Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/394BE5925AFB11F193A7131BCF1D38B0.roa
File: 394BE5925AFB11F193A7131BCF1D38B0.roa (raw, json)
Hash identifier: L9M0n8qyJWd8DlI3v3mcgr60pJzl/y/IQm2o6bMF+d4=
Subject key identifier: 9E:14:80:CA:FB:A7:DA:2F:FC:25:32:19:44:CB:21:3A:F8:7C:AE:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D028
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/394BE5925AFB11F193A7131BCF1D38B0.roa
Signing time: Fri 29 May 2026 01:10:47 +0000
ROA not before: Fri 29 May 2026 01:10:42 +0000
ROA not after: Sun 28 Jun 2026 01:10:42 +0000
asID: 54801
IP address blocks: 154.213.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118824 (0x1d028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 01:10:42 2026 GMT
Not After : Jun 28 01:10:42 2026 GMT
Subject: CN=6a18e797-1b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:91:bb:0b:67:da:51:6a:94:67:a3:17:a0:d5:
91:a1:70:2b:a2:54:67:1b:68:e9:5a:81:1a:26:ec:
7e:b8:b5:49:f0:55:44:53:d0:95:ee:1c:0a:74:10:
ce:50:42:6c:9e:db:37:e9:44:89:4d:13:1d:68:a7:
18:80:43:4c:94:2b:21:a7:cc:d5:a5:0e:71:cf:46:
52:a3:34:4c:9f:39:5b:83:c7:c7:d6:53:d8:9a:c2:
13:8c:93:ca:5d:2b:97:bc:d8:08:d9:21:49:ab:d5:
1b:69:c6:f5:1d:f5:f3:3f:0f:87:c4:c3:1b:7a:95:
2e:ee:2b:ed:6c:5d:80:25:0d:af:d6:be:47:59:49:
1c:30:a5:59:e3:a0:35:1b:88:bf:23:65:c4:02:b0:
be:0d:8d:5a:2c:2a:ba:af:9f:b1:86:18:47:e5:2a:
07:cc:f4:83:6d:49:4c:9a:03:68:27:4f:03:01:2e:
6c:7b:e8:43:f9:75:ce:e4:a9:d1:06:fe:8d:b3:c6:
88:cf:d2:1d:4d:cc:ac:f5:aa:25:8e:3a:09:f2:ae:
20:f2:b5:97:a5:f2:45:0d:15:6d:50:1f:54:30:48:
af:7a:94:6c:ed:14:d9:50:7f:3f:36:b5:cb:a5:61:
e1:78:cc:a5:14:99:3d:4f:1a:f6:db:64:78:12:c7:
a1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:14:80:CA:FB:A7:DA:2F:FC:25:32:19:44:CB:21:3A:F8:7C:AE:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/394BE5925AFB11F193A7131BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.176.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:8e:2b:34:7b:9a:ce:d0:72:01:37:c9:76:4f:69:2f:ec:90:
2c:e4:f3:65:95:f5:7a:6a:82:54:8b:2f:02:b6:19:64:58:04:
cd:ee:72:bd:59:f8:4c:38:4d:a6:b1:7c:38:e9:a1:fa:88:00:
f0:dc:62:4e:a7:08:fc:5c:ef:9d:3f:91:20:67:5a:7f:e9:e4:
93:c1:05:57:4b:71:f6:6b:66:ef:b8:05:33:58:e1:65:2a:29:
ee:f4:28:3c:a2:89:bd:4a:d1:d8:93:5b:65:f7:1a:d5:3a:c2:
32:ae:fc:c9:40:e0:bb:17:b5:ae:a0:59:58:6f:34:af:a5:8e:
4c:a0:5e:6b:89:74:3c:3e:01:5a:86:d2:e3:6b:13:ef:c2:3f:
a0:e0:1d:1e:2e:72:19:f7:c7:bc:3e:bb:c9:9d:c6:3a:ef:b2:
3b:63:4a:e3:80:62:b9:10:bf:0c:2c:13:88:bb:09:a6:e3:e7:
48:81:80:0a:d7:fa:57:34:26:e3:3c:46:e6:24:15:ab:97:29:
08:7f:52:f2:c9:80:92:6a:f6:e0:ed:d2:5d:c1:73:aa:87:a3:
c7:eb:3e:95:83:64:21:c0:f2:84:4d:5d:9f:1f:ea:5f:82:a4:
ad:d7:2e:f3:b7:4e:6c:16:10:d3:f8:73:0e:f1:5e:16:a0:39:
86:16:65:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:18:34 2026 by rpki-client