Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0DD16D68548611F1A8E488CBCE1D38B0.roa
File: 0DD16D68548611F1A8E488CBCE1D38B0.roa (raw, json)
Hash identifier: f1zNjqnYRsYmyoSdewt4N0Vw0D6rFWeAexIUvsV213s=
Subject key identifier: 99:82:41:02:1F:EA:79:DA:DC:D9:08:03:6D:18:5A:FB:65:0B:82:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD10
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0DD16D68548611F1A8E488CBCE1D38B0.roa
Signing time: Wed 20 May 2026 19:56:56 +0000
ROA not before: Wed 20 May 2026 19:56:51 +0000
ROA not after: Fri 10 Jul 2026 19:56:51 +0000
asID: 63099
IP address blocks: 154.82.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118032 (0x1cd10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 19:56:51 2026 GMT
Not After : Jul 10 19:56:51 2026 GMT
Subject: CN=6a0e1208-9ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:37:f4:c2:a6:ec:0c:a3:8d:d0:e0:d2:0d:3c:
bd:9e:1c:5f:a4:45:d1:e6:5a:5f:28:34:d3:f3:92:
40:24:94:aa:c5:3c:ae:ec:84:dc:3a:d9:a3:c5:d6:
75:f3:64:97:67:e9:64:93:cb:03:f7:51:50:62:06:
47:ff:77:0f:8a:13:ae:16:a7:d5:69:56:4e:f9:05:
02:80:c8:f7:aa:77:0f:2a:b9:27:74:79:1f:2a:99:
34:d2:73:3b:03:fa:df:47:28:dc:1a:09:47:e3:89:
6f:14:09:1e:05:ef:27:6e:5b:d9:5b:a5:2b:81:76:
43:e0:da:9a:80:b7:15:2f:31:28:73:2a:85:89:b2:
3a:fc:b7:a0:5a:3d:33:c8:40:09:17:8f:7f:3e:7c:
ce:4b:cc:8f:32:a1:d4:ff:5f:12:c9:35:fe:c3:50:
a0:7c:fd:d9:e7:28:d3:2d:ff:7b:0b:17:33:45:ec:
48:2b:ae:50:3f:0c:24:d6:e1:72:c7:25:ad:df:6d:
f7:fa:a0:47:e9:84:d1:8e:aa:28:7e:a9:f0:86:5d:
31:12:38:dc:46:a0:8f:95:22:4d:70:8d:74:0a:17:
70:43:f0:5c:1b:da:95:14:fe:7f:92:f1:28:2e:24:
96:10:30:36:94:32:4b:e2:9d:8c:bd:20:76:32:a5:
5a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:82:41:02:1F:EA:79:DA:DC:D9:08:03:6D:18:5A:FB:65:0B:82:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0DD16D68548611F1A8E488CBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.163.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ae:42:79:4f:4f:91:98:01:50:8a:6c:19:70:ca:8b:f9:a2:
24:32:47:0f:55:ba:c9:aa:77:9f:a9:91:cd:bd:2e:b0:b9:dc:
7a:08:24:12:27:f1:3e:bc:c3:ca:d3:1a:a2:8f:49:19:bb:57:
0a:b8:62:33:56:94:96:36:e2:b1:3f:21:96:f8:c4:86:db:99:
e2:22:ee:c2:71:64:15:33:1a:52:98:b0:a3:ff:47:51:7f:32:
65:3d:9d:42:a8:ca:43:4b:ce:73:45:8d:13:31:01:3d:b6:01:
28:41:f3:6c:16:85:94:74:42:eb:20:5d:49:45:b3:a7:03:92:
ed:d1:3b:bf:d4:4c:bb:0c:d2:ec:dd:a3:49:73:5e:34:1d:a8:
10:44:b4:cc:33:c0:a4:0d:52:36:90:19:36:3d:70:d8:2c:fb:
42:38:70:a9:8f:49:a0:fb:7c:0f:55:2b:3b:55:ef:6f:02:36:
db:07:04:64:9a:45:fa:ff:65:65:5f:23:fb:0b:b8:e0:49:7d:
af:5c:7b:0d:4c:83:f2:03:77:5c:0e:ec:16:67:c1:89:8f:fa:
9d:90:06:04:d4:13:55:66:03:ba:1b:27:31:06:1b:f7:a0:67:
a7:a6:c7:22:e9:4f:aa:21:b1:68:f1:cf:fe:fc:76:29:43:37:
d6:2d:b0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:14:53 2026 by rpki-client