Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F99A8CA56D611F1831E2EF1CE1D38B0.roa
File: 0F99A8CA56D611F1831E2EF1CE1D38B0.roa (raw, json)
Hash identifier: mn68911aFFHR80feufLmtdm533wkdbY882zsne4sGjc=
Subject key identifier: 28:F2:9C:87:FB:7F:D1:C2:44:6C:98:13:DD:0E:E5:31:F5:0E:79:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE94
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F99A8CA56D611F1831E2EF1CE1D38B0.roa
Signing time: Sat 23 May 2026 18:34:41 +0000
ROA not before: Sat 23 May 2026 18:34:37 +0000
ROA not after: Sun 28 Jun 2026 18:34:37 +0000
asID: 200758
IP address blocks: 154.83.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118420 (0x1ce94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 18:34:37 2026 GMT
Not After : Jun 28 18:34:37 2026 GMT
Subject: CN=6a11f341-b403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:08:85:a4:74:66:e9:c7:65:20:11:d9:a9:8b:
9d:9a:c6:7b:28:ee:84:37:69:02:91:ac:3d:fb:fe:
05:74:d8:81:da:39:ae:54:2b:51:0e:0c:2c:33:a2:
79:01:04:68:9c:65:b6:7b:ab:91:0b:08:59:47:f4:
ec:86:a4:ec:99:81:a2:7b:14:e1:fb:8d:1c:48:a4:
a5:9a:65:72:31:42:9f:be:4a:d1:2f:cb:42:97:0d:
35:bb:46:c3:07:34:15:19:0b:8a:20:01:21:8a:5e:
a4:10:16:47:1f:6a:3c:7d:fe:cd:96:0a:3f:67:70:
2a:56:b8:82:1b:0c:87:74:a5:50:34:86:4d:9e:86:
dc:59:38:1d:be:91:8b:fd:ff:f9:66:0f:a4:46:b6:
0a:e1:34:6c:aa:5b:8a:77:2c:22:b8:36:79:d0:01:
b4:f2:22:25:c5:3a:bc:e0:01:d5:47:25:d5:07:d9:
24:3d:1f:59:68:b6:52:8e:9e:41:91:6f:71:77:0e:
31:9f:7a:34:36:7c:f8:06:ef:58:7c:33:02:64:cf:
ec:0b:30:2b:eb:8a:d0:98:9b:dd:03:31:46:89:fb:
0e:42:fa:c6:10:66:b5:34:06:8e:f9:0f:fd:64:ef:
36:da:d7:e8:dc:fe:d6:d4:a9:10:8d:c2:a5:53:37:
91:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F2:9C:87:FB:7F:D1:C2:44:6C:98:13:DD:0E:E5:31:F5:0E:79:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F99A8CA56D611F1831E2EF1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.140.0/24
Signature Algorithm: sha256WithRSAEncryption
83:58:ae:7b:dc:51:65:1f:06:1f:f6:01:2e:11:68:95:88:8c:
96:da:e4:a1:10:90:9d:0b:fb:29:41:e0:23:92:b9:59:a6:07:
ae:63:d1:7d:d2:9f:ea:ea:46:b0:d1:9b:91:c2:5a:21:5a:7b:
e3:13:61:91:a5:13:15:d1:21:3e:16:28:98:ec:7b:42:50:b6:
71:e5:ce:ee:df:d7:04:e9:6d:2c:c0:43:e0:ef:ba:b2:a2:97:
8f:65:62:0d:17:a8:2a:b1:e2:bf:c0:55:70:e0:6b:b0:03:76:
42:bb:0f:78:80:45:2b:e7:9f:8c:ff:d5:1d:a8:32:63:ac:39:
2d:ac:82:fb:6d:88:f7:a3:be:a3:ff:31:0d:d0:d9:4f:32:da:
be:81:19:e7:36:79:ac:78:82:97:42:12:cf:ae:c2:10:7a:4c:
fc:b9:b6:28:0c:20:8a:0d:38:fa:21:4b:f0:34:1e:61:ba:fa:
35:fc:a3:82:10:63:d7:d3:25:2d:8e:a7:46:b5:4e:6e:32:93:
8e:f7:8c:12:6c:0e:13:f2:8e:80:62:21:19:92:18:19:65:3c:
59:91:21:b5:fb:93:2c:16:1f:21:a1:6e:f6:93:30:3e:30:13:
e1:58:62:33:7b:ca:a3:f5:ac:1f:b7:0a:e5:aa:fb:ce:8a:a4:
71:d1:8a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:18 2026 by rpki-client