Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81B92DC0695711F1868969F5CE1D38B0.roa
File: 81B92DC0695711F1868969F5CE1D38B0.roa (raw, json)
Hash identifier: B8F/i1yriEslq++3JhBaILc18fCPtj/kJGEMCG7ufSM=
Subject key identifier: 4D:5D:B2:AF:4C:29:A8:81:3A:CA:D7:E8:5E:72:9B:D3:24:BE:3D:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D322
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81B92DC0695711F1868969F5CE1D38B0.roa
Signing time: Tue 16 Jun 2026 07:46:39 +0000
ROA not before: Tue 16 Jun 2026 07:46:34 +0000
ROA not after: Wed 22 Jul 2026 07:46:34 +0000
asID: 401701
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Jun 2026 00:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119586 (0x1d322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 07:46:34 2026 GMT
Not After : Jul 22 07:46:34 2026 GMT
Subject: CN=6a30ff5f-55dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:36:e2:89:84:1e:af:dc:b1:80:0e:73:03:c7:
e7:9b:91:b8:6c:b9:6c:f0:58:8a:06:9d:12:86:81:
99:ad:66:65:1c:cd:6e:03:d2:0a:50:5c:37:49:10:
41:f7:29:26:58:d7:2e:de:da:aa:c8:50:06:e3:86:
13:6d:ba:0d:15:46:e7:b3:1f:38:db:57:62:c3:15:
9a:ef:69:a7:40:84:45:21:9b:b5:e2:5b:2a:80:04:
05:06:16:5b:91:c4:fb:c0:dd:34:9c:82:33:33:1d:
24:67:fc:ff:7b:ca:a6:f2:03:d1:24:44:9c:17:4e:
6d:23:c0:19:d9:56:e5:70:36:c0:9a:62:34:7d:30:
30:a8:d8:4f:f7:53:d0:c3:4f:c5:6e:5d:a5:82:ad:
ec:ce:34:13:84:ca:c4:da:6a:95:38:5c:e1:71:8b:
d3:c8:1c:de:0b:41:ac:78:28:00:e6:29:86:a6:56:
da:8e:40:d7:05:ad:e9:3f:76:78:ef:81:a4:37:a5:
22:48:8e:a3:51:27:a8:4a:c1:eb:35:76:a3:ca:6d:
09:80:38:50:49:3c:ac:20:68:50:b8:e8:cd:18:bb:
10:52:3c:ec:c5:f9:90:2c:5a:5b:93:60:56:10:30:
73:9a:35:8a:66:5e:a3:12:64:68:e9:80:46:ac:e1:
e9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5D:B2:AF:4C:29:A8:81:3A:CA:D7:E8:5E:72:9B:D3:24:BE:3D:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81B92DC0695711F1868969F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
31:e0:cf:25:c7:28:a3:65:5b:97:64:ca:f0:b9:b1:af:ef:aa:
6a:de:9b:3c:a2:83:ea:90:27:57:93:de:81:52:4a:a7:3c:24:
69:4d:1e:32:2a:6b:cd:b7:5e:c3:48:07:13:13:4b:d3:aa:2b:
71:55:e2:4a:7f:84:8a:ac:e7:99:15:eb:b5:67:f7:da:5a:e7:
6d:68:2c:93:fb:68:34:1b:f1:5b:af:19:40:93:05:66:39:b7:
37:c9:da:89:21:d4:bd:3e:25:3a:16:6e:02:c6:82:df:d2:d3:
ba:de:a2:ee:cb:06:b3:a1:ae:47:19:31:ff:fd:a0:8e:54:a4:
4f:76:05:16:9d:5e:43:83:00:42:65:4b:a4:1a:28:3e:d9:ec:
d5:84:e2:79:76:c1:89:78:f0:c0:9e:88:bb:e4:3e:7d:55:a0:
dc:07:a5:e4:b3:27:3e:40:db:d8:74:84:32:3b:50:33:01:dc:
51:8f:3d:8d:b6:62:94:72:50:ef:ba:e9:a9:0f:4e:af:2f:9e:
4c:c2:9f:76:36:e2:4e:98:d5:b5:75:8d:83:64:41:c8:c9:20:
af:df:90:b5:2b:96:8a:f4:8f:59:08:02:a6:7b:06:1b:14:80:
9a:bc:0d:f5:74:6f:a7:6b:75:63:d5:88:94:c9:3c:1f:5a:8a:
09:28:ee:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 14:59:30 2026 by rpki-client