Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75B96874699211F1B8C174D6CE1D38B0.roa
File: 75B96874699211F1B8C174D6CE1D38B0.roa (raw, json)
Hash identifier: oZJdfZXq1F4t92pydXf7kdVLlJu4ZcwIXl7aAsrP/DA=
Subject key identifier: A3:A2:4E:B4:6B:11:9B:A6:45:A5:24:A6:06:35:01:11:04:BD:B4:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D353
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75B96874699211F1B8C174D6CE1D38B0.roa
Signing time: Tue 16 Jun 2026 14:48:39 +0000
ROA not before: Tue 16 Jun 2026 14:48:34 +0000
ROA not after: Wed 22 Jul 2026 14:48:34 +0000
asID: 40779
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119635 (0x1d353)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 14:48:34 2026 GMT
Not After : Jul 22 14:48:34 2026 GMT
Subject: CN=6a316247-bb83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c9:86:9f:ac:00:eb:e5:8c:3b:9b:32:70:63:
b3:27:e3:89:8a:17:a6:2e:3c:5e:db:c6:4c:36:84:
39:fa:a6:f1:d8:fb:83:8d:85:d7:16:81:12:9b:66:
d0:54:a1:29:65:42:a3:09:0e:a2:c4:48:75:ba:47:
6a:fc:49:2b:d5:0f:e9:d7:51:80:1f:a3:99:e0:44:
06:2d:32:f6:16:71:ee:4a:7d:1d:78:27:cd:48:2c:
69:34:82:a7:81:53:59:19:c6:bb:25:ea:35:72:7e:
a8:6f:9a:33:d3:7c:3c:cd:74:0c:10:34:93:7a:31:
2d:53:08:3e:44:bc:05:bb:14:e6:4f:3a:d6:6f:f2:
96:c5:27:66:7e:5b:7c:70:ca:67:e1:c2:1d:59:6f:
db:b2:e8:03:55:c1:7d:ba:ad:b0:b3:b7:2f:e7:86:
aa:6a:16:e3:6e:4d:cf:5e:28:30:ad:bf:81:9b:03:
c3:fc:d7:07:b8:fd:c1:19:2a:ec:0a:11:29:58:c8:
92:f7:54:7e:dd:db:3d:13:2e:07:36:93:4b:1e:08:
23:26:11:0f:a2:3a:6d:f1:2c:56:71:66:94:5d:b7:
ec:14:e3:1c:4d:42:3b:a6:95:0f:9a:eb:3a:7e:ec:
1b:4f:7c:c0:71:4d:fe:4a:2d:11:06:f2:af:fa:76:
4a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A2:4E:B4:6B:11:9B:A6:45:A5:24:A6:06:35:01:11:04:BD:B4:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75B96874699211F1B8C174D6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
c5:d2:13:43:9e:c0:e4:10:98:c7:63:a9:14:4b:69:6d:4f:05:
16:fe:d0:64:a0:0b:f2:60:5d:ee:a2:24:ce:21:24:8b:96:72:
dd:33:76:0b:40:67:17:67:16:e3:fc:04:55:9d:f3:f0:81:59:
16:e6:81:5d:ef:49:92:0c:ff:3f:77:e3:c1:89:7b:11:fc:72:
23:17:64:14:ca:78:9c:4a:ca:f2:a8:c6:35:8f:f4:3d:1b:45:
2f:71:06:e1:25:60:55:45:f0:70:48:90:3e:73:94:24:22:aa:
85:25:ca:f8:ef:46:ff:e4:76:7b:b8:9e:52:4c:34:20:bb:44:
c4:70:ff:1e:7a:f8:eb:a0:36:69:89:56:70:9e:f6:d0:5d:3f:
a8:55:bd:a4:af:e5:93:1a:7e:f3:db:55:4e:dd:79:1f:46:10:
d1:00:39:67:96:f3:91:f6:a2:69:ce:97:22:cd:be:a8:29:a4:
71:86:1f:7a:c8:89:4e:d0:cf:f5:5b:b6:4b:72:4b:b5:90:9f:
71:cd:41:9d:a7:2a:ed:99:e0:0c:07:50:35:54:19:49:8b:96:
a5:0a:8e:e3:2c:c9:bc:f1:3e:77:7d:cc:e7:db:3e:12:40:f2:
19:37:95:57:be:bc:26:88:8f:da:18:6d:fd:56:d1:0c:24:57:
16:be:a8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:15 2026 by rpki-client