Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DE272D86A4211F187CFF80ACF1D38B0.roa
File: 7DE272D86A4211F187CFF80ACF1D38B0.roa (raw, json)
Hash identifier: omqAINMizmKOuWxVZdWfJSgVG/Q428gtmXcRN4Y6mtM=
Subject key identifier: 73:48:03:A2:EA:23:6D:0C:42:55:A7:CF:55:55:23:BE:01:AE:F9:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D3B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DE272D86A4211F187CFF80ACF1D38B0.roa
Signing time: Wed 17 Jun 2026 11:48:44 +0000
ROA not before: Wed 17 Jun 2026 11:48:39 +0000
ROA not after: Fri 24 Jul 2026 11:48:39 +0000
asID: 153706
IP address blocks: 154.89.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119732 (0x1d3b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 11:48:39 2026 GMT
Not After : Jul 24 11:48:39 2026 GMT
Subject: CN=6a32899c-6cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:7c:ed:ff:bb:59:17:08:7b:fe:88:9a:19:
79:0f:76:ce:1a:5e:6b:6b:a8:65:f6:18:3f:e4:5c:
4d:63:6a:60:28:b1:e7:1c:52:84:b7:f1:2a:18:e8:
75:4e:0b:34:21:06:54:01:d5:18:05:11:c6:e3:2a:
ae:24:08:83:5b:92:ab:f5:fe:b9:28:f5:d1:80:5c:
7e:ec:e1:72:f0:99:fb:46:03:d9:e5:40:34:5e:7f:
23:be:c0:2f:4d:7c:d8:34:58:2e:f4:25:61:08:2d:
56:41:f9:b4:4a:10:06:e2:70:cf:26:48:30:df:9c:
bb:80:c1:fb:44:71:71:30:a9:bb:27:5e:40:80:6c:
61:4b:a8:e3:a9:44:13:c7:ab:21:ec:da:2d:b8:0c:
5a:9e:e8:e3:d8:fc:7b:1f:25:3e:45:a1:e1:15:ab:
41:c5:6a:04:70:c1:af:cd:80:5b:57:3a:0a:2f:7f:
50:25:3a:82:4b:13:4b:ef:1f:42:b2:b6:26:86:1b:
10:d6:ed:bf:a1:bd:9b:ec:9d:d4:51:d3:6a:a5:a9:
65:4d:b2:20:e2:da:1b:05:6b:8b:52:7c:8e:63:e8:
61:52:20:d5:af:27:e2:e0:7e:8e:5b:1b:34:ad:19:
66:b9:0c:45:95:90:6c:f9:22:7f:e3:d3:3b:3a:2c:
20:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:48:03:A2:EA:23:6D:0C:42:55:A7:CF:55:55:23:BE:01:AE:F9:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DE272D86A4211F187CFF80ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.194.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ea:03:82:70:5f:0f:aa:cb:bf:bd:96:eb:76:42:dd:fc:67:
e7:8b:61:88:8a:3d:4b:2d:6e:a5:d8:b4:e3:ae:23:a8:80:14:
7e:05:4b:d4:a5:ba:3c:52:a5:6e:a6:d0:c6:7b:25:a6:81:4a:
6e:db:87:9a:5c:65:7a:89:50:6f:26:13:8f:df:f1:17:e4:71:
24:d9:b7:20:af:ef:74:75:d4:69:15:36:29:33:67:ca:ed:9b:
77:e9:8d:48:d6:14:be:7d:5d:a3:db:b4:e7:c7:4b:13:74:15:
57:8f:41:4b:06:f6:b3:a5:52:d6:c7:5e:63:20:b1:cb:58:1b:
ea:c6:91:86:20:8f:9f:96:5a:dd:d5:83:7b:91:17:d3:5c:99:
f7:c5:65:db:a9:b2:24:f6:da:36:f7:68:e5:d1:76:20:9c:d0:
b9:48:cf:43:df:f3:f7:89:88:b2:bb:bc:83:da:2e:d4:f3:a6:
ad:27:90:da:6d:2b:9a:d1:b0:28:7e:d5:0d:28:d7:bd:a5:85:
37:7e:a7:22:0a:b4:98:29:53:43:14:d6:27:a0:e5:6b:d2:b7:
02:fa:6a:c1:6e:a9:b2:e5:50:b7:d9:aa:72:9c:07:90:ee:9d:
9c:09:78:ad:08:95:7a:c1:04:2a:b5:ed:1c:f5:ae:e6:a3:9a:
0b:d2:24:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:45 2026 by rpki-client