Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B34E19E672F11F18119C8D2CE1D38B0.roa
File: 7B34E19E672F11F18119C8D2CE1D38B0.roa (raw, json)
Hash identifier: vWWQoCXdu+jfPltvLG9ybSwSELs2pJm9dFfsFN0R+iI=
Subject key identifier: 16:0F:8A:4C:CE:3D:FD:67:CB:F6:3F:9F:A1:47:31:04:52:EE:1B:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D2A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B34E19E672F11F18119C8D2CE1D38B0.roa
Signing time: Sat 13 Jun 2026 13:55:07 +0000
ROA not before: Sat 13 Jun 2026 13:55:01 +0000
ROA not after: Fri 28 Aug 2026 13:55:01 +0000
asID: 138152
IP address blocks: 154.211.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119465 (0x1d2a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 13:55:01 2026 GMT
Not After : Aug 28 13:55:01 2026 GMT
Subject: CN=6a2d613a-684b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:62:dc:fa:62:b4:6a:67:67:7d:c1:dd:b1:f8:
71:aa:a0:bb:a8:fe:b2:48:dd:d7:13:73:31:eb:12:
98:27:41:a9:77:95:79:ed:9e:79:4a:e5:b5:40:f4:
55:d1:f9:37:f7:83:30:a5:67:6e:97:65:45:19:17:
94:47:24:97:73:e6:82:99:2a:05:44:71:5f:88:42:
2d:6b:db:1e:47:9d:3f:57:51:72:28:25:4e:d4:50:
e4:2d:5b:a4:c4:a9:5c:2d:ae:9f:8b:31:d4:0d:17:
da:67:e3:ae:2f:11:e1:42:35:eb:df:79:3a:98:87:
e6:60:39:2a:ed:db:23:ca:47:f5:ee:28:38:d3:0f:
35:18:14:c1:4d:77:3d:5e:36:6a:4e:c5:3d:76:2d:
24:32:f8:9c:16:7f:b1:9f:11:56:67:b9:83:64:ac:
7e:af:c0:13:e4:06:80:35:2b:94:5f:b9:fb:19:14:
df:41:92:fe:ed:01:ab:90:15:41:7a:ae:49:87:7d:
ad:8a:c9:21:e3:7d:47:ce:cb:f0:a3:d2:ab:58:13:
33:a2:3f:1c:d3:15:dc:e4:47:a0:b5:66:85:c3:09:
7d:84:f1:a1:e3:94:81:ce:6c:70:b6:d9:f1:97:d7:
9f:b4:23:f9:79:01:a5:a4:b2:d0:2e:14:14:eb:03:
8b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0F:8A:4C:CE:3D:FD:67:CB:F6:3F:9F:A1:47:31:04:52:EE:1B:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B34E19E672F11F18119C8D2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.15.0/24
Signature Algorithm: sha256WithRSAEncryption
95:1b:5e:3b:c5:e3:16:68:a9:d8:4e:72:b6:7f:57:cf:b6:25:
7a:57:f9:0d:c3:8b:9a:1a:97:2a:e2:17:fb:07:6c:32:39:25:
11:5c:f4:2f:8e:72:07:f9:e6:09:e4:6d:3b:d7:ca:a9:68:56:
a2:8a:7c:e8:1c:1d:c7:68:2e:4e:e6:4e:40:d9:b2:e9:45:83:
78:ab:dd:27:60:3f:3a:69:1b:79:ab:d4:e8:72:5e:be:b8:4f:
11:d5:c7:fb:e5:c8:c8:d1:ce:6e:31:c5:66:6b:07:7a:3f:2d:
68:86:dd:24:f4:61:4b:36:ae:f1:b8:54:3d:d5:b0:d4:22:45:
f7:5b:0e:6d:ff:3a:8d:ea:c2:2c:90:0e:fd:f1:f6:bb:df:1a:
e2:9e:f6:6c:e0:23:5b:a1:f7:81:33:05:3d:21:68:4b:cd:ae:
df:f7:b0:a5:83:2e:2e:8a:cd:0e:14:33:82:f3:5d:9a:01:68:
da:32:29:0f:5a:6d:69:da:de:2a:a8:e9:e5:04:59:a3:d0:8f:
06:8c:52:3e:e2:06:c0:25:3c:f0:94:fe:09:20:80:0b:a0:22:
7b:dc:8e:3b:a9:ce:03:30:17:02:38:92:b7:18:8b:30:e5:9e:
2a:fe:8e:1e:76:8c:17:42:be:34:15:29:88:0e:79:1c:8e:96:
6a:26:04:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:15 2026 by rpki-client