Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F03D0DEC69AD11F1BEC0A0F8CE1D38B0.roa
File: F03D0DEC69AD11F1BEC0A0F8CE1D38B0.roa (raw, json)
Hash identifier: HHKqtayxdnV7tHPjydp7lxm4U1u1pa4dmrllVSq1UAQ=
Subject key identifier: 17:14:F5:E7:B5:9C:22:E5:0C:8B:1A:27:DC:C2:18:7A:39:43:99:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D37D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F03D0DEC69AD11F1BEC0A0F8CE1D38B0.roa
Signing time: Tue 16 Jun 2026 18:05:21 +0000
ROA not before: Tue 16 Jun 2026 18:05:16 +0000
ROA not after: Wed 22 Jul 2026 18:05:16 +0000
asID: 40779
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119677 (0x1d37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 18:05:16 2026 GMT
Not After : Jul 22 18:05:16 2026 GMT
Subject: CN=6a319061-6af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:62:97:f4:8f:d6:8a:7a:e8:61:47:44:4f:26:
e8:fb:65:cf:ff:c0:81:6f:15:f1:4b:3f:41:04:5c:
8f:5b:28:48:bd:e2:7f:98:46:40:b9:95:04:0c:6e:
e4:d1:1d:b0:1b:d3:55:7d:8b:e6:52:41:9a:6d:c9:
f0:19:7e:03:e3:3c:04:60:0e:5b:87:48:d5:64:a5:
40:45:1e:0c:31:c6:6d:38:27:b6:67:0b:8f:34:0a:
02:29:4f:1e:3f:c0:36:44:81:8a:78:0b:47:d4:3b:
f0:78:89:3a:57:6a:21:65:80:e3:5b:92:06:23:6e:
93:8a:4c:6e:98:4a:62:b8:94:18:92:0a:db:9a:46:
69:fa:6b:17:e0:d4:c7:03:f8:ae:ba:11:3e:61:62:
ee:fc:f9:03:f7:bd:9a:23:f5:4a:42:d3:a6:a9:ab:
e5:ac:14:c7:7b:d9:47:dc:28:d5:e6:eb:0c:b9:92:
ac:a2:c3:e6:61:e4:d2:64:a6:bb:bb:48:6b:dc:66:
ed:f7:52:39:6d:a2:b4:f1:f0:63:00:ad:3f:e1:88:
64:eb:26:de:d1:72:48:8a:4c:7f:7c:a8:f8:a1:99:
c0:70:83:2a:d5:0b:7d:9b:3f:78:0f:03:96:f8:88:
15:77:d4:ac:18:10:c7:31:45:07:1e:8d:8b:db:83:
70:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:14:F5:E7:B5:9C:22:E5:0C:8B:1A:27:DC:C2:18:7A:39:43:99:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F03D0DEC69AD11F1BEC0A0F8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
30:ec:cb:fd:b5:3f:38:75:47:cc:6d:83:ad:21:b3:52:89:ab:
96:2f:8c:19:1c:c1:4c:cf:81:c6:b7:70:68:2c:e2:be:13:97:
75:85:f0:a2:f6:ec:c9:15:58:a8:98:80:0f:74:dd:de:3d:42:
ce:68:8a:80:49:e4:a5:7b:a3:e7:e7:5b:d3:32:48:d1:ca:b1:
13:1c:69:68:a5:63:6e:96:6c:16:0a:cb:cf:65:37:b7:ba:68:
4e:5a:e4:70:21:53:e9:28:c2:98:a3:e3:ec:47:9a:a8:56:a5:
a0:b2:7a:59:84:9e:f8:6e:76:f6:1e:e3:fa:ed:d3:8a:43:44:
09:0a:a2:39:30:25:1b:ff:11:86:3f:df:a2:e7:a2:4b:7a:72:
17:a8:04:8d:48:62:21:c4:81:16:11:cd:40:94:9b:a5:61:69:
e5:7e:ef:ba:a4:53:53:25:3d:65:fa:bd:f1:92:c5:06:c1:b0:
4c:2a:fe:df:e8:1d:a8:bb:5d:91:c1:aa:4c:56:8f:02:0a:66:
3b:ed:23:99:cf:50:b9:76:24:fc:fc:21:94:8b:92:f5:21:f7:
6d:44:4d:49:73:d5:ee:2f:88:23:64:0c:dc:14:77:5f:68:38:
6d:a1:d7:e3:4a:f5:fc:02:71:b0:50:c6:60:9f:e5:41:ae:78:
8f:ef:3f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:05 2026 by rpki-client