Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931FF7FC6A3711F1BE9860C9CE1D38B0.roa
File: 931FF7FC6A3711F1BE9860C9CE1D38B0.roa (raw, json)
Hash identifier: oh4+BQUHDA6pcXn14UWtqr9+2pDvUv/n7GeMgC/B42s=
Subject key identifier: 55:E7:BD:8E:77:D0:B2:64:EA:EA:47:20:0D:DB:D0:4C:25:72:CD:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D3A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931FF7FC6A3711F1BE9860C9CE1D38B0.roa
Signing time: Wed 17 Jun 2026 10:30:35 +0000
ROA not before: Wed 17 Jun 2026 10:30:31 +0000
ROA not after: Thu 23 Jul 2026 10:30:31 +0000
asID: 63969
IP address blocks: 154.89.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119716 (0x1d3a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 10:30:31 2026 GMT
Not After : Jul 23 10:30:31 2026 GMT
Subject: CN=6a32774b-4dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a9:69:9d:be:e8:ea:ea:05:84:cb:c1:d5:af:
91:8e:57:0a:de:bf:d8:e9:bb:cd:94:95:9f:45:74:
0e:b1:9a:47:b2:c0:41:ef:85:f8:b7:bf:67:87:da:
10:1f:5a:fe:cb:50:7a:1a:23:7b:df:a9:55:fe:1f:
a5:a5:3e:0a:b2:ce:67:e5:ee:e0:ca:f6:f6:28:51:
20:35:19:50:5a:b3:30:7e:47:ed:54:0c:4e:c8:3a:
fd:c9:e9:52:96:35:32:34:99:22:59:c1:fa:c5:4f:
fd:2a:03:2a:62:d2:55:a2:f9:f7:6b:5f:67:83:ab:
81:b5:9b:20:6a:78:14:e6:0c:3a:98:f6:1b:3d:ec:
3d:ce:45:1e:8a:e5:48:72:e7:e5:95:e9:01:bc:5f:
89:a9:8b:56:70:25:11:09:f7:f4:37:15:d4:7c:af:
c6:23:77:fc:bd:b9:f2:94:96:ba:34:55:1d:09:8c:
32:9e:f9:f4:f2:cb:4e:d0:78:44:f8:8f:47:a8:30:
82:48:64:5c:eb:29:1a:32:91:ad:59:ea:4d:38:0a:
ab:99:71:ba:62:0a:a8:a7:a2:07:91:e9:07:30:a8:
25:ca:ce:a1:84:bc:1f:df:83:c2:a9:3f:9c:22:c9:
a3:99:86:da:60:64:b6:54:2b:f6:ad:59:2b:0f:ca:
44:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E7:BD:8E:77:D0:B2:64:EA:EA:47:20:0D:DB:D0:4C:25:72:CD:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931FF7FC6A3711F1BE9860C9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.7.0/24
Signature Algorithm: sha256WithRSAEncryption
38:fa:00:34:91:2e:b3:4f:dd:66:9d:c0:0f:df:b7:e6:59:ce:
ac:ce:89:67:bb:96:a1:ac:22:94:16:33:12:f7:ba:2b:4d:40:
64:fa:ad:73:5b:e2:78:27:17:36:c9:dd:5a:53:4b:a3:a2:73:
51:5f:28:59:87:2e:66:57:55:7c:e1:a5:4d:47:7b:c0:77:72:
59:33:de:0d:9e:e1:aa:a5:01:4f:2a:cb:6c:99:9f:34:42:a5:
34:02:fd:71:e9:dc:d8:4e:1e:ec:90:6e:cd:b1:f2:5e:34:ff:
50:64:47:7a:41:2f:3d:4b:cf:9c:ee:3f:3b:aa:5d:e7:e6:3c:
75:05:29:63:42:e8:df:25:0d:31:d7:4f:21:33:70:2b:f2:41:
82:3d:6c:c9:0d:2c:96:71:bf:04:89:72:06:39:3a:5c:7b:0a:
48:2e:90:b8:8f:74:fb:3d:19:98:a0:a8:36:17:95:e5:58:5a:
23:92:cf:a8:6b:a6:18:13:3c:bd:a4:c1:46:54:d6:e5:50:e2:
00:0e:b2:4c:97:3d:68:be:7a:95:f7:98:51:7a:d5:d3:79:c1:
b4:1b:a4:0d:17:52:70:b3:57:30:ec:5b:35:cc:1c:dd:93:63:
25:c8:c9:9b:3a:38:af:16:52:be:1b:6c:92:90:dc:59:56:60:
85:51:2a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:52:02 2026 by rpki-client