Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D6412906A4F11F1979965D6CE1D38B0.roa
File: 8D6412906A4F11F1979965D6CE1D38B0.roa (raw, json)
Hash identifier: VsFXapg2ELYw//vbY36yZaS+as5KF2dPhvS9UDHdD+A=
Subject key identifier: C6:BE:38:FD:30:F8:A0:6B:17:A0:FB:48:B5:E2:5C:BC:79:03:E6:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D3C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D6412906A4F11F1979965D6CE1D38B0.roa
Signing time: Wed 17 Jun 2026 13:22:13 +0000
ROA not before: Wed 17 Jun 2026 13:22:08 +0000
ROA not after: Fri 24 Jul 2026 13:22:08 +0000
asID: 401783
IP address blocks: 154.92.210.0/24 maxlen: 24
154.92.211.0/24 maxlen: 24
154.92.212.0/24 maxlen: 24
154.92.213.0/24 maxlen: 24
154.92.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119752 (0x1d3c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 13:22:08 2026 GMT
Not After : Jul 24 13:22:08 2026 GMT
Subject: CN=6a329f85-5e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a1:c0:56:bf:3b:b6:60:5e:2f:64:98:a7:4b:
16:65:bd:2f:d4:b1:d2:4b:94:87:1f:00:aa:15:b6:
88:30:d1:a9:67:ea:68:51:ff:9b:38:00:54:28:3a:
75:3e:2c:fd:f5:a9:c7:24:1d:60:1a:90:07:a4:0b:
67:7d:fc:55:95:a8:fe:cb:9e:67:57:2b:b6:ea:75:
34:c4:12:3f:4f:0e:40:14:f0:c5:1a:ae:80:cb:cf:
da:36:38:9f:fd:34:b3:c4:c5:40:ef:c4:f3:1f:ce:
ec:fc:1b:c7:8d:3a:5b:69:19:d1:1e:9e:3e:60:45:
f8:a6:99:7a:77:07:d9:18:b3:5b:cc:f5:62:c9:55:
1f:c5:a1:c8:b7:26:67:d3:a4:cd:5e:43:e0:3c:59:
4a:f7:bc:7f:11:90:00:f8:54:eb:ea:76:eb:33:67:
98:80:bd:eb:f0:51:ef:b8:72:dd:5a:29:db:30:70:
3c:f4:9a:ce:7a:45:91:31:7b:f1:ed:bb:64:ff:13:
0c:55:ec:40:58:b8:52:6f:33:22:34:8c:90:d9:61:
96:6f:80:9f:13:ec:67:e9:f3:a5:bd:6a:b5:77:ce:
e1:a7:19:54:7e:90:41:d8:df:5a:ea:c5:a4:ee:4a:
14:a0:42:ee:54:bf:4b:0f:ef:9c:a6:c0:9e:74:8b:
26:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BE:38:FD:30:F8:A0:6B:17:A0:FB:48:B5:E2:5C:BC:79:03:E6:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D6412906A4F11F1979965D6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.210.0-154.92.214.255
Signature Algorithm: sha256WithRSAEncryption
70:fd:c1:0f:db:0b:1f:40:ef:6e:da:e1:b1:a4:0f:bf:73:d3:
09:ed:cc:19:80:6b:b3:89:7c:ff:8e:20:2e:03:ea:52:4a:8b:
52:01:f8:f2:6a:9f:61:c8:3e:5a:b7:e8:af:7f:44:b1:cf:3a:
0f:58:ab:8d:89:24:de:6a:a3:82:76:28:99:6a:b4:4a:2c:4c:
0b:43:4d:b6:2f:37:fe:f4:d4:e0:69:15:3b:ed:11:54:10:a5:
fe:a0:f7:08:3a:28:61:c2:d8:ef:66:b0:d7:ae:79:1e:ea:76:
3c:16:7e:5a:5c:44:77:b7:da:ac:df:d7:e7:cb:82:8a:b1:2b:
6e:eb:7b:d3:0c:2d:21:9d:b7:f1:04:09:2e:10:e4:09:d8:87:
52:96:92:9c:29:f5:55:1c:c5:8c:63:6f:84:75:12:fd:d8:51:
77:e8:94:b1:6a:26:59:88:8e:bb:12:dd:a3:99:fc:c8:c1:28:
11:51:0e:92:dd:a3:76:92:ef:32:b2:e6:3b:da:b1:40:41:5c:
51:b1:59:91:ec:db:77:d6:7d:95:64:01:21:2f:fa:08:b4:25:
fd:55:cd:e9:9b:4e:bc:31:83:56:a3:46:f9:e7:46:36:eb:1c:
f1:07:8e:2e:aa:c9:ea:c6:c4:04:28:20:8d:c1:be:3e:46:c7:
d9:95:f6:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:01 2026 by rpki-client