Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A127517E6C9911F1B96327BACE1D38B0.roa
File: A127517E6C9911F1B96327BACE1D38B0.roa (raw, json)
Hash identifier: GrfNRB/IvEgtHOEz5xVYmZFSNZypE4zvwKuF847C+Jo=
Subject key identifier: 2C:D9:37:F8:9C:24:CA:8E:AB:04:A3:12:DC:D4:9F:EF:D4:F2:55:7F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D435
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A127517E6C9911F1B96327BACE1D38B0.roa
Signing time: Sat 20 Jun 2026 11:17:32 +0000
ROA not before: Sat 20 Jun 2026 11:17:27 +0000
ROA not after: Mon 27 Jul 2026 11:17:27 +0000
asID: 6079
IP address blocks: 154.81.200.0/21 maxlen: 24
154.83.48.0/20 maxlen: 24
154.90.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119861 (0x1d435)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 11:17:27 2026 GMT
Not After : Jul 27 11:17:27 2026 GMT
Subject: CN=6a3676cc-897c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:41:48:2a:e0:f8:88:f6:d9:f7:8b:5a:bd:7b:
bb:82:b1:63:f0:65:d8:e3:7c:44:1d:12:cb:54:96:
61:f3:1d:c9:c1:1d:4f:a0:7d:f3:9a:73:4e:82:85:
8a:90:66:89:9b:6e:9f:b7:3a:99:21:af:a3:ec:fd:
c3:b0:54:e3:73:3c:7a:0e:e1:d2:3b:70:c9:65:35:
55:9b:83:ce:0e:aa:bb:b6:db:89:d6:7b:c7:e5:87:
95:2c:6c:21:5e:77:2c:d9:19:a5:bb:67:41:f1:c6:
fb:9c:0e:22:10:61:21:9e:90:01:0c:17:b6:fc:33:
b9:ee:21:f0:40:08:a4:06:8e:cc:f7:aa:e7:2f:f5:
4d:e7:32:bc:7c:fc:05:8f:30:5f:10:5b:a6:58:a6:
79:07:fb:ba:e9:65:ad:94:12:db:0a:05:0d:28:54:
26:92:09:62:fa:3b:3f:d8:08:70:42:bb:9f:d9:bd:
9c:2e:7c:5f:f4:1d:94:fb:a0:fa:32:f2:ab:ce:c9:
97:ff:0f:6d:31:64:37:5a:70:4d:8b:5e:76:59:00:
ff:03:f4:ae:ac:78:3d:ab:05:e8:19:4f:34:c1:6c:
47:6e:2c:64:a4:3b:91:49:0b:41:cb:cd:19:5e:89:
a8:f6:8e:33:41:7d:6c:5d:a4:db:61:af:20:07:95:
e2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D9:37:F8:9C:24:CA:8E:AB:04:A3:12:DC:D4:9F:EF:D4:F2:55:7F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A127517E6C9911F1B96327BACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.200.0/21
154.83.48.0/20
154.90.0.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:02:b0:dd:ac:e6:91:a8:a3:79:37:37:31:47:8a:ad:5e:b6:
86:d1:9d:cd:f1:52:fe:b0:cf:f7:14:c0:57:8b:79:3b:44:17:
6b:2e:22:5a:85:5e:13:b3:c9:6c:01:1e:5e:3c:b8:2f:c0:41:
96:db:18:f5:42:8b:4a:75:c3:7b:b8:07:4d:cf:d3:f7:10:65:
56:01:3a:10:ea:f8:12:a4:f0:ee:27:02:10:60:19:da:40:05:
18:94:f7:7e:04:c3:33:ff:de:65:0f:d8:f9:27:62:87:b8:6b:
43:38:8b:70:a4:15:ce:24:76:a4:c3:09:00:71:be:b5:7f:e8:
24:04:55:42:0a:46:f4:d2:4d:5f:c4:2b:f8:50:f8:d4:58:85:
36:1d:54:2f:8d:ac:d0:c3:b0:0a:07:cb:f2:ba:bc:c5:fb:e9:
e5:3d:81:98:d9:82:8d:a2:6c:3a:9b:92:05:15:82:98:14:6f:
7f:69:60:72:c4:34:86:7c:14:49:fd:91:77:a2:15:99:bf:e5:
23:5c:b4:8b:1b:4e:d7:a1:81:ef:8f:02:5d:ee:fb:1f:e9:a2:
71:10:5d:92:c8:cb:d0:b0:bf:15:8f:ea:f1:3f:df:8f:29:b9:
ff:65:64:bd:58:24:2c:a1:cf:89:d4:f4:c5:a1:88:ae:35:00:
6d:f8:98:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:46 2026 by rpki-client