Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B2091DC68C711F19194CFFFCE1D38B0.roa
File: 7B2091DC68C711F19194CFFFCE1D38B0.roa (raw, json)
Hash identifier: tY5ZGF65ss3xrFysXSf/FYrkkKmreWY6VAjIPuxw7gM=
Subject key identifier: 42:EE:53:31:3F:A6:38:1A:67:BE:4A:B1:44:DE:3B:3B:DD:9B:42:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D2DD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B2091DC68C711F19194CFFFCE1D38B0.roa
Signing time: Mon 15 Jun 2026 14:35:40 +0000
ROA not before: Mon 15 Jun 2026 14:35:36 +0000
ROA not after: Fri 10 Jul 2026 14:35:36 +0000
asID: 213169
IP address blocks: 154.83.91.0/24 maxlen: 24
154.83.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119517 (0x1d2dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 15 14:35:36 2026 GMT
Not After : Jul 10 14:35:36 2026 GMT
Subject: CN=6a300dbc-dc3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:09:e9:32:cd:fa:38:04:62:f8:7d:dd:c6:e3:
27:7f:26:14:4e:27:77:81:e1:06:a0:c9:72:66:ca:
57:d1:93:63:bd:41:73:96:40:73:8b:50:65:74:9f:
5b:fb:77:d9:60:85:93:7e:73:93:09:d4:ce:cf:d3:
85:fa:71:a9:a9:4d:52:07:32:c4:56:03:1b:3c:26:
d8:eb:ec:77:a2:bf:33:18:e3:72:7f:df:fa:b0:d0:
f2:dc:36:6c:cb:8c:1f:13:f8:0a:61:51:85:40:19:
88:51:cc:e6:43:32:b5:bf:73:b6:e3:3f:83:c1:05:
1e:9d:fc:9f:2b:4e:3c:ee:73:56:59:dd:d6:05:3c:
63:5c:9a:a8:66:67:45:d0:72:42:0a:94:4a:a7:06:
b7:05:07:db:c5:d1:7f:9d:77:74:da:fc:3a:a6:cc:
78:a3:ec:55:30:76:49:07:82:88:a9:f9:4f:39:3a:
8c:44:61:c3:2a:19:a8:ad:3b:b7:b7:85:bb:48:2d:
19:f4:56:07:56:55:9c:9f:24:f3:e7:3b:16:6e:ce:
87:99:ca:eb:8c:51:fd:65:f1:bc:51:77:cd:91:28:
06:b0:d9:17:6a:b7:be:1d:14:f8:73:5b:c2:63:b0:
41:1d:8a:2d:ba:03:52:ad:ba:6d:12:ff:59:d9:de:
30:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EE:53:31:3F:A6:38:1A:67:BE:4A:B1:44:DE:3B:3B:DD:9B:42:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B2091DC68C711F19194CFFFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.91.0-154.83.95.255
Signature Algorithm: sha256WithRSAEncryption
3a:82:e7:80:2c:92:16:e1:32:ca:d4:39:05:13:a9:c4:99:45:
e2:15:e8:32:1e:aa:14:aa:ff:6e:17:6e:ce:14:fa:19:01:66:
3a:e3:6d:2b:81:60:4c:b8:14:8e:a0:61:f2:f5:f8:c8:a9:f2:
1c:c3:ea:a1:54:0f:ff:bd:ba:1e:17:86:bb:22:15:c7:78:80:
8b:30:8b:e2:0d:9f:21:8a:97:5d:71:9d:44:c1:01:a7:25:7f:
93:05:1f:76:9a:63:b8:16:0a:d3:fe:ad:cc:c2:9a:23:5e:e2:
36:7b:40:85:b8:f8:75:74:2f:60:b7:e7:e8:01:fc:f4:cb:26:
53:cb:31:cd:a3:3b:19:5a:69:e1:07:84:75:8c:1f:a4:a3:8f:
28:15:43:6f:9c:7f:e6:44:b1:92:fa:fd:b1:0f:fc:2b:0a:79:
f9:d7:eb:dc:5a:c2:ab:16:5d:06:ee:2a:47:88:07:30:51:02:
0d:04:f1:fc:33:5e:40:b5:82:c4:74:3c:1e:e2:6b:e3:56:0a:
c8:9a:62:70:94:77:cc:ce:c6:ea:8f:41:b3:38:b8:ac:ce:55:
5d:3c:0e:1b:35:f4:5b:d6:b1:5f:5a:ad:21:a6:ba:85:59:8f:
6b:cb:30:a6:3d:f7:49:8b:09:94:dc:4b:05:3a:7f:68:7d:34:
29:c7:12:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:55 2026 by rpki-client