Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9309C666EDD11F191E42DD0CE1D38B0.roa
File: C9309C666EDD11F191E42DD0CE1D38B0.roa (raw, json)
Hash identifier: I9o4RGZbVjwxOfC0RbrB3c6cAB9RNC51KvgUhhH5Sbc=
Subject key identifier: 59:3D:EF:59:2A:2D:46:58:40:77:F2:AC:5B:E2:9C:FA:AA:C9:84:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D47A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9309C666EDD11F191E42DD0CE1D38B0.roa
Signing time: Tue 23 Jun 2026 08:30:27 +0000
ROA not before: Tue 23 Jun 2026 08:30:22 +0000
ROA not after: Mon 03 Aug 2026 08:30:22 +0000
asID: 198652
IP address blocks: 154.83.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119930 (0x1d47a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 08:30:22 2026 GMT
Not After : Aug 3 08:30:22 2026 GMT
Subject: CN=6a3a4423-c27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:17:ae:cd:52:2e:04:e3:47:b8:df:8c:24:61:
dc:7e:34:a8:4d:e0:d7:32:c4:a9:d1:02:4c:cd:99:
15:d6:1f:9c:fd:ce:a7:3e:bb:17:02:e7:f0:39:3b:
56:d6:46:8c:3f:e4:1f:68:2e:f1:cd:27:9c:f3:3d:
0d:82:a8:bf:a6:2f:b7:87:c1:62:0b:af:01:40:c1:
af:bf:19:82:3f:96:8f:95:49:c0:b4:e2:5f:35:d9:
bd:58:4d:e2:92:71:1b:84:db:d8:a9:73:a2:ff:c3:
55:3c:11:a8:07:d0:d1:fb:4b:7b:91:5c:11:5c:5a:
f4:66:d4:5b:8a:43:38:07:bd:84:b0:09:8f:b9:09:
8d:8b:74:54:00:74:df:62:ef:b7:8c:e8:0e:5a:8b:
08:8e:8b:0b:f4:d1:4d:17:06:65:f9:63:c8:0d:a1:
04:68:f8:5c:d7:f0:3e:c1:08:b3:50:22:5e:16:42:
fa:bc:3c:00:04:a3:41:b6:d3:1f:e2:a7:44:a0:c1:
16:61:f4:30:42:4f:84:71:50:f6:dd:64:a5:65:75:
0c:56:57:1c:18:05:00:63:90:fe:c1:15:e1:4e:b7:
d7:e3:ad:b1:39:0b:95:da:28:69:69:cb:a7:9f:4e:
7b:34:14:2f:93:c0:50:cb:06:8f:d9:ab:8f:dd:0d:
dc:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:3D:EF:59:2A:2D:46:58:40:77:F2:AC:5B:E2:9C:FA:AA:C9:84:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9309C666EDD11F191E42DD0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.210.0/24
Signature Algorithm: sha256WithRSAEncryption
36:f4:03:53:72:84:ce:c9:00:82:b5:a2:ae:ec:a7:ee:8e:5a:
d1:e5:dd:20:df:5b:b6:e6:98:c9:05:59:1e:45:2d:25:84:e8:
ff:d1:e6:2a:ce:68:4f:93:c4:f9:15:26:4d:b2:aa:6c:e8:17:
ce:cd:42:e1:ca:53:fb:79:7c:f3:79:73:e4:de:bb:52:5f:8d:
e6:da:e3:d4:be:7e:7d:04:56:68:61:c4:aa:69:55:8a:9e:20:
1e:b8:d3:76:4d:92:e2:75:5a:d1:a9:39:3e:cd:61:ae:9f:ff:
a1:72:03:d3:e8:06:c0:dd:46:20:11:61:9d:2f:af:aa:cf:fc:
e7:3d:fa:26:a0:9e:64:57:88:b0:68:54:9d:ed:26:b0:24:b8:
79:0f:4e:69:b7:18:86:70:7b:d6:dc:35:9a:cc:3c:ae:72:39:
e6:38:36:01:dd:0f:10:bc:20:3f:d4:f9:b6:6a:c5:88:8c:7b:
d3:b7:6f:a3:08:ce:71:cc:b8:11:2d:4f:67:fe:d5:e8:b5:5f:
5d:ed:04:41:5f:67:4d:27:1d:61:d4:f4:43:05:8a:e7:08:53:
0f:37:68:c4:f1:28:03:a1:5a:f3:c6:df:e4:97:ff:b1:4b:a6:
4f:dd:c3:06:8c:c9:9c:94:0a:73:ef:95:3b:0e:61:f0:00:08:
33:8a:30:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:18 2026 by rpki-client