Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D85465EE5FE011F189870FF5CE1D38B0.roa
File: D85465EE5FE011F189870FF5CE1D38B0.roa (raw, json)
Hash identifier: qzi9b1ndDXYot/wyd0awddffWKNa/sFErzgJtRsmk8s=
Subject key identifier: B8:51:D9:FE:F0:62:5F:E0:14:BF:56:D0:E2:E2:24:1C:7D:FF:58:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D184
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D85465EE5FE011F189870FF5CE1D38B0.roa
Signing time: Thu 04 Jun 2026 06:44:33 +0000
ROA not before: Thu 04 Jun 2026 06:44:29 +0000
ROA not after: Thu 27 Aug 2026 06:44:29 +0000
asID: 9294
IP address blocks: 154.211.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 00:07:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119172 (0x1d184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 06:44:29 2026 GMT
Not After : Aug 27 06:44:29 2026 GMT
Subject: CN=6a211ed1-7146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6d:b2:a8:5d:9f:e0:66:5c:de:e1:f3:e8:99:
2b:f4:d6:b4:93:ec:ec:f4:b5:9c:d8:bb:68:23:90:
28:08:c8:cf:da:42:f8:b4:1b:e3:b4:2f:fd:ee:9d:
3c:4f:af:74:24:d3:76:c4:83:c1:83:da:76:56:19:
f1:d9:d9:9c:16:41:3f:85:eb:3a:50:f8:19:0a:eb:
9f:37:06:29:e7:34:db:6e:64:3a:ac:eb:92:dd:b2:
7d:aa:e3:0b:68:66:7d:35:59:0e:f9:c6:5c:5a:7a:
62:62:06:cc:3f:db:eb:37:0b:2e:f3:5c:30:88:a3:
92:1a:99:84:3f:dc:64:ca:bb:f1:4a:4a:19:1a:c6:
70:2b:af:75:ce:55:10:d4:5f:1b:da:65:3a:bb:f0:
02:a6:43:5c:f5:c7:ac:c9:1c:6e:f1:33:fd:78:53:
bc:ec:c7:20:d0:38:b7:6e:bd:9b:b1:f7:74:2d:13:
78:fb:39:93:0c:bc:37:4f:cc:dd:f7:b0:d7:e6:34:
b7:e1:b0:57:ad:b2:71:ac:39:65:98:3e:ec:44:e4:
4e:64:85:3e:60:d8:1e:06:bd:8b:c7:56:b5:5a:c8:
6b:1b:75:13:dd:b6:f4:16:73:e9:32:22:01:7a:0f:
14:88:bf:3b:b8:d4:7d:cf:4b:e4:ff:4d:7b:c3:c9:
60:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:51:D9:FE:F0:62:5F:E0:14:BF:56:D0:E2:E2:24:1C:7D:FF:58:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D85465EE5FE011F189870FF5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.32.0/19
Signature Algorithm: sha256WithRSAEncryption
d8:7e:03:52:49:b7:3e:e1:f4:a5:2d:e8:86:a0:c5:60:f7:62:
c4:2a:13:36:13:fd:41:98:77:d4:b9:78:a6:80:7d:75:88:17:
84:d9:ff:5b:f5:f4:6f:20:e1:05:e6:f9:0a:84:fa:26:8e:79:
6d:20:11:36:60:ca:62:f9:cf:94:2a:11:5e:af:b6:6a:02:25:
7e:de:22:6a:a5:36:c6:cd:7a:d4:3f:73:b9:90:7e:e2:71:56:
58:a0:75:5e:79:30:97:1b:95:89:a5:a2:df:f5:02:01:5e:3e:
44:d2:4c:6b:27:0b:38:67:17:be:fe:66:e6:49:32:ee:4f:14:
3f:9d:f5:bf:dd:e3:5b:cc:0e:22:02:23:2e:b6:d1:09:ab:5d:
7f:b0:cc:df:ea:e6:76:5d:0a:d2:7c:01:c5:48:b8:99:61:ea:
5f:31:47:f5:53:e8:dc:a6:51:ee:03:f8:ed:42:1c:97:90:1d:
ed:2a:8f:00:40:49:5e:1c:d2:d0:3e:c0:14:d2:55:2c:66:e0:
a3:84:cd:30:78:40:a6:65:c2:5f:d9:c1:e3:82:64:85:db:50:
13:a8:17:d4:74:65:a6:91:8a:08:7b:76:16:e0:d8:45:22:b5:
8e:56:3b:2f:20:04:51:57:55:a0:78:ae:09:c5:24:b3:5e:f5:
ec:e5:ac:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:49:20 2026 by rpki-client