Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4EF6A3669B711F19D8F8CB4CE1D38B0.roa
File: C4EF6A3669B711F19D8F8CB4CE1D38B0.roa (raw, json)
Hash identifier: bzuZuRPzkAEypQ+aePFoBindnrWUrNXcYrABKCeN2Dc=
Subject key identifier: 11:D0:DB:4D:4C:5B:5E:88:58:8C:35:47:2F:3F:41:68:42:AC:78:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D38D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4EF6A3669B711F19D8F8CB4CE1D38B0.roa
Signing time: Tue 16 Jun 2026 19:15:43 +0000
ROA not before: Tue 16 Jun 2026 19:15:39 +0000
ROA not after: Fri 25 Sep 2026 19:15:39 +0000
asID: 16437
IP address blocks: 154.81.208.0/21 maxlen: 24
154.81.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119693 (0x1d38d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 19:15:39 2026 GMT
Not After : Sep 25 19:15:39 2026 GMT
Subject: CN=6a31a0df-18c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:18:86:a0:d8:89:eb:12:fb:8d:c8:91:2a:d8:
c5:8f:3a:41:2f:67:61:04:18:54:94:bb:d2:ba:8f:
aa:13:64:8c:3c:5d:ce:e0:58:27:20:f8:5b:e2:34:
c3:06:5a:15:11:ea:88:a7:ca:30:7e:b1:3b:c1:d8:
e9:0c:ae:cd:07:d3:08:e0:2a:08:8d:39:e8:7e:9e:
71:d8:02:d7:1d:57:22:ff:c0:0e:63:ef:c4:be:b6:
a9:a2:ce:62:70:b7:5b:a9:80:df:61:de:2d:c2:d3:
68:96:fd:36:c4:7c:f9:15:c8:f0:f6:92:5f:71:8d:
38:70:d0:8e:f5:41:7f:7d:30:0a:4d:14:d4:d9:3b:
c1:3a:2e:0c:59:b4:e1:49:b1:36:f7:a6:eb:e4:5d:
64:1c:ca:78:9d:e6:76:40:2a:e0:3d:d7:db:33:68:
da:2d:cc:f8:3b:b1:f6:03:80:76:43:94:a3:c1:25:
a8:78:85:62:cf:dd:0b:54:0d:55:3d:53:b0:40:9d:
23:d5:9c:5e:3b:08:52:15:7d:7d:4e:0c:e2:a4:ad:
f1:d4:1f:3d:62:c5:78:3e:b3:f7:98:fa:4e:57:4a:
b4:ad:3e:79:87:53:9e:99:82:69:cf:3d:cc:98:56:
7e:f1:f5:d6:4a:b8:c5:ca:39:34:5b:48:21:8c:b7:
11:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D0:DB:4D:4C:5B:5E:88:58:8C:35:47:2F:3F:41:68:42:AC:78:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4EF6A3669B711F19D8F8CB4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.208.0-154.81.219.255
Signature Algorithm: sha256WithRSAEncryption
a4:28:8d:81:bf:dd:16:88:21:1b:b0:ca:16:c8:30:80:8d:98:
1d:6c:42:b8:0b:84:70:a1:e9:90:0e:c9:f7:be:05:d8:f0:e7:
52:1e:55:cc:e5:cf:0f:ef:7a:e1:bf:d9:c8:73:00:ec:7c:61:
3b:1d:c2:ca:cc:f3:e0:93:2a:d1:95:f8:76:6f:20:33:2b:e8:
6a:9f:3b:9d:16:92:51:e0:3c:c6:16:4f:ef:0e:82:0e:88:b6:
d3:27:18:f0:55:99:5a:66:ac:6a:81:55:a8:44:0b:f9:cd:c9:
a3:1c:45:a7:7a:c5:b1:c8:6e:91:25:63:f8:52:a0:f1:ce:37:
45:45:0f:d5:ed:c8:65:c6:63:02:e4:35:e0:28:4d:45:75:8e:
5a:7f:26:fc:57:dc:3f:bb:b9:81:e7:11:80:68:5f:26:e3:fa:
ba:c2:c4:a0:16:72:28:c0:e0:47:93:3f:82:de:5c:b2:f4:85:
ef:e0:fe:7b:29:77:2c:da:03:09:15:34:96:8a:e5:8c:df:4b:
56:50:ad:b0:d0:d1:5b:aa:8c:7e:59:b0:1b:85:94:a7:7f:ad:
14:b9:3d:4b:17:ce:9f:f9:37:d8:85:4f:07:07:96:3f:e4:11:
b0:fb:87:e1:f9:ac:51:4b:71:8f:d2:17:7e:af:11:8e:a1:d8:
bb:72:10:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:17 2026 by rpki-client