Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2759E486C8D11F1ABC82BF4CE1D38B0.roa
File: F2759E486C8D11F1ABC82BF4CE1D38B0.roa (raw, json)
Hash identifier: v67bb2wGIlbkv0NadgpUzMVwnEsOWT+b0l2CtGn1Z8c=
Subject key identifier: B1:92:EA:38:CB:F4:93:93:7B:1B:71:22:C1:BD:4C:34:21:52:54:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D429
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2759E486C8D11F1ABC82BF4CE1D38B0.roa
Signing time: Sat 20 Jun 2026 09:53:54 +0000
ROA not before: Sat 20 Jun 2026 09:53:49 +0000
ROA not after: Mon 27 Jul 2026 09:53:49 +0000
asID: 154177
IP address blocks: 154.93.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119849 (0x1d429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 09:53:49 2026 GMT
Not After : Jul 27 09:53:49 2026 GMT
Subject: CN=6a366332-62cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e9:a1:94:c4:1f:e4:aa:e0:42:00:08:a8:81:
1e:86:2c:a6:4a:ca:c3:bf:ca:75:d5:d9:ac:18:e0:
99:0c:ab:bf:1f:7a:c0:a9:3f:27:0f:93:a0:f8:15:
a1:a1:fb:79:a1:99:0b:78:c3:f5:04:7e:6b:7f:3e:
3d:95:69:91:b9:6e:ef:8c:4e:fa:84:28:c3:b7:00:
b4:a4:52:96:45:cf:6c:8d:1b:a8:45:91:bf:55:79:
28:f2:4c:ac:79:1b:8c:40:7b:ed:6a:02:6a:26:23:
65:fe:7e:4d:4a:a1:03:02:cc:43:11:93:3f:44:62:
5a:d2:91:0b:09:58:54:b8:c8:d6:8e:69:f1:2b:7f:
10:84:9d:72:4a:61:9f:90:ec:98:8b:44:c1:ef:65:
9f:db:bd:35:c1:af:95:66:9a:a5:ee:63:24:0f:41:
f3:03:c5:d3:e1:58:b7:ea:32:07:40:8d:d0:0e:5f:
3e:54:80:d4:f5:a3:28:b3:8e:eb:39:3e:fa:ee:3d:
39:52:2e:ec:cc:e6:f5:a4:76:e1:4d:4f:ef:8e:55:
48:a7:eb:ed:d8:fa:54:45:51:c3:83:68:4d:c5:2e:
52:49:be:0c:fb:be:fe:15:de:1f:2f:f3:ec:53:ff:
9d:00:46:0c:70:87:8e:6c:d0:f7:24:f6:b5:73:ce:
e7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:92:EA:38:CB:F4:93:93:7B:1B:71:22:C1:BD:4C:34:21:52:54:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2759E486C8D11F1ABC82BF4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:cd:2e:b8:e1:4b:6d:0a:07:ed:3d:99:c7:4b:e9:81:68:45:
8d:7e:fa:15:5c:ba:4c:7f:23:be:33:33:49:d1:37:5c:11:55:
3c:ba:c9:c6:74:9b:7e:55:1b:bc:ad:fe:b4:f3:46:5c:da:34:
f6:bc:3e:eb:d5:46:b2:bb:42:9e:8c:a5:02:3d:24:4a:ba:2d:
f5:f5:28:1c:69:64:d4:4f:70:d2:2a:d1:fd:8f:c1:1a:19:a8:
95:87:45:cf:15:6e:88:32:4e:48:22:b6:6e:3c:a8:3c:f3:4e:
02:64:61:21:f0:58:cf:51:ac:80:96:8e:c0:9c:08:44:9f:c7:
33:2d:cf:7c:3b:a9:cb:ac:53:83:a3:78:aa:ed:62:cf:75:84:
37:cc:d0:a7:d9:d8:d4:5c:d3:a4:c0:97:be:bd:5e:40:9b:1d:
c2:e0:af:6d:29:78:23:21:c0:ec:8f:4d:cb:0a:9d:3f:43:5a:
cd:9e:0c:98:90:8f:b1:74:da:80:11:ce:33:28:22:b2:dc:e8:
f7:9e:e4:f1:51:27:f5:7f:79:a2:de:1d:51:1f:c3:97:29:ad:
75:db:5d:43:a2:8b:38:3e:73:2c:1c:93:26:53:a0:4a:29:0b:
48:15:e1:63:ca:7b:c6:77:39:03:6d:21:f3:c7:de:d6:1f:db:
d5:a6:8b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:26 2026 by rpki-client