Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7629598A6EDE11F183743CD4CE1D38B0.roa
File: 7629598A6EDE11F183743CD4CE1D38B0.roa (raw, json)
Hash identifier: Dcf3d0l9dD6CJB5i14EXBmq81MpeF9UBsEx2uhx0jj4=
Subject key identifier: 35:FF:27:C4:C2:C2:9E:97:B4:F3:C8:C3:FE:38:6D:D3:B0:C2:FC:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D47C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7629598A6EDE11F183743CD4CE1D38B0.roa
Signing time: Tue 23 Jun 2026 08:35:17 +0000
ROA not before: Tue 23 Jun 2026 08:35:13 +0000
ROA not after: Mon 03 Aug 2026 08:35:13 +0000
asID: 198652
IP address blocks: 154.198.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119932 (0x1d47c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 08:35:13 2026 GMT
Not After : Aug 3 08:35:13 2026 GMT
Subject: CN=6a3a4545-42a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:15:6c:7d:9b:13:41:bb:47:a2:41:f5:c2:9b:
1c:01:41:b4:51:24:13:81:74:af:ca:7d:54:6e:57:
c1:ae:29:2b:fa:29:56:e3:18:71:a1:56:2f:26:e9:
cf:4b:64:57:b2:dc:e3:36:65:d6:2b:72:92:ea:f0:
e8:c1:00:1c:22:ac:70:24:ea:46:44:e4:9e:2b:a3:
7e:01:ce:7b:6c:3f:6d:67:50:c9:5d:4d:c6:a3:c4:
02:a8:ab:67:c6:eb:12:c8:4c:91:bf:4f:8e:79:e0:
94:74:0c:93:39:ae:fb:ab:94:ba:89:42:11:24:08:
4a:1b:f3:bc:df:91:d3:0a:04:c6:83:89:d9:37:72:
71:ca:1d:c5:13:8f:26:98:2c:cd:b8:a8:cf:b0:d4:
53:43:6c:f6:c9:43:2c:98:b9:48:84:89:79:2d:c3:
de:50:53:38:8e:42:02:9f:5d:a9:a6:8e:8f:47:60:
aa:69:05:d6:9c:51:d7:c2:b4:a6:a0:1a:02:8f:31:
9d:c7:c1:57:76:69:90:00:16:69:99:24:3c:70:b4:
70:a3:28:14:cd:ad:70:5b:e8:d3:b1:2b:db:0e:61:
d8:8c:cc:1c:2b:51:9a:07:9c:ed:4e:aa:fb:4d:32:
63:70:0e:77:19:13:ef:ef:62:4b:a3:dd:8e:72:22:
0d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FF:27:C4:C2:C2:9E:97:B4:F3:C8:C3:FE:38:6D:D3:B0:C2:FC:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7629598A6EDE11F183743CD4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.12.0/24
Signature Algorithm: sha256WithRSAEncryption
34:62:ae:99:4e:f3:cc:b6:0b:82:52:35:36:58:6f:78:bb:c5:
43:54:5d:07:5f:94:e2:18:2b:3d:7a:a9:17:47:a3:4a:24:66:
94:d9:e1:27:05:0b:ff:bf:ed:09:c3:18:1d:11:df:41:45:53:
6d:6d:6a:94:85:76:a7:78:93:52:ab:a2:df:45:f2:98:93:e5:
a2:d8:1a:e7:a3:98:46:af:bb:ed:9f:44:30:74:2d:19:1b:a1:
0c:42:f8:ef:33:66:73:ea:83:3f:c1:b7:32:85:39:63:94:a3:
a5:94:8b:10:8e:dc:90:b4:af:b9:04:f8:cc:a2:1d:25:78:6a:
f2:3f:aa:21:b9:ed:2e:06:bc:95:52:42:72:61:77:6e:62:f3:
03:bd:4d:bd:56:bb:e2:9b:37:06:4d:fc:64:c1:02:8d:8c:d1:
b7:96:59:39:ab:1b:3c:db:fb:2b:21:2f:20:75:0d:b3:95:38:
ea:01:ab:4d:71:5f:14:35:d1:60:9e:19:db:1c:64:9b:82:52:
a7:c5:84:d4:d8:de:95:d2:80:ed:b4:a7:07:0a:cd:80:ea:7f:
04:71:28:d1:ca:8f:52:aa:fc:1c:b7:6c:cb:8e:2b:0b:48:49:
b4:a8:c3:4a:e0:06:92:b6:21:e2:05:3b:45:f1:65:f1:3c:0d:
2e:a6:20:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:55 2026 by rpki-client