Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/308E904664DB11F1BED6EFAFCE1D38B0.roa
File: 308E904664DB11F1BED6EFAFCE1D38B0.roa (raw, json)
Hash identifier: W/rlHHOOSm8yH6oAxVEwVXAbn55e/g+g/6ZX/nw0bHQ=
Subject key identifier: 67:8C:E5:06:E3:24:18:6A:5C:EC:C9:4D:13:F2:D0:1D:4A:7C:07:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D290
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/308E904664DB11F1BED6EFAFCE1D38B0.roa
Signing time: Wed 10 Jun 2026 14:46:40 +0000
ROA not before: Wed 10 Jun 2026 14:46:36 +0000
ROA not after: Mon 21 Jun 2027 14:46:36 +0000
asID: 209242
IP address blocks: 154.202.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119440 (0x1d290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 10 14:46:36 2026 GMT
Not After : Jun 21 14:46:36 2027 GMT
Subject: CN=6a2978d0-e352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d6:81:c9:70:b3:86:57:b0:e3:54:25:9a:5c:
86:35:3d:07:ee:fb:2d:5a:6b:9f:a1:90:4c:e2:76:
0c:07:10:5e:51:87:3a:0f:40:3f:8f:8d:a4:46:8a:
34:c4:8b:15:c8:f0:cd:19:73:c2:45:6d:b8:00:05:
43:43:8c:db:e1:40:22:55:d0:d4:67:a1:29:86:00:
a3:d3:6a:9f:e7:82:53:c6:ce:b3:a8:29:1e:fa:34:
8f:84:6f:0b:55:85:4b:11:58:86:70:c1:9a:66:5c:
b1:c8:aa:c4:7d:c3:d1:cc:1c:71:7d:b1:fe:8a:ea:
26:56:19:6f:10:e9:24:6b:56:8f:31:c0:e1:7a:51:
0b:ef:00:d2:05:b5:72:ea:c9:68:be:a4:19:2b:58:
12:e9:5d:19:dc:81:78:2a:cc:19:96:45:54:fc:3e:
35:99:bf:31:79:d1:dc:2e:a4:34:78:13:7e:dd:02:
24:d3:51:bf:9a:23:61:b1:11:14:f1:8c:b1:fe:eb:
90:86:c1:31:52:63:78:16:fe:0c:92:e4:76:b5:60:
e1:c4:62:8c:23:a0:d6:5f:d1:e1:f5:c8:15:2f:d1:
a0:d0:a2:31:84:14:65:41:41:62:01:38:d9:1c:90:
b1:60:78:e7:37:ab:94:f0:9e:d7:e6:86:9d:6c:9c:
cb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:8C:E5:06:E3:24:18:6A:5C:EC:C9:4D:13:F2:D0:1D:4A:7C:07:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/308E904664DB11F1BED6EFAFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.89.0/24
Signature Algorithm: sha256WithRSAEncryption
30:69:d3:03:e3:0c:30:71:8f:79:41:64:6c:03:fa:36:b5:bd:
f5:b3:46:88:87:4c:e3:ec:0a:08:dd:c0:8d:fb:53:84:ee:1a:
07:99:f0:0b:09:23:b1:2e:b7:41:81:e8:5c:9e:5c:3f:2b:86:
74:c0:08:aa:83:16:5a:8e:9f:17:4c:a0:30:36:fe:72:53:4b:
73:41:d6:a7:9b:88:21:26:8b:3c:61:2c:41:e2:74:9b:7d:5c:
65:06:04:cb:55:be:7d:44:16:be:1d:b1:ac:d9:dd:06:77:3e:
9f:e2:cb:bd:64:d2:89:71:2c:9a:f3:c9:b0:ed:5e:7f:68:7a:
46:20:f3:55:0f:d5:69:23:d4:c6:f9:db:c8:f0:67:09:85:12:
d3:3e:b1:76:89:68:db:af:f3:33:88:ef:20:a1:15:d3:74:59:
19:81:21:76:32:dc:4e:9f:3d:af:15:fb:a9:08:f0:36:28:08:
83:6f:62:67:4e:86:68:27:a6:4e:54:e8:da:67:70:1f:43:3d:
c8:74:17:5e:c6:f2:bd:44:fb:3e:62:3c:0f:6e:e7:ee:7f:86:
99:2f:e6:b7:d6:e8:1b:16:d9:c4:25:bc:19:82:c8:a5:dc:82:
aa:85:30:e5:46:62:46:87:c6:98:de:87:7e:52:04:ae:14:2b:
7c:1a:c8:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:05:46 2026 by rpki-client