Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE799D8567D11F1903D11E3CE1D38B0.roa
File: 3EE799D8567D11F1903D11E3CE1D38B0.roa (raw, json)
Hash identifier: WeJqeMjsHP/G/b4keri8ripTTediq3Stq2vFoC0S/6g=
Subject key identifier: F2:E2:9C:9D:69:E7:C5:3C:7D:BE:F5:EA:34:6F:9C:D0:6B:9E:AF:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE6B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE799D8567D11F1903D11E3CE1D38B0.roa
Signing time: Sat 23 May 2026 07:58:55 +0000
ROA not before: Sat 23 May 2026 07:58:51 +0000
ROA not after: Thu 09 Jul 2026 07:58:51 +0000
asID: 63099
IP address blocks: 154.200.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118379 (0x1ce6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 07:58:51 2026 GMT
Not After : Jul 9 07:58:51 2026 GMT
Subject: CN=6a115e3f-d45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:83:46:44:e3:51:2f:4c:71:3b:5a:88:9d:10:
42:3e:bd:05:22:97:03:7f:2e:90:4b:31:69:e7:f3:
ea:45:65:a6:19:3f:82:5a:5c:11:60:3b:8a:a7:2e:
d9:d7:14:61:6e:20:24:83:0c:7b:ef:ef:66:53:d6:
82:d6:5a:dd:46:d5:15:f8:13:12:19:58:dd:51:e5:
41:5c:36:05:29:b2:f3:fe:87:c7:f6:b4:e5:10:1b:
74:2c:b6:a0:d9:b7:42:f5:fa:77:6b:05:c8:db:79:
68:34:0d:61:f4:fd:be:d9:b9:7e:0d:b1:8b:34:af:
27:72:35:b9:bc:43:bd:11:ef:18:a6:74:39:90:be:
fc:71:b2:70:89:40:2b:d4:4c:f1:15:bf:fa:fb:c7:
14:52:1c:89:40:89:41:11:51:ba:b2:9d:71:d5:23:
c5:25:93:41:07:d1:20:f0:57:65:af:a4:1d:26:d1:
7a:8e:a0:16:71:cc:a4:0b:d5:dd:f1:fd:01:c7:85:
64:59:b0:f1:73:82:be:ca:bf:ba:40:20:00:f2:8b:
bc:82:02:09:f0:9f:ab:0a:a5:4b:78:4f:3d:f6:23:
7b:eb:f2:b3:f0:2a:02:e2:a3:20:77:b0:84:9c:c4:
1b:14:3d:f6:82:a4:de:37:cf:20:f6:8e:13:ab:d5:
66:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E2:9C:9D:69:E7:C5:3C:7D:BE:F5:EA:34:6F:9C:D0:6B:9E:AF:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE799D8567D11F1903D11E3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.80.0/24
Signature Algorithm: sha256WithRSAEncryption
33:f3:24:60:d0:55:a4:6e:fa:44:79:a9:c6:7f:20:1a:bd:3d:
aa:69:bf:31:60:64:43:bd:3c:6e:a1:e1:ac:43:0d:64:25:59:
95:ff:28:f4:ae:fe:f3:a1:1d:52:f8:89:8d:b2:ee:f5:2c:23:
b7:78:eb:77:19:83:aa:b6:1a:2d:10:70:7a:b0:18:9c:48:ec:
06:e9:74:55:c5:56:6b:c0:39:46:d4:6d:5f:db:96:c2:6e:52:
85:47:84:43:13:e7:9c:cc:42:96:35:cb:de:1c:34:fc:61:35:
86:83:c2:41:ae:0d:81:81:33:f5:99:be:18:20:8a:b5:0a:a1:
42:f4:7d:48:7c:b9:0d:86:14:92:b5:00:e0:56:a7:e2:f7:f0:
41:07:1b:f2:66:47:1e:d5:18:16:4a:62:15:3a:e7:a6:29:0f:
59:e3:97:64:cc:2f:5a:15:ae:fd:1b:16:3d:64:80:41:fd:33:
01:00:be:3e:7b:8f:f0:87:18:c6:a6:e6:93:5c:ef:aa:84:45:
22:d2:5f:bf:1f:54:c2:d1:48:2a:04:eb:65:f9:fd:1e:60:0e:
65:20:53:1c:32:77:ca:43:b2:08:96:1c:46:95:9a:ed:10:3d:
33:1b:20:9c:eb:58:31:0f:3c:f8:c3:4a:77:a2:6b:e5:fe:3e:
31:05:e1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:53:59 2026 by rpki-client