Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C42988E6C8811F183CFE0D3CE1D38B0.roa
File: 7C42988E6C8811F183CFE0D3CE1D38B0.roa (raw, json)
Hash identifier: WetrrDYY4H696MPXYEp56KNE+RD1/8r8EBBDpadogw8=
Subject key identifier: D4:FB:65:EA:3D:DD:61:AB:71:18:CF:1A:AF:52:24:A0:AE:3A:05:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D41B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C42988E6C8811F183CFE0D3CE1D38B0.roa
Signing time: Sat 20 Jun 2026 09:14:48 +0000
ROA not before: Sat 20 Jun 2026 09:14:43 +0000
ROA not after: Mon 27 Jul 2026 09:14:43 +0000
asID: 138915
IP address blocks: 154.206.100.0/23 maxlen: 24
154.206.102.0/23 maxlen: 24
154.206.104.0/23 maxlen: 24
154.206.106.0/24 maxlen: 24
154.206.107.0/24 maxlen: 24
154.206.108.0/23 maxlen: 24
154.206.110.0/23 maxlen: 24
154.206.112.0/23 maxlen: 24
154.206.114.0/23 maxlen: 24
154.206.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119835 (0x1d41b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 09:14:43 2026 GMT
Not After : Jul 27 09:14:43 2026 GMT
Subject: CN=6a365a08-1410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cc:bc:db:47:99:03:8f:ed:61:97:96:98:f2:
31:94:d4:37:82:b7:9e:80:d1:69:08:9b:47:d9:00:
ef:a3:30:07:7d:06:48:21:5b:f2:7a:4e:d9:6b:8f:
4e:0e:60:f9:dc:48:2f:84:a5:8c:bf:4e:bf:de:38:
93:f5:e8:d8:85:7b:e0:c3:c8:bb:6b:c6:e7:35:6a:
e9:11:e1:e0:94:7b:90:43:bf:b4:92:36:98:26:a0:
a7:89:8c:11:8f:33:9f:cd:d0:6f:dd:81:0b:66:14:
b4:3c:00:8d:48:80:6b:40:6d:a1:1a:32:b4:12:d6:
c6:ef:67:35:4d:a2:17:54:62:27:d8:5f:2d:3e:e2:
7e:de:3b:1d:3c:9d:f8:75:c0:38:34:d4:a7:30:c2:
e0:24:75:c9:37:3e:04:37:8b:26:f1:83:74:e3:12:
1e:c4:ac:5c:b9:1b:91:a4:20:5e:b4:a2:a7:7a:8b:
32:13:1e:1a:bb:62:9b:89:c5:2f:64:54:48:c4:de:
73:58:04:28:dc:83:f8:60:5c:8c:40:03:8b:a7:4b:
8a:5a:50:c9:9f:17:1b:d7:43:d8:a0:b1:73:33:64:
23:f6:4c:b0:2f:bf:08:6d:7a:5d:25:2f:74:8a:1a:
29:31:c8:8c:a7:07:b3:30:07:df:2d:48:88:a3:41:
d3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FB:65:EA:3D:DD:61:AB:71:18:CF:1A:AF:52:24:A0:AE:3A:05:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C42988E6C8811F183CFE0D3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.100.0-154.206.117.255
Signature Algorithm: sha256WithRSAEncryption
6f:2d:0d:05:f2:b1:a3:42:47:f0:3d:b3:23:c7:b1:f2:75:26:
84:df:92:7b:6d:4a:46:74:69:ca:9c:be:37:d8:39:94:d2:0e:
16:31:96:da:e9:83:c0:65:d0:c2:24:c1:6e:8a:32:ff:cd:3f:
fb:ad:ac:24:5f:ed:f2:2b:bc:75:6a:77:da:7b:4d:66:6f:b5:
70:d8:1b:6d:9c:b6:e3:4c:4f:85:1b:11:88:d5:85:50:88:8e:
30:eb:66:ad:44:8f:54:90:cb:a9:88:57:20:07:45:09:79:3b:
55:19:09:a8:fa:91:c9:47:50:0e:b3:9f:a8:e0:44:0a:e5:f3:
c1:92:4f:6b:98:e2:66:19:46:34:cc:1e:79:e8:45:4e:6a:ee:
eb:3c:78:9f:ab:d6:b2:72:14:bb:8d:c0:01:07:e4:76:f9:26:
92:90:0c:a5:5e:76:15:4d:76:d3:0e:82:86:ac:70:78:db:4f:
16:be:9b:7f:61:52:55:e8:a9:dc:5b:5e:30:49:ae:8a:ec:63:
51:5d:5c:eb:10:cd:7c:54:a1:6f:1c:93:9d:73:83:49:c0:0f:
19:a9:b0:ba:21:f2:61:61:1f:c2:b6:c3:33:5c:e2:83:7e:2b:
43:d2:8f:56:cd:95:1d:81:a4:cc:30:b9:89:4f:bc:e6:d8:0b:
b1:2f:9a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:17 2026 by rpki-client