Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/830F519C68DD11F19866CC03CF1D38B0.roa
File: 830F519C68DD11F19866CC03CF1D38B0.roa (raw, json)
Hash identifier: FDKmewkAIgUMX9ulcI8KL1buIU7lGSOQH4MyIemLpIE=
Subject key identifier: 5A:56:4A:F3:F4:65:67:26:D5:F7:A7:B9:1C:30:0D:44:FC:DE:E9:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D2E7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/830F519C68DD11F19866CC03CF1D38B0.roa
Signing time: Mon 15 Jun 2026 17:13:22 +0000
ROA not before: Mon 15 Jun 2026 17:13:18 +0000
ROA not after: Thu 16 Jul 2026 17:13:18 +0000
asID: 151419
IP address blocks: 154.88.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119527 (0x1d2e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 15 17:13:18 2026 GMT
Not After : Jul 16 17:13:18 2026 GMT
Subject: CN=6a3032b2-e14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fa:a1:8c:0f:91:9a:a5:79:a1:de:be:87:c1:
ba:1a:57:37:4f:be:95:f4:e5:94:13:4a:8e:36:08:
2f:43:8d:59:62:a2:6b:be:23:5f:d6:28:f9:12:f9:
17:70:02:ae:84:11:72:32:7b:44:bc:c6:e5:58:ef:
1c:c6:4f:95:7b:2e:cd:26:d6:06:3c:4c:33:94:af:
21:90:bd:34:a6:76:3b:62:b7:63:91:45:fc:79:63:
ec:4b:4c:46:8b:2a:45:56:36:7a:0b:84:e2:ac:99:
f4:e1:12:71:94:3e:d7:54:09:88:5e:3a:14:36:aa:
4f:a9:44:53:42:41:0a:63:f7:7b:ae:fc:7f:3d:88:
34:7e:eb:e1:6b:1c:a6:9b:61:fc:ab:41:7d:bc:f6:
27:32:51:3f:9e:f3:a9:f1:2d:81:8d:b4:a7:a8:2d:
f9:87:f9:1e:6e:7c:a3:4e:d0:6b:f4:d2:8e:99:60:
1d:02:56:41:3d:bf:de:3b:9d:25:bb:90:fb:a4:9f:
d4:80:32:21:4e:8f:71:19:b4:5a:fd:9f:45:dd:14:
0d:2e:f1:7a:b3:93:ec:ba:a2:5b:9f:e6:c3:2a:b4:
55:3a:46:ab:2b:0f:8a:ca:4f:8b:5b:81:23:cf:0a:
5c:bb:57:ec:f2:66:09:a7:1e:80:78:c0:6f:38:c2:
2f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:56:4A:F3:F4:65:67:26:D5:F7:A7:B9:1C:30:0D:44:FC:DE:E9:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/830F519C68DD11F19866CC03CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.66.0/23
Signature Algorithm: sha256WithRSAEncryption
18:34:81:25:49:d3:28:0c:e1:31:55:f8:24:69:d3:fb:97:71:
a0:d0:33:05:a1:af:ce:41:bb:65:f1:0c:1d:25:10:ad:ff:13:
da:be:bd:97:94:67:d2:56:c2:1f:8d:c6:ee:84:a2:cc:3f:85:
bc:d8:92:62:d9:3c:d2:90:6a:ca:66:f9:bb:d4:92:31:0f:85:
63:24:e0:71:de:bc:ff:bc:0e:59:29:0c:2f:ae:9e:1e:bd:cc:
64:ef:60:7a:51:44:11:dc:d3:b3:dc:e9:3f:fa:c7:6d:a2:7a:
34:1d:1f:7e:af:5e:97:8e:67:7a:be:44:2b:c3:8c:41:3a:af:
21:f0:be:82:4c:32:35:a0:9c:d1:07:e2:9f:83:f2:dc:2e:e2:
8e:8e:49:b4:a3:2c:8a:b1:e9:f9:9a:62:b0:69:9f:b5:a8:a9:
68:92:12:24:8d:09:db:99:70:81:82:c1:0e:0a:4c:cf:07:33:
ef:d9:e7:2a:2a:7f:1a:74:5f:f8:10:cb:55:e5:68:b9:25:97:
6d:97:7b:b9:c3:18:20:dc:a7:20:10:e9:c0:e8:c3:23:1d:18:
40:03:ad:ac:0a:6d:f7:8e:bd:85:43:53:ac:96:be:68:09:b5:
f9:1c:c3:37:d9:5d:e9:df:10:6a:66:e4:6d:ff:ae:9c:73:64:
53:05:f6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:02 2026 by rpki-client