Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D9CC0065C0311F18CBE21F5CE1D38B0.roa
File: 1D9CC0065C0311F18CBE21F5CE1D38B0.roa (raw, json)
Hash identifier: 141zLYpgGLRQeLbrUF6GrktvfnqcbxYOkXw8ZIxobMA=
Subject key identifier: 2B:60:0B:BB:7C:15:45:53:81:1E:51:64:AC:B6:B1:6E:E2:20:BB:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D0F0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D9CC0065C0311F18CBE21F5CE1D38B0.roa
Signing time: Sat 30 May 2026 08:39:48 +0000
ROA not before: Sat 30 May 2026 08:39:43 +0000
ROA not after: Sun 30 May 2027 08:39:43 +0000
asID: 209242
IP address blocks: 154.211.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119024 (0x1d0f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 08:39:43 2026 GMT
Not After : May 30 08:39:43 2027 GMT
Subject: CN=6a1aa254-1eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:73:06:80:93:62:96:e3:57:69:a2:01:ce:
2d:63:07:66:96:21:05:02:e8:50:01:6a:8f:db:e2:
b6:75:12:f1:17:2f:96:d2:f5:df:fe:45:a8:b0:8a:
06:60:65:97:10:c2:e3:29:c3:f1:8d:dc:3d:5b:2b:
d4:31:5f:88:e8:a6:18:c1:12:4b:7c:ef:99:56:e8:
52:34:de:0d:1a:e8:60:ab:5d:0c:a2:c8:56:2d:2b:
95:62:f7:a9:4c:5d:2c:28:7a:6f:b7:3b:42:d4:9e:
22:00:d4:e6:58:91:75:0c:b7:35:a0:1a:de:0c:3d:
52:97:c2:4a:88:3f:1f:66:4d:1e:ed:8c:62:06:f3:
0c:90:03:51:7f:f5:c2:fd:84:2f:1f:91:8a:1e:d9:
3d:27:51:02:4d:1c:c1:18:62:e4:df:16:62:7e:f6:
12:b5:69:2a:fb:e9:99:75:e2:cb:c2:4a:3c:fa:0d:
7c:3f:fc:af:b3:fb:19:77:93:5d:c5:84:76:32:58:
5f:76:5e:8c:ce:82:d5:ec:19:37:a4:3e:eb:9a:3b:
47:a8:03:7a:bb:4e:c6:89:78:bd:da:70:41:c5:8a:
39:32:16:1b:ea:29:73:85:d2:56:35:7b:4f:96:1c:
02:77:44:94:fa:28:9e:8c:b5:19:80:cc:77:87:b6:
ab:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:60:0B:BB:7C:15:45:53:81:1E:51:64:AC:B6:B1:6E:E2:20:BB:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D9CC0065C0311F18CBE21F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.8.0/24
Signature Algorithm: sha256WithRSAEncryption
82:cd:a8:f5:19:ba:77:9f:5f:c5:94:15:79:ae:27:54:88:04:
8c:86:73:95:9c:73:f9:26:c2:16:de:f9:f4:2c:3a:17:28:bc:
99:7c:a4:8d:b5:ca:3b:35:94:a0:07:c9:0d:32:23:9c:c6:b9:
9d:33:41:a0:4d:fe:7a:58:2a:a7:e4:54:5d:60:b3:76:b6:b4:
c1:7d:89:4b:e3:20:a1:9b:81:c3:4d:99:9e:dd:43:aa:9c:42:
d0:8e:21:4d:6c:0d:18:0d:a1:b6:31:1f:d3:77:5e:b7:e3:f8:
b5:29:e1:51:3a:79:67:af:fb:77:2e:57:7e:1d:cd:b1:df:c4:
d6:28:ec:26:7a:3d:e3:15:d3:c3:14:13:61:2a:ca:9e:bc:e8:
7f:5b:5e:a6:14:21:09:08:54:de:01:73:58:21:44:e0:b7:14:
b4:9d:51:71:b9:f0:20:17:16:d8:f3:fa:fa:25:c5:a7:7c:6e:
f7:dc:c8:c9:49:be:f4:aa:4f:96:2c:ac:8d:d8:0a:a9:8b:6f:
f5:53:0b:87:48:d2:1f:b6:44:94:67:88:4f:dc:59:bd:f9:cd:
1d:a0:03:ba:ab:2b:f3:91:b9:44:6e:4c:38:16:a3:7d:bb:2b:
6c:df:d2:0e:ac:37:16:d3:69:8e:01:8d:4b:ef:31:ba:30:ef:
a0:a0:f7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:17:51 2026 by rpki-client