Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76DA94F26EF211F198B6C2CCCE1D38B0.roa
File: 76DA94F26EF211F198B6C2CCCE1D38B0.roa (raw, json)
Hash identifier: DVAivELldP84hLeooQj0ZxNQbcCSmVfMVDrzP6Cd3aY=
Subject key identifier: 74:3D:32:75:B4:F3:47:57:B0:65:C4:25:2E:01:78:78:2C:43:3D:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D494
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76DA94F26EF211F198B6C2CCCE1D38B0.roa
Signing time: Tue 23 Jun 2026 10:58:28 +0000
ROA not before: Tue 23 Jun 2026 10:58:24 +0000
ROA not after: Tue 30 Jun 2026 10:58:24 +0000
asID: 17497
IP address blocks: 154.196.156.0/23 maxlen: 24
154.196.172.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119956 (0x1d494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 10:58:24 2026 GMT
Not After : Jun 30 10:58:24 2026 GMT
Subject: CN=6a3a66d4-51ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b5:fd:fb:db:6a:e7:9b:83:f2:52:71:22:2d:
fd:a2:61:d8:ec:b6:33:f6:d7:4d:07:39:d4:a8:1e:
0c:ad:f1:bc:c8:92:60:3d:53:62:45:d4:2c:5b:0d:
b5:0c:8b:a8:ed:31:2a:f5:b1:c2:63:26:e7:5b:23:
1c:44:90:9a:35:21:1f:33:ed:fa:9c:f3:ec:f6:66:
2e:54:42:68:3f:2d:6d:37:1e:d0:04:25:a6:ab:e7:
44:e3:d9:78:ea:ad:f6:47:d9:b5:a9:48:c9:92:66:
26:14:07:d3:9c:47:dc:2d:47:84:02:9f:ae:a1:f9:
9f:f4:d7:05:02:68:1a:89:a7:34:a0:fe:a6:27:a1:
9d:b8:56:47:42:a2:c6:d1:38:20:a6:55:76:c9:a3:
87:5d:f5:d5:c0:77:d0:3d:d8:51:11:23:14:aa:a3:
b5:55:5c:22:32:13:f7:67:26:0d:22:03:a3:67:07:
52:28:ce:2d:78:5e:97:c5:a8:2c:85:b5:6c:dc:b4:
9b:b5:a2:3d:c6:65:9c:d9:c5:b7:1b:eb:f4:81:3b:
fc:91:b6:f2:f0:77:0a:11:d6:a6:64:6f:1a:4e:07:
7c:05:d8:a9:60:dd:8e:60:48:b4:da:c5:75:f3:f9:
02:3a:c9:18:9e:d7:e7:f0:14:91:f3:82:85:7c:fa:
a6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3D:32:75:B4:F3:47:57:B0:65:C4:25:2E:01:78:78:2C:43:3D:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76DA94F26EF211F198B6C2CCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.156.0/23
154.196.172.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:bc:8e:33:46:c6:93:12:ca:05:e0:80:b6:1f:31:3b:e5:52:
95:eb:98:a2:dc:80:a1:30:13:06:fd:0c:2a:58:18:5c:65:6c:
a1:43:dd:a5:d1:e2:ef:95:b4:17:2a:37:3a:96:0c:e0:7b:ff:
35:cb:59:f5:75:19:62:7c:88:ba:b6:56:d7:53:4a:c6:e9:c1:
6e:77:a4:5e:12:c4:7f:79:c7:fc:3c:bc:32:34:23:50:df:7c:
6e:ec:a9:c1:8c:d0:75:59:a1:38:8d:56:45:79:99:60:e6:f0:
5a:16:65:6d:8a:2e:9e:be:33:2b:15:07:3b:ce:10:ba:cd:7e:
34:a4:4c:04:31:fb:c5:00:fc:1a:2b:dc:9a:fe:a5:2a:79:a6:
aa:5e:1b:cc:c3:1a:0e:e7:1c:52:33:64:98:33:e0:4b:92:24:
b1:d9:37:30:95:19:ee:d3:5c:a6:d6:4f:9f:e5:32:22:a8:8c:
22:09:4a:88:2a:68:f0:c0:6f:14:2f:aa:80:bf:99:3e:40:d4:
b6:95:b5:b4:df:73:db:6a:91:d5:be:6e:74:96:2a:bc:82:93:
08:74:ce:87:04:41:1c:4a:24:f2:cb:8d:19:c5:82:2a:06:50:
79:2d:75:f8:ed:44:75:77:4a:b5:99:f1:4c:0e:09:65:43:a5:
19:48:6a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:02 2026 by rpki-client