Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D77C9F23C9611F1907CA604CF1D38B0.roa
File: 8D77C9F23C9611F1907CA604CF1D38B0.roa (raw, json)
Hash identifier: tbts1IO+x48Jsl3qDdinu1SiwiePLMQT2zMpRZb504g=
Subject key identifier: 9B:DF:EF:88:5A:A4:56:77:A9:B0:25:94:E9:C8:AB:79:F6:BC:2B:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C622
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D77C9F23C9611F1907CA604CF1D38B0.roa
Signing time: Mon 20 Apr 2026 08:54:34 +0000
ROA not before: Mon 20 Apr 2026 08:54:29 +0000
ROA not after: Wed 27 May 2026 08:54:29 +0000
asID: 154177
IP address blocks: 154.93.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116258 (0x1c622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 20 08:54:29 2026 GMT
Not After : May 27 08:54:29 2026 GMT
Subject: CN=69e5e9ca-afd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a4:01:13:d2:cb:cd:f7:62:ac:22:2d:ff:fe:
bc:70:bd:dd:86:70:8d:8b:46:a9:75:74:79:e5:65:
47:3b:16:4f:71:64:c5:77:ea:87:22:98:c1:bd:4d:
86:51:13:dc:cc:5a:8d:db:d5:8d:4a:01:aa:ae:76:
69:0e:01:db:8e:bb:b1:10:aa:ed:1b:9b:e3:04:41:
49:5a:1a:07:c9:7e:91:d6:09:0e:c9:e3:c8:eb:07:
80:57:ef:fb:a7:80:ab:db:9d:a5:ef:bc:e8:a7:e1:
14:1f:9f:56:f9:6d:52:3a:fa:c7:6b:5f:e6:9d:f1:
3e:21:5d:8a:4e:ab:f3:23:ef:35:e6:78:7a:f9:98:
8e:f0:70:23:77:10:2c:f2:d4:2d:55:d7:71:4d:70:
91:8e:ef:85:ec:11:c2:14:97:0e:5c:2b:14:92:af:
4e:47:27:e0:f2:90:df:0f:15:f0:0c:7c:3b:51:3e:
05:3a:b4:3d:a2:48:8f:e3:68:bb:d1:61:e9:de:40:
ab:6c:55:1f:f0:28:3f:e5:0d:9f:39:ea:6c:2b:d1:
23:33:16:60:1b:d6:b3:4f:5e:3b:b1:52:32:ff:74:
cd:94:d1:59:f6:0e:bd:29:9c:6f:26:3a:22:c5:36:
b7:09:d8:ea:1d:d7:59:61:c9:25:0d:35:22:d7:9a:
0c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:DF:EF:88:5A:A4:56:77:A9:B0:25:94:E9:C8:AB:79:F6:BC:2B:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D77C9F23C9611F1907CA604CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
93:64:01:d8:d7:f4:29:3b:8e:7c:5e:99:24:cb:e9:5a:39:b2:
95:64:5d:07:b1:f1:fb:ee:6f:67:35:63:92:4e:bf:aa:14:6b:
b9:85:d2:2f:d1:1b:c9:3b:d5:5d:63:66:f8:35:94:77:9b:29:
4b:e4:c7:9a:05:03:fa:f3:3f:d5:9f:fa:41:45:94:b4:8b:5f:
79:8c:33:89:61:53:c2:a4:f4:1e:39:64:7a:f2:85:23:82:45:
7a:c0:c9:d0:e4:2e:7c:4c:52:0b:54:81:41:25:43:70:a3:a2:
0f:ce:ee:20:49:f0:ab:a6:cb:aa:85:cd:1e:79:14:39:f8:6d:
58:e6:00:32:15:0e:af:ba:3f:b1:05:76:8c:70:33:8d:55:f3:
53:50:50:e8:fe:30:cc:c3:e9:73:8e:c7:dc:6c:48:f8:ec:b5:
f6:66:5c:39:2e:2f:fc:4b:d1:99:b8:c4:ed:4c:62:4e:0d:9a:
e7:52:21:84:b2:1f:88:f3:b3:72:50:71:20:23:ab:6d:d4:f1:
3e:a5:50:4b:56:63:ea:5c:3f:3c:5d:b1:03:bc:9b:3f:21:e1:
43:3c:69:d5:8c:7e:37:d4:85:f2:2a:f9:12:58:99:96:d0:97:
42:24:af:08:3b:d6:16:a6:78:b8:5b:da:d3:97:09:22:9b:ce:
7c:99:a3:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:49 2026 by rpki-client