Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8A67B2C697F11F1A63549E6CE1D38B0.roa
File: F8A67B2C697F11F1A63549E6CE1D38B0.roa (raw, json)
Hash identifier: tnyltEsUS1GUQSl985fvTNbdWJ/JKPGMgpupzx7Yxwg=
Subject key identifier: C6:39:26:16:CA:45:1D:33:93:31:00:AA:2B:76:1B:0A:7F:DA:CD:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D33F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8A67B2C697F11F1A63549E6CE1D38B0.roa
Signing time: Tue 16 Jun 2026 12:36:18 +0000
ROA not before: Tue 16 Jun 2026 12:36:13 +0000
ROA not after: Thu 16 Jul 2026 12:36:13 +0000
asID: 17497
IP address blocks: 154.193.11.0/24 maxlen: 24
154.193.12.0/24 maxlen: 24
154.193.13.0/24 maxlen: 24
154.193.14.0/24 maxlen: 24
154.193.15.0/24 maxlen: 24
154.196.164.0/22 maxlen: 24
154.196.164.0/24 maxlen: 24
154.196.165.0/24 maxlen: 24
154.197.26.0/23 maxlen: 24
154.197.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119615 (0x1d33f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 12:36:13 2026 GMT
Not After : Jul 16 12:36:13 2026 GMT
Subject: CN=6a314342-49ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0c:5d:94:31:63:86:e3:76:27:95:dd:dc:58:
be:8a:61:87:5d:69:70:19:dc:76:ae:e9:56:ae:ff:
aa:32:84:21:26:57:c2:1f:83:cd:6d:07:00:50:f3:
3b:f2:bd:9e:2c:42:75:94:cc:2b:61:7f:61:24:a9:
18:77:57:da:98:90:d4:1b:83:ac:0b:9f:95:2f:30:
e1:ac:e0:89:76:08:15:34:fd:7e:9c:3b:54:68:67:
a5:a7:7d:78:da:27:cf:ca:7c:b3:5f:3e:9d:14:f7:
db:e9:b4:1a:2e:18:cf:f7:72:79:14:bb:be:72:60:
df:24:71:cb:d0:05:22:e2:cf:3b:5d:b3:87:ef:b3:
45:6d:31:53:4a:bb:ca:25:ec:bd:ba:1f:52:48:9d:
1a:7f:9d:79:10:b4:9d:74:4d:6d:6f:30:cb:a9:1f:
b8:26:af:21:10:a8:50:c5:85:3d:e8:c6:7c:f7:68:
05:f1:7e:cb:82:42:c8:15:a7:67:5e:de:b1:8a:8d:
ef:f2:8c:8e:2c:1d:12:8b:3f:01:24:c0:ba:3a:af:
d7:b8:ad:56:1d:b1:8f:a0:97:3b:71:74:66:6d:c8:
20:98:a4:0b:5f:04:12:b1:6f:f3:9f:8b:e1:20:04:
c8:69:69:7d:e4:6a:99:fc:5d:fd:c4:5e:a2:a1:de:
b7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:39:26:16:CA:45:1D:33:93:31:00:AA:2B:76:1B:0A:7F:DA:CD:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8A67B2C697F11F1A63549E6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.11.0-154.193.15.255
154.196.164.0/22
154.197.26.0/23
Signature Algorithm: sha256WithRSAEncryption
97:51:a5:16:f4:7e:ab:ba:39:3b:35:b9:21:ae:bf:c3:90:f5:
53:b1:b9:52:04:b9:5b:6a:2a:7d:75:37:0d:b0:ae:c7:d7:88:
e3:52:5b:9d:1e:65:e9:5c:05:58:c9:75:5f:32:52:8d:60:03:
06:4b:f7:c5:eb:d7:98:63:ea:cd:41:38:82:a3:47:ef:c2:75:
8e:07:0c:06:c5:0e:00:fa:0c:ee:f8:36:ad:a1:0c:67:aa:76:
ef:00:63:d2:54:71:48:11:2e:e9:34:14:9e:08:9a:b3:4d:d2:
6f:eb:07:8a:cb:ed:72:d2:fe:ce:e8:ce:aa:c5:f5:f2:b6:c9:
01:5f:0f:52:60:37:2b:35:67:3b:aa:22:cf:e1:c6:4b:01:66:
5e:c9:d2:ab:39:ae:dc:c4:e3:6d:fc:ab:ed:03:e5:04:a0:1f:
00:47:3b:28:14:c3:c1:17:22:cc:1d:ae:32:07:a8:b9:4a:02:
49:bb:d9:32:09:ad:83:24:76:5d:66:f7:cc:27:05:e4:eb:4c:
fd:c3:a8:e0:89:2e:17:a3:ef:72:42:ba:33:18:e6:08:2e:4c:
ff:04:63:d7:4d:30:99:6b:01:79:59:ca:bb:a7:18:95:64:03:
e1:25:f5:be:c7:ff:99:a8:c6:09:5e:44:f0:c7:dc:e4:c3:bf:
fe:25:88:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:54 2026 by rpki-client