Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D7313C66CB111F18597B6C8CE1D38B0.roa
File: 8D7313C66CB111F18597B6C8CE1D38B0.roa (raw, json)
Hash identifier: R+3s/QDnew0Kr23QJbQ9QuHHxOSQ2YtC3bB9bU8+SRk=
Subject key identifier: A8:FC:A0:1D:93:E3:2F:41:5F:D4:3D:29:71:B6:3F:FB:F4:65:6C:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D43B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D7313C66CB111F18597B6C8CE1D38B0.roa
Signing time: Sat 20 Jun 2026 14:08:47 +0000
ROA not before: Sat 20 Jun 2026 14:08:42 +0000
ROA not after: Mon 27 Jul 2026 14:08:42 +0000
asID: 140666
IP address blocks: 154.93.87.0/24 maxlen: 24
154.93.88.0/22 maxlen: 24
154.93.94.0/24 maxlen: 24
154.93.100.0/23 maxlen: 24
154.93.104.0/23 maxlen: 24
154.94.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119867 (0x1d43b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 14:08:42 2026 GMT
Not After : Jul 27 14:08:42 2026 GMT
Subject: CN=6a369eee-4033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:12:21:c4:fe:ac:0d:c1:90:e0:20:36:fc:62:
aa:99:f4:e2:94:d4:0a:27:cc:9c:d9:2e:30:94:7d:
36:ee:b5:69:17:d3:a7:19:ee:6b:44:61:24:37:24:
96:7c:73:d8:a7:b2:cb:05:fd:1d:b8:f3:bb:9c:6b:
fb:5c:df:24:52:e6:8f:72:5a:59:83:68:1d:8f:43:
9c:8d:52:ea:68:8e:e2:5e:f4:dd:fc:7d:e2:ef:90:
81:ed:e4:df:e7:a0:68:d5:a0:aa:86:6a:db:eb:f0:
b0:a0:81:d2:5a:ed:17:14:bc:4c:d2:b7:3b:9c:45:
f9:04:78:39:66:b9:da:82:46:5a:06:87:f8:57:82:
b0:b6:47:f0:11:11:6e:cf:b9:33:46:b6:e0:71:34:
fd:3b:58:97:58:af:ae:58:e0:cd:eb:68:de:b6:77:
4a:6f:fb:77:9c:9f:f3:17:64:1e:e6:7e:fa:a3:54:
d2:f4:d9:4d:8a:d3:9f:a9:85:7d:ff:cd:21:3e:8b:
59:38:f3:7d:e4:e2:63:8e:a7:5e:db:03:87:d0:63:
28:6d:91:74:bc:58:cb:a2:39:1c:9f:be:37:3d:b9:
8b:de:a9:92:97:4f:fb:64:1a:68:5f:37:3b:09:c8:
9d:ca:03:6c:88:68:a4:8c:3e:50:ec:12:44:ca:ce:
2f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FC:A0:1D:93:E3:2F:41:5F:D4:3D:29:71:B6:3F:FB:F4:65:6C:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D7313C66CB111F18597B6C8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.87.0-154.93.91.255
154.93.94.0/24
154.93.100.0/23
154.93.104.0/23
154.94.68.0/24
Signature Algorithm: sha256WithRSAEncryption
40:70:0e:fd:ed:30:ff:21:7a:bc:2d:b2:ff:39:b0:28:64:b9:
a0:0f:e5:6f:c4:cf:e0:a4:99:e6:61:dc:97:45:6e:f6:4c:4f:
69:47:08:47:87:87:14:fd:02:f9:c6:09:8e:da:28:2c:24:8a:
d6:6b:2e:32:9c:08:72:00:31:94:e4:af:d9:9d:ef:32:7a:26:
7d:3d:01:61:fa:d3:62:59:b4:b8:fb:0e:5c:b5:ac:5f:7d:57:
d6:49:09:78:74:81:85:dc:5f:a1:2d:a0:ec:f9:6e:49:48:c0:
c9:fc:af:96:e6:77:6b:cb:68:e1:4e:a0:8a:f9:a5:0a:cd:7f:
af:b5:c9:7b:41:d3:13:2d:cb:a5:c0:d7:5d:ab:ae:9c:f7:da:
82:57:2c:08:e1:61:e9:8c:06:8f:38:83:33:5b:06:ee:1b:6e:
52:e6:d7:fa:b5:a8:40:af:84:f8:b6:02:15:23:0c:65:7b:cd:
5c:dc:bd:11:16:66:c1:71:61:b7:81:4c:b6:45:2f:ae:71:31:
7f:8d:8a:8c:6c:83:af:4b:f4:69:55:5b:5a:7c:79:5d:6f:25:
bd:ba:22:c8:a9:69:5e:bc:59:ac:ad:cc:bb:96:eb:95:bf:31:
46:4a:55:67:57:4b:b7:e0:01:b3:71:10:31:c8:62:05:a7:cc:
53:7e:c3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:55 2026 by rpki-client