Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/349D2BBA6FAE11F18BBF77C1CE1D38B0.roa
File: 349D2BBA6FAE11F18BBF77C1CE1D38B0.roa (raw, json)
Hash identifier: mxIgVt3IxFh+apjnjkIC+fujv7P/oU7WuNVhH2ZumwI=
Subject key identifier: 88:0B:3A:F1:ED:4D:8F:64:EE:BA:BD:BC:4B:F7:0E:39:DD:07:C6:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D4B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/349D2BBA6FAE11F18BBF77C1CE1D38B0.roa
Signing time: Wed 24 Jun 2026 09:22:23 +0000
ROA not before: Wed 24 Jun 2026 09:22:18 +0000
ROA not after: Sat 01 Aug 2026 09:22:18 +0000
asID: 62240
IP address blocks: 154.90.173.0/24 maxlen: 24
154.94.34.0/24 maxlen: 24
154.94.39.0/24 maxlen: 24
154.94.42.0/24 maxlen: 24
154.94.45.0/24 maxlen: 24
154.94.57.0/24 maxlen: 24
154.94.58.0/24 maxlen: 24
154.94.61.0/24 maxlen: 24
154.94.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Jun 2026 00:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119985 (0x1d4b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 09:22:18 2026 GMT
Not After : Aug 1 09:22:18 2026 GMT
Subject: CN=6a3ba1ce-66b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4d:a3:de:b8:47:1e:cf:40:f2:4a:66:84:ed:
bf:c5:57:6f:2e:51:5d:60:a3:8d:ba:21:4f:0a:7f:
d0:5d:7b:e1:43:15:52:a8:eb:3f:0e:4e:05:44:83:
a8:c7:6d:b4:7d:57:f6:c2:3c:7c:bf:20:f7:12:97:
39:d2:07:62:5a:df:97:d7:32:70:1c:33:3f:5d:85:
0d:f7:14:97:8c:19:67:15:3e:4d:29:ff:9a:dd:20:
14:48:d7:6a:c4:a6:1f:ea:f9:f7:f5:1b:65:5c:c0:
80:08:aa:4c:b0:22:25:7d:88:df:02:ed:fc:70:28:
b2:b3:89:fd:aa:52:7c:bf:f8:0a:60:8b:a1:f9:a5:
2c:70:50:7d:f4:7f:80:b3:97:19:51:7f:26:43:30:
5b:96:a5:5f:9d:3d:3c:a0:82:52:53:60:fc:4e:bf:
7a:3b:df:9b:52:83:37:fc:44:ac:8c:ba:a2:34:63:
b6:fd:ae:fd:5d:66:62:ac:8a:1c:0c:ea:25:60:de:
c6:22:23:95:cc:5b:ab:40:92:c5:71:73:88:84:1b:
2d:8a:8a:0e:bd:18:b7:29:90:ef:a3:0f:52:56:f6:
f5:1f:c0:3f:35:ae:14:51:81:45:11:e9:cf:d2:a5:
9a:29:1b:7d:5a:0e:8f:b3:e9:ad:18:06:71:d8:9d:
81:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0B:3A:F1:ED:4D:8F:64:EE:BA:BD:BC:4B:F7:0E:39:DD:07:C6:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/349D2BBA6FAE11F18BBF77C1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.173.0/24
154.94.34.0/24
154.94.39.0/24
154.94.42.0/24
154.94.45.0/24
154.94.57.0-154.94.58.255
154.94.61.0-154.94.62.255
Signature Algorithm: sha256WithRSAEncryption
49:90:1c:83:c1:45:95:a9:4b:e7:7b:b7:a0:d5:d9:81:3b:1a:
b5:6a:1b:07:31:56:fe:03:1b:8b:2e:23:3e:01:45:43:fa:bb:
3f:90:7a:c2:ac:8d:53:50:fd:be:c2:2a:bf:e0:8b:e4:8d:d3:
89:5d:90:cd:64:44:cd:f9:df:c5:f3:27:c7:d6:e6:5f:8e:b9:
a1:d2:d1:77:51:e9:3a:4e:f3:89:03:dd:02:88:0e:2e:b5:e4:
1d:fb:af:f6:41:46:81:15:e9:c2:86:6b:94:5e:54:88:62:30:
8c:9f:1c:6f:49:53:c9:6d:ad:b1:6d:36:2b:f1:66:66:83:be:
a5:e5:0e:ff:73:d7:c9:e1:e3:29:00:d3:1f:2c:40:3f:3d:d7:
49:d4:13:ca:0e:56:e3:25:6f:be:18:0a:58:5c:8c:2d:4b:13:
88:26:c5:fe:98:e4:8a:45:bf:9d:a5:83:1c:61:f9:ec:6f:75:
c8:12:d0:b6:fe:a9:51:a2:11:e8:06:99:2a:e4:02:9e:36:91:
f0:11:d7:56:f6:ed:e8:eb:1f:8d:04:4b:8a:41:14:8d:50:87:
ac:21:2a:56:e3:6e:ff:da:ca:29:bf:a9:d7:d9:d9:5a:46:b6:
e9:0e:e3:19:80:c0:18:54:da:05:06:d8:a1:46:06:1f:75:9a:
3d:cc:7f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 17:41:14 2026 by rpki-client