Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/770EAA105EA511F18BE745EACE1D38B0.roa
File: 770EAA105EA511F18BE745EACE1D38B0.roa (raw, json)
Hash identifier: 4ta95O/XfWTvzyG94K8SQTHnXHpquCjl5rr7Xj4DFmA=
Subject key identifier: F5:99:5A:EE:66:37:1F:94:8E:B1:34:1A:A5:B0:DE:1C:C2:FD:2C:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D14C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/770EAA105EA511F18BE745EACE1D38B0.roa
Signing time: Tue 02 Jun 2026 17:06:59 +0000
ROA not before: Tue 02 Jun 2026 17:06:53 +0000
ROA not after: Thu 09 Jul 2026 17:06:53 +0000
asID: 48031
IP address blocks: 154.210.239.0/24 maxlen: 24
154.219.94.0/24 maxlen: 24
154.219.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119116 (0x1d14c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 2 17:06:53 2026 GMT
Not After : Jul 9 17:06:53 2026 GMT
Subject: CN=6a1f0db3-1eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:04:5e:a1:f4:ac:71:98:06:4c:d9:64:72:bd:
3a:c1:67:9a:14:df:79:00:6e:14:c3:97:08:f7:88:
ac:25:86:14:0e:24:e1:71:87:c9:53:65:c4:94:2b:
06:26:ce:b9:00:82:9e:57:c6:8d:c3:f6:de:46:92:
ea:80:20:fe:19:22:37:5d:71:73:a3:bf:56:60:7c:
20:7c:d3:2c:19:f3:de:a2:af:16:f4:61:4e:d1:4a:
e1:5a:62:49:de:05:d6:58:a6:d7:bf:2e:40:0b:ab:
4c:9c:cb:50:d0:b6:3f:76:d0:26:f7:69:0a:aa:d6:
f2:e1:74:e7:ce:10:0e:11:92:1d:88:d0:cd:34:3b:
db:67:25:df:9b:e0:0e:61:78:19:63:5b:cc:fb:05:
12:6d:24:28:22:c3:13:c6:11:00:2b:8e:ef:27:34:
42:89:35:49:13:d0:89:51:94:cb:a5:64:03:fe:af:
1a:25:2e:6b:03:ee:b0:cb:89:64:97:3b:3c:a2:2c:
55:e9:a5:e5:ab:06:bf:d2:a5:df:9d:aa:62:0b:2a:
75:55:78:29:8e:41:52:de:4e:86:85:f2:df:a8:3a:
e5:c3:c5:52:f5:c3:49:a4:40:84:5f:34:95:31:6f:
b9:ff:91:40:30:e2:66:85:0b:73:36:56:b2:00:ca:
24:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:99:5A:EE:66:37:1F:94:8E:B1:34:1A:A5:B0:DE:1C:C2:FD:2C:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/770EAA105EA511F18BE745EACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.239.0/24
154.219.94.0/23
Signature Algorithm: sha256WithRSAEncryption
99:09:5b:5c:eb:ed:5e:b6:0b:6d:74:77:74:f1:86:82:32:68:
77:eb:1c:b5:f6:62:d7:5f:59:ef:e3:c2:f7:03:25:f6:5f:e0:
ae:72:64:91:46:38:a7:0f:cc:9f:f1:aa:8c:b8:e1:6e:61:3e:
c3:64:c2:e8:41:24:2e:bc:c5:d0:d5:fd:6c:89:0c:2e:b0:e9:
82:38:93:b8:fb:ee:3a:5d:2e:82:6a:83:a6:a6:f6:4a:c1:97:
82:92:02:40:1d:57:af:98:bb:06:66:fe:cc:93:ce:ff:07:99:
87:55:57:1d:4e:c7:bb:bb:00:a4:b6:46:29:fe:74:9b:c1:7e:
16:bb:f8:fd:05:9d:fb:ca:e7:be:e9:55:b1:5c:a7:2f:a4:ae:
02:37:9a:64:df:d7:3e:bd:07:a0:c7:64:4a:dc:92:90:6a:e1:
73:a2:32:65:ee:84:6a:aa:ac:78:32:8d:49:c9:ed:a3:24:cc:
62:d3:58:da:fc:2f:fc:0e:c4:ae:b9:1e:f1:8a:ab:9c:9e:9b:
c7:79:90:a0:3a:c8:39:29:85:b8:19:ef:47:b9:d9:19:2e:0c:
b4:5c:28:ad:8a:cd:c0:51:2f:6d:66:d8:5c:b7:f7:72:f7:83:
fc:9b:5b:e3:59:27:b3:3d:9c:8f:cd:a8:d0:b5:38:d6:bd:01:
8e:51:00:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:02:49 2026 by rpki-client