Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F12BED66E5811F1ABCC581CCF1D38B0.roa
File: 8F12BED66E5811F1ABCC581CCF1D38B0.roa (raw, json)
Hash identifier: Swm0n8EeV8GxdSNDhZsV9xK+4LKU56peT067tEwwuyU=
Subject key identifier: 02:22:3A:05:2F:26:C2:F3:B8:CB:CF:05:2D:0F:BA:7E:8A:E5:9E:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D45B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F12BED66E5811F1ABCC581CCF1D38B0.roa
Signing time: Mon 22 Jun 2026 16:36:46 +0000
ROA not before: Mon 22 Jun 2026 16:36:42 +0000
ROA not after: Mon 27 Jul 2026 16:36:42 +0000
asID: 984
IP address blocks: 154.200.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119899 (0x1d45b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 16:36:42 2026 GMT
Not After : Jul 27 16:36:42 2026 GMT
Subject: CN=6a39649e-cecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c0:51:86:a0:94:d4:b9:e6:a0:1c:3e:32:75:
ea:f1:d2:15:de:7e:be:0d:aa:a4:24:3a:3e:f8:f7:
cc:be:73:b1:a6:e7:98:d8:34:a3:3a:68:ff:a7:9d:
ab:5a:df:c6:6c:c5:13:f8:ea:c8:08:98:d0:2c:c9:
1c:f9:2d:7a:8c:68:5f:07:2e:a4:93:53:3a:5f:7d:
44:31:54:02:ba:4c:1a:bb:45:d0:60:6f:48:2f:7d:
ba:8c:75:84:e4:48:46:4e:8a:dc:84:8c:41:f1:d5:
94:52:1d:32:f5:d7:97:6a:a6:52:f6:f7:90:57:71:
cc:9d:1d:8b:27:b6:fc:88:bd:f3:de:16:ee:0f:dd:
73:36:03:4f:ea:2a:d4:60:ac:fb:39:f5:ac:12:30:
48:a9:5e:30:cc:5b:d8:5c:00:41:fc:02:fb:c0:07:
13:e9:7f:7e:19:5c:51:6d:39:ea:2a:91:49:c1:b5:
e2:84:8c:df:6a:4a:5a:1f:14:05:47:8a:ae:20:b6:
33:ed:8c:61:e1:de:a0:fb:31:b4:4b:df:9e:68:4c:
86:e6:a6:81:c0:de:d6:99:f3:01:6f:fa:01:74:df:
0b:b2:17:f9:37:48:d3:7f:7a:f0:56:92:cc:72:b2:
c2:5f:3d:8c:de:3d:cc:7a:88:f7:51:fc:16:4c:86:
a1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:22:3A:05:2F:26:C2:F3:B8:CB:CF:05:2D:0F:BA:7E:8A:E5:9E:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F12BED66E5811F1ABCC581CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.50.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:40:3e:ff:45:52:6b:5d:8c:91:cc:37:5d:1f:a5:84:b4:bc:
c6:5f:22:1f:14:b3:60:f1:8a:62:39:c1:f1:e4:00:48:79:64:
78:36:59:0f:21:9e:52:a7:2d:f5:78:22:bb:b1:36:b3:95:34:
6e:97:71:bc:5e:aa:52:01:00:61:16:6b:c2:d6:e2:f1:d1:ab:
12:70:1b:f8:58:00:fd:5b:28:2d:eb:1c:a6:7d:d8:eb:b1:77:
33:1f:74:69:c8:d5:b3:0f:1a:81:ca:17:2e:1c:9b:41:45:65:
59:3e:03:d3:4b:46:ec:4f:8a:62:34:70:e3:8e:a8:71:37:3a:
3f:68:ee:4f:0a:0c:e5:a1:e5:ed:88:a3:a6:99:1d:cb:ec:d3:
cb:f0:0f:69:ce:28:a7:c8:6b:37:63:88:fe:43:03:b3:78:93:
bc:98:fa:74:38:21:96:57:67:38:43:54:d4:a4:eb:7c:41:9c:
08:5b:17:c9:85:87:9d:29:dd:39:06:4a:09:16:20:2c:2d:5c:
0a:3e:17:c1:50:c9:69:b9:5c:46:06:af:94:ee:3a:63:21:74:
61:a9:70:b3:6e:20:8a:49:c3:96:44:85:b8:28:40:14:89:0f:
2f:ec:2b:4f:0c:3e:42:43:a9:b1:d7:88:ba:91:fb:6b:0a:1f:
1b:25:80:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:24 2026 by rpki-client