Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C81F8AB8699111F19FAC75D2CE1D38B0.roa
File: C81F8AB8699111F19FAC75D2CE1D38B0.roa (raw, json)
Hash identifier: ZUP4kB6TQxEfV8bqjaoeCpvbQhPIsy1awGyc/kRhk98=
Subject key identifier: B9:D1:3B:56:D6:CF:DF:2D:23:99:4B:D4:1C:8B:F4:E5:BD:4E:9F:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D351
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C81F8AB8699111F19FAC75D2CE1D38B0.roa
Signing time: Tue 16 Jun 2026 14:43:48 +0000
ROA not before: Tue 16 Jun 2026 14:43:43 +0000
ROA not after: Wed 22 Jul 2026 14:43:43 +0000
asID: 401696
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119633 (0x1d351)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 14:43:43 2026 GMT
Not After : Jul 22 14:43:43 2026 GMT
Subject: CN=6a316124-dacf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:82:a3:0f:7e:85:41:46:88:30:f5:91:26:
37:c9:ad:1e:7c:70:60:3b:d9:4d:fe:2e:6a:78:7b:
5b:19:9d:53:f3:70:07:21:03:24:fe:0a:c2:c1:74:
39:1c:b8:54:14:81:38:2f:b7:91:4e:1d:a9:10:31:
f5:8d:ff:05:58:31:13:ee:88:85:07:97:3d:78:13:
b0:32:01:87:9a:a5:a0:8c:0a:17:28:cf:ba:b7:1b:
79:83:82:f1:a6:33:af:aa:0b:df:b5:93:c2:48:50:
1a:cb:a1:c0:46:ca:e1:81:22:bd:1b:a4:cb:94:07:
5c:eb:37:79:d4:62:9a:e4:4f:51:09:d9:ad:2b:c0:
d3:5e:e2:f4:68:05:4d:3d:bc:82:b6:c0:d2:55:d0:
e9:28:a0:f4:88:1c:d4:43:a4:61:9c:84:91:f7:50:
4c:63:98:dd:b9:a5:34:8a:75:79:1e:54:8f:da:43:
a1:58:d5:c9:85:83:f1:b5:1b:84:0b:10:4f:9e:86:
c8:49:fc:50:86:c3:2f:3c:d5:78:a1:17:13:99:91:
bf:71:bf:c2:4c:1c:76:2a:2f:82:c7:f1:9c:96:e8:
b1:bf:4f:91:c8:7c:9e:9e:1d:4d:bf:07:5c:d5:99:
4a:87:7c:25:ac:dc:75:35:54:1a:fc:03:7e:9a:34:
ff:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D1:3B:56:D6:CF:DF:2D:23:99:4B:D4:1C:8B:F4:E5:BD:4E:9F:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C81F8AB8699111F19FAC75D2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
38:c0:d6:7a:c0:70:8f:dc:fc:b1:13:35:8a:0a:30:03:d3:94:
ab:ec:01:77:25:be:af:f6:27:01:f7:1e:bf:d5:e6:65:d1:ef:
43:73:ac:1f:93:32:f6:31:f8:ce:cf:8f:01:a8:32:07:90:a5:
ce:08:40:ea:28:f1:0c:57:17:1e:20:33:32:44:81:59:55:b5:
48:ba:c5:7e:6d:44:38:3b:32:fd:12:c4:5b:9c:46:07:91:4d:
08:64:a1:42:29:5f:b4:f1:da:26:e3:39:c5:6f:f6:33:d7:fc:
ca:8f:24:dc:32:34:8c:21:d2:1c:a6:e1:95:0a:7f:14:78:8d:
8d:cc:1e:98:b0:9c:83:8f:13:a6:55:60:e7:fc:ab:5e:56:ba:
06:e7:26:c2:c1:94:65:3f:91:3d:79:ce:5d:ae:41:b0:b6:4d:
98:f4:0d:73:88:0b:03:9e:ed:e9:05:9b:ac:f8:01:63:d4:5b:
b6:27:96:be:aa:0b:31:28:16:e0:16:b3:19:26:75:ee:1c:cd:
4b:86:c7:6e:76:09:4a:f4:15:a4:cc:d6:7b:43:bb:5c:ff:ff:
ca:d7:29:a2:de:b5:e0:9a:fa:87:7d:14:a4:a3:2b:ff:c7:fa:
81:ad:6c:7e:c1:5c:b2:5f:6f:83:83:42:f4:c4:43:69:3e:5e:
84:b1:80:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:08 2026 by rpki-client