Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3623EFA69B411F1A4AA03A4CE1D38B0.roa
File: F3623EFA69B411F1A4AA03A4CE1D38B0.roa (raw, json)
Hash identifier: KDcXPxqXKimZYWj1lmh9IyOJIeNOFXtjqs+xUcnzJZY=
Subject key identifier: 87:AB:A5:19:93:00:6F:7D:B3:C2:F5:FF:32:72:61:47:A9:0C:3E:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D389
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3623EFA69B411F1A4AA03A4CE1D38B0.roa
Signing time: Tue 16 Jun 2026 18:55:33 +0000
ROA not before: Tue 16 Jun 2026 18:55:28 +0000
ROA not after: Fri 24 Jul 2026 18:55:28 +0000
asID: 214413
IP address blocks: 154.194.226.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119689 (0x1d389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 18:55:28 2026 GMT
Not After : Jul 24 18:55:28 2026 GMT
Subject: CN=6a319c25-f5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c9:b0:30:b0:e5:03:d3:09:2f:36:0e:5b:c2:
ba:e8:26:a4:2e:98:cc:0e:39:6e:77:6e:6e:b0:2f:
77:b2:63:48:d5:3e:80:3b:57:ee:6a:44:ae:ad:1d:
a8:8a:20:47:94:e2:65:b3:65:df:31:e5:48:a1:61:
aa:79:fa:2e:50:6d:9f:ec:a9:99:da:d5:a3:7f:81:
5d:b2:c5:5c:72:f5:4f:a1:05:ba:bb:3c:70:45:51:
79:d7:5a:2c:52:86:f3:6d:0a:9f:5c:16:f6:dd:a4:
ee:44:8c:07:0e:3a:14:4f:c9:48:b8:d1:e1:bb:a3:
7c:99:9d:12:2c:df:5a:05:ce:ff:6d:22:0a:c7:01:
24:07:f0:34:1c:cb:cd:1a:fd:0f:8d:c2:ed:37:77:
7c:e4:87:e7:9a:be:88:22:03:0d:71:b7:5f:97:8c:
b5:3e:6d:41:4a:a9:db:ed:7d:f6:72:16:5c:9c:2a:
8d:fa:93:e3:41:7c:80:dd:60:ed:f8:bc:9c:81:ef:
30:58:43:26:4e:19:32:be:f3:3a:1a:7a:a1:71:52:
be:d5:79:b6:a8:59:18:61:33:64:84:1f:d3:c1:8d:
80:ee:ad:37:5f:75:1b:1d:ee:d9:d7:9a:dd:b0:bc:
70:68:45:25:24:7b:f9:db:b6:9b:60:50:6d:01:17:
d7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AB:A5:19:93:00:6F:7D:B3:C2:F5:FF:32:72:61:47:A9:0C:3E:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3623EFA69B411F1A4AA03A4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.226.0/23
Signature Algorithm: sha256WithRSAEncryption
11:57:cb:f4:86:fd:34:a2:ca:82:13:6e:b2:52:c5:ce:77:6a:
41:47:67:e9:f1:48:0f:59:ff:00:fb:d5:27:6c:68:c6:df:e9:
a7:e8:3e:b3:e2:05:35:f0:c5:61:32:c7:22:96:d5:c1:f6:77:
55:aa:53:70:94:d2:21:8d:1a:77:42:27:a0:ca:9e:a1:aa:6b:
f6:fa:05:c5:49:b5:50:55:80:db:7c:9c:63:89:b3:32:a9:7e:
78:4e:63:16:2e:ad:4a:50:57:e9:ea:2c:5c:59:bb:36:31:64:
3b:6a:b9:67:65:e9:75:aa:4e:fa:83:89:5d:d7:95:10:09:e8:
27:39:3f:3b:57:1e:72:af:b5:22:4c:e1:a4:3b:fe:81:4e:a5:
8e:6b:f5:50:ce:6d:69:aa:7e:ee:a8:70:7b:2f:ce:02:4d:ae:
9d:65:2c:19:f7:22:44:86:88:0a:88:b2:43:0f:95:f6:b0:5b:
c8:e3:d3:bf:5a:a4:f1:30:8d:99:36:06:37:f1:ca:19:9f:f5:
25:54:ad:6c:2d:66:18:b4:4b:f8:7a:45:e9:f8:95:e9:60:0f:
aa:a7:42:d7:98:81:5a:7b:34:4d:24:14:b5:4a:2c:f9:e9:fd:
30:1c:c5:33:6b:e0:f4:0b:c8:e6:28:ec:57:e0:27:78:0e:66:
83:ea:88:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:59 2026 by rpki-client