39:ad:78:c1:59:44:e3:9e:13:0b:
09:c3:de:53:71:04:a4:77:54:31:3c:3a:c9:9c:28:
48:dd:28:73:25:91:df:79:78:f1:9b:47:e2:2e:86:
48:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B4:F0:D4:B7:59:DC:AB:B5:D3:07:FB:4C:A1:2A:49:B1:87:06:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/349891FC6F2411F1A4CE84F3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.140.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b9:b9:b5:ac:da:28:38:d2:f1:03:2b:39:17:35:06:62:12:
79:1b:8a:38:e6:42:80:5b:f1:7c:33:0d:73:6f:84:40:df:33:
d1:75:2e:89:64:bc:f6:56:14:f5:21:47:59:32:c7:a4:8e:4b:
66:79:30:ab:81:f9:ca:73:2c:74:08:1f:a7:a1:c0:e5:a1:d2:
90:5f:b3:2b:d9:83:c4:d4:18:ba:2d:4e:41:37:b9:f1:52:5e:
91:d3:e6:ba:ca:39:57:14:1e:09:a3:fb:fe:92:5a:a9:60:32:
56:06:a9:d1:87:f9:4b:37:b8:34:38:2d:64:79:c0:fa:31:d5:
eb:7d:54:48:5f:97:ee:14:8a:33:11:72:3b:23:83:a9:69:02:
2e:fa:9c:3f:20:80:e8:bb:96:c4:0c:7b:d2:06:99:bc:a9:23:
f5:b4:95:ac:92:96:ec:a5:ca:a8:17:33:f2:10:a7:51:97:51:
6c:3a:4a:bd:65:9a:4c:92:96:bc:ce:21:83:d9:c6:e5:9a:18:
35:ca:18:ce:27:9a:90:ed:5f:39:7d:ff:8e:69:53:87:34:0b:
ef:b3:d0:19:02:05:f4:52:cd:40:d0:56:07:b1:8b:6e:d0:71:
97:da:18:81:ef:ae:2a:a2:0a:21:0c:1d:92:42:a2:65:99:41:
cf:00:36:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:37 2026 by rpki-client