Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F84E47AE694D11F1BCFE1EC0CE1D38B0.roa
File: F84E47AE694D11F1BCFE1EC0CE1D38B0.roa (raw, json)
Hash identifier: VsNBd4ETmj4LgHihudwN6Y6dXy1PdBzhszapSX8AURw=
Subject key identifier: D6:9A:23:18:DD:60:0E:FD:B9:81:72:75:3E:3E:F8:9A:CD:5F:A9:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D31E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F84E47AE694D11F1BCFE1EC0CE1D38B0.roa
Signing time: Tue 16 Jun 2026 06:38:23 +0000
ROA not before: Tue 16 Jun 2026 06:38:18 +0000
ROA not after: Tue 21 Jul 2026 06:38:18 +0000
asID: 9304
IP address blocks: 154.203.241.0/24 maxlen: 24
154.203.242.0/24 maxlen: 24
154.208.76.0/22 maxlen: 24
154.208.84.0/22 maxlen: 24
154.212.144.0/23 maxlen: 24
154.212.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119582 (0x1d31e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 06:38:18 2026 GMT
Not After : Jul 21 06:38:18 2026 GMT
Subject: CN=6a30ef5f-7c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8a:fa:db:71:94:a5:69:5f:fb:82:f4:b4:7d:
06:ef:93:a7:06:f5:89:5d:bd:ae:69:be:c0:25:76:
ee:a6:d8:f9:ea:6b:15:96:54:f0:7c:50:bd:61:f5:
79:e0:d7:9c:93:ec:5c:8d:68:76:ad:87:7b:27:7b:
da:9d:cb:3c:a4:2b:ae:57:f4:a9:d4:ff:33:84:c7:
db:27:25:5d:41:fe:78:8a:ef:e6:1f:80:c3:7a:a2:
44:93:e9:37:81:a2:3d:51:14:df:4f:9f:64:08:7f:
39:65:14:3f:35:af:0d:57:7d:4d:51:a6:89:41:a3:
85:7a:6c:9a:3c:c6:5e:c2:32:41:b6:93:54:08:bc:
21:d1:55:c1:8b:79:8e:1f:d6:72:9c:24:3d:ad:30:
bb:00:fe:c5:43:ce:78:6c:30:13:af:b5:74:0b:38:
e5:eb:5f:74:da:ed:93:6d:38:ea:96:06:7a:ae:ee:
85:d0:42:dd:a7:63:f5:e1:6e:47:9f:33:05:a7:b7:
7c:be:7e:c3:3d:66:48:2c:57:b9:20:dd:48:11:06:
f2:65:f5:89:12:a2:30:91:64:e2:16:f6:c0:85:32:
f8:4b:0b:48:6a:5b:7c:83:df:29:ab:49:e5:f5:78:
02:4e:0b:cb:79:10:60:44:4f:61:87:a9:a2:ad:1f:
40:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:9A:23:18:DD:60:0E:FD:B9:81:72:75:3E:3E:F8:9A:CD:5F:A9:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F84E47AE694D11F1BCFE1EC0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.241.0-154.203.242.255
154.208.76.0/22
154.208.84.0/22
154.212.144.0/22
Signature Algorithm: sha256WithRSAEncryption
63:ea:8b:af:7e:e9:ab:2f:c2:1a:ef:67:78:99:a7:7f:f2:f1:
64:be:cb:21:09:23:98:e2:3a:04:a6:33:93:68:c9:4b:80:cd:
e0:c0:64:bb:e6:d7:90:15:d5:c7:8e:de:eb:2b:1e:d5:85:5e:
72:1a:8c:e3:4a:b7:02:6d:ab:e8:0e:f5:ac:c7:a4:c9:2a:37:
52:68:69:2e:76:d5:34:18:c5:d7:3b:f2:0e:ed:e3:03:f3:02:
d4:f9:93:17:a6:3f:3d:4b:29:b0:bc:e3:af:db:cf:4d:f2:e3:
f9:ca:2e:ac:2e:d8:ca:2f:7d:21:61:bd:ad:da:fb:a4:20:5c:
b5:01:04:ca:48:72:ec:1c:3e:2a:b0:a1:bc:74:95:b6:77:ac:
a7:56:1d:23:60:61:f1:47:e5:64:fb:05:27:6b:e9:d0:ac:12:
31:60:e7:e4:e5:9d:da:97:b8:ab:59:0e:63:dc:9b:80:45:0a:
7e:b3:6e:b2:28:7a:cf:f3:d5:d5:db:dd:15:d3:61:6f:00:db:
58:f1:e0:b3:0d:5a:61:e7:7f:69:d5:81:ee:ef:3b:6c:12:1c:
ff:bd:64:81:c6:35:17:a0:aa:84:2f:c4:26:c8:ab:74:6e:60:
9f:f1:74:b7:01:0f:56:47:3b:59:79:b2:7c:ba:9c:55:07:bd:
b5:29:d4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:56 2026 by rpki-client