Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C87744E3EE011F18C8FC9A0CE1D38B0.roa
File: 6C87744E3EE011F18C8FC9A0CE1D38B0.roa (raw, json)
Hash identifier: LczPNJbpFHNw2bEQtCaJQTVBaKVvBQNq0KlnBDBCReo=
Subject key identifier: 74:CB:FF:02:2C:DA:20:90:34:B7:B3:FA:0F:81:2E:C2:B3:5F:D8:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6C1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C87744E3EE011F18C8FC9A0CE1D38B0.roa
Signing time: Thu 23 Apr 2026 06:48:24 +0000
ROA not before: Thu 23 Apr 2026 06:48:19 +0000
ROA not after: Sat 23 May 2026 06:48:19 +0000
asID: 215224
IP address blocks: 154.83.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116417 (0x1c6c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 06:48:19 2026 GMT
Not After : May 23 06:48:19 2026 GMT
Subject: CN=69e9c0b8-a175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ec:b6:c6:94:8a:06:84:0b:b8:b5:e3:2c:92:
bc:42:d3:f6:c0:c1:85:4e:84:9b:25:68:32:14:af:
98:1d:e1:ad:18:4f:7f:83:d3:47:2d:e4:7f:f4:0d:
24:52:9b:3f:2d:fe:a8:79:2d:f3:d3:14:a1:7a:6d:
6f:a3:c8:1c:7f:08:34:67:b3:d0:93:aa:ef:43:92:
0a:e6:31:0f:dc:a0:42:02:e8:39:d2:3c:52:ba:aa:
34:c3:4f:91:9c:98:b1:59:a6:47:b1:46:a2:1a:02:
44:6b:55:32:67:5b:25:ae:f8:6a:31:03:89:91:93:
51:d5:b7:17:a4:e5:f0:33:3e:29:18:3a:4a:57:70:
28:b4:14:9d:f5:34:ab:cd:4b:c4:a5:64:80:31:30:
70:ce:b2:d0:39:d7:a0:fb:35:2b:05:b0:46:c0:77:
bf:07:e9:8b:c3:50:10:73:bd:c5:a9:25:f4:81:5f:
b2:76:91:2f:a5:5a:51:3d:fa:59:80:de:e5:72:9b:
96:ac:0b:b8:9b:8e:91:87:47:20:e9:64:58:59:6d:
1f:15:58:30:7e:9b:36:40:28:59:a9:42:dd:c5:26:
6d:ae:5f:7f:df:a4:94:84:3e:2f:f5:82:eb:41:24:
d4:b3:67:20:ac:ee:6a:86:0c:00:d4:0f:c6:f2:f9:
11:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CB:FF:02:2C:DA:20:90:34:B7:B3:FA:0F:81:2E:C2:B3:5F:D8:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C87744E3EE011F18C8FC9A0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:c9:b6:e7:ad:a9:b1:15:27:a3:a7:cd:e8:7d:51:e0:6f:40:
be:42:cb:63:50:78:24:2d:5b:ed:ab:b4:b2:10:34:95:cd:05:
ff:9a:b3:75:6c:ad:e8:3c:98:f1:65:4c:b3:e0:92:3f:3f:e2:
63:8b:aa:8c:1d:4a:86:cc:5d:3b:f0:31:37:84:ba:7a:cc:91:
23:0d:46:81:6b:56:5d:7a:b6:47:93:d4:99:ca:8e:32:15:cc:
b0:9d:e0:41:75:88:c5:c3:de:a6:5e:76:84:2a:67:48:b5:2b:
28:21:52:49:ba:d2:59:82:89:d4:98:65:b6:df:ba:5e:8c:af:
a7:45:02:6f:62:77:15:38:7a:fe:dc:95:fd:7f:93:ba:31:5a:
a8:7a:2b:d3:e9:32:42:1d:af:c2:95:65:bf:56:d3:70:a0:a3:
e8:6b:86:73:b6:ad:c6:63:f4:75:45:4a:88:8d:18:81:47:dd:
05:4f:a8:28:a5:54:35:50:30:e9:72:5f:87:86:71:3c:4b:40:
c3:d3:eb:81:0b:3d:b1:53:e1:20:99:00:08:57:a2:70:80:28:
5b:1d:57:1e:c4:0c:b6:8a:f0:65:57:7c:9e:5a:80:62:cd:55:
e7:1d:29:15:5c:74:bf:5a:3a:5d:f5:04:44:e7:28:77:67:6b:
3c:2d:f0:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:04 2026 by rpki-client