Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F764B75C551511F1958909C7CE1D38B0.roa
File: F764B75C551511F1958909C7CE1D38B0.roa (raw, json)
Hash identifier: 1/w1HX7SPg6IGGzDQhqFlnWiHINHV3I/4VfnVfJPAog=
Subject key identifier: 8D:61:27:23:72:4F:01:97:F1:E9:A1:B8:FB:BB:92:DE:A9:97:BB:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F764B75C551511F1958909C7CE1D38B0.roa
Signing time: Thu 21 May 2026 13:07:06 +0000
ROA not before: Thu 21 May 2026 13:07:02 +0000
ROA not after: Sat 27 Jun 2026 13:07:02 +0000
asID: 6079
IP address blocks: 154.202.138.0/23 maxlen: 24
154.202.140.0/22 maxlen: 24
154.207.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118118 (0x1cd66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 13:07:02 2026 GMT
Not After : Jun 27 13:07:02 2026 GMT
Subject: CN=6a0f037a-0f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:3c:9e:63:62:de:46:82:3b:1c:97:c4:ce:
c8:69:e8:56:24:25:9b:59:1b:fb:01:fd:94:b0:67:
29:95:a4:ec:af:df:17:2d:b7:e9:ef:89:d5:1b:a9:
52:af:a7:42:3f:3f:5d:44:08:46:e8:f9:08:82:61:
26:63:de:c7:fd:b1:07:7d:9f:a5:64:fd:23:9f:73:
f1:e0:7f:38:39:25:ac:8d:59:0e:ae:c7:e1:ca:7f:
74:80:98:73:6a:79:5f:25:ca:0f:63:22:7e:00:a7:
76:86:d9:6c:c8:44:da:e5:f2:5d:d6:18:3e:96:7b:
35:d7:b6:ad:fb:d2:77:ef:15:bd:2c:bb:4b:8d:32:
7e:9c:a9:ff:9a:c1:72:89:4d:be:7a:ae:2b:94:89:
ff:b4:6f:0c:81:c2:4b:be:76:e1:15:db:b5:ca:48:
1f:24:69:71:e8:7d:73:e6:a6:02:75:16:c3:d9:01:
7c:fb:18:5d:ae:51:48:5d:f2:d3:d8:28:8c:46:7c:
9b:25:80:1a:9f:30:e2:9e:46:42:f5:ca:4f:b4:b5:
40:bb:72:ed:6c:a5:1d:b1:70:99:04:67:b0:bc:5b:
69:02:75:d5:c9:4a:7b:83:a4:3e:7e:84:0f:95:2d:
98:fb:df:ed:af:5a:01:ac:6b:57:99:d9:da:03:6b:
78:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:61:27:23:72:4F:01:97:F1:E9:A1:B8:FB:BB:92:DE:A9:97:BB:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F764B75C551511F1958909C7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.138.0-154.202.143.255
154.207.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9e:bf:d2:fc:20:55:d9:f7:1c:ce:6d:0d:50:0c:10:6f:ad:a5:
8a:89:ff:65:4e:c6:42:06:24:8b:f1:2a:55:db:82:30:5f:4d:
43:9a:55:0d:44:2a:9e:dc:e5:20:e2:1b:53:d0:26:a6:d3:9d:
94:8d:88:cb:2a:40:e5:58:32:1e:7e:b7:14:58:2e:f7:39:7a:
b3:cd:24:9c:3b:04:bc:60:7f:dc:e5:d1:7d:2b:d0:83:1e:5e:
f4:0d:19:21:9a:93:38:17:16:46:c0:c2:fb:23:f6:04:96:a3:
ef:95:4a:c9:a2:ab:57:d8:20:82:1f:59:fa:cc:06:b0:2b:ea:
8d:19:10:f9:95:9e:d0:e5:3c:ea:04:94:7c:f4:70:ce:6a:7d:
3d:8f:35:06:01:aa:29:85:e6:61:f7:4b:c6:6b:92:36:24:d6:
5e:f0:8e:4b:ae:4e:aa:72:df:f0:14:ad:5e:94:e5:61:05:be:
77:3f:d6:1b:84:97:a6:28:a5:c2:57:f8:2a:4c:5a:1a:fc:be:
ba:d2:d3:7a:3a:06:ef:92:35:65:85:16:55:d3:5d:c6:9f:1d:
14:89:4f:09:1a:22:8b:e9:b9:b7:24:d4:63:5d:a5:4a:e6:3f:
53:b5:39:69:8d:4e:18:12:f2:77:24:5e:94:43:c9:36:2c:86:
9c:9f:a9:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:07:54 2026 by rpki-client