Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51AB680E5D9111F1963E92EACE1D38B0.roa
File: 51AB680E5D9111F1963E92EACE1D38B0.roa (raw, json)
Hash identifier: HuGVyHdRYoyy2Fjajpc03qFm4AkYWz7NBChVFA9M+X8=
Subject key identifier: 03:B8:E3:C0:D1:21:BA:C6:51:53:AC:9F:C6:70:DE:EB:CD:17:2A:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D124
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51AB680E5D9111F1963E92EACE1D38B0.roa
Signing time: Mon 01 Jun 2026 08:10:15 +0000
ROA not before: Mon 01 Jun 2026 08:10:09 +0000
ROA not after: Wed 08 Jul 2026 08:10:09 +0000
asID: 272092
IP address blocks: 154.83.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119076 (0x1d124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 08:10:09 2026 GMT
Not After : Jul 8 08:10:09 2026 GMT
Subject: CN=6a1d3e67-cd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b0:7d:60:82:c0:fc:c7:dc:8a:05:d3:83:e8:
82:fa:b1:bd:b0:15:03:fb:57:95:1d:1b:ce:90:6b:
9d:69:6c:97:49:1b:9e:a5:da:f8:3f:6d:65:53:15:
8a:c8:16:3e:42:aa:4b:31:b9:f2:1b:d5:a5:30:f6:
63:59:98:b2:48:80:7f:41:6a:16:d6:c4:ad:b8:e1:
cd:9e:38:f5:c7:c4:e6:8b:89:99:5c:fc:0f:a5:94:
28:26:6f:a2:a6:cb:e8:63:b8:ac:75:f6:dd:fc:31:
9b:5a:1a:c4:7d:c1:84:7c:0c:0d:0f:82:9a:a9:91:
48:92:31:c8:dd:28:80:5e:c7:19:71:f1:6f:ec:f4:
f3:c5:f1:99:88:11:33:81:4f:47:50:e9:b8:bd:7f:
f8:5d:00:ce:b1:f7:a1:3e:fa:91:1b:aa:4b:01:5c:
3f:40:88:f5:df:9a:0c:4f:0f:70:f1:60:91:00:cf:
34:86:75:91:a8:b2:36:2d:09:fd:cd:dc:76:68:c0:
7c:00:9c:71:7b:c1:4f:e1:00:ff:31:f7:27:f6:4a:
42:cc:57:08:df:d6:13:78:85:8a:ff:3b:97:b5:b4:
cf:3f:c2:fc:30:f4:45:19:8e:4a:74:3d:32:23:fc:
69:fd:21:4e:06:6c:04:8d:c3:3e:93:ff:77:3f:b0:
74:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B8:E3:C0:D1:21:BA:C6:51:53:AC:9F:C6:70:DE:EB:CD:17:2A:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51AB680E5D9111F1963E92EACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.29.0/24
Signature Algorithm: sha256WithRSAEncryption
10:5a:44:bb:ae:fc:dd:cf:5d:b6:a8:ed:11:ad:bc:4d:6c:65:
41:f4:c6:c2:21:19:aa:a7:e8:c2:b0:1f:aa:50:dc:9b:3f:08:
89:e0:33:83:61:fa:15:74:bc:b5:11:9f:c0:5d:69:af:0b:32:
e1:d0:91:3a:70:b6:55:36:35:87:b7:9f:ab:94:7f:a1:b1:65:
a0:24:71:26:d9:0c:1c:99:22:62:6c:61:11:01:83:1c:93:1b:
28:fd:0a:40:53:34:80:c1:1a:64:32:6f:94:70:64:50:45:31:
70:4f:46:03:e7:2c:ef:b8:28:4b:5b:81:84:d7:1a:89:08:04:
d3:e1:58:95:cc:eb:e0:02:57:ea:f9:8e:db:69:37:30:ce:04:
fb:8d:b4:53:27:3f:1e:69:a2:48:b4:47:16:a1:91:b0:bb:00:
7e:3a:b6:9b:04:ce:18:3f:58:bc:c0:8d:8d:d6:e8:1a:08:f1:
e5:a8:ed:09:0f:fc:a0:09:07:a1:23:d4:01:0b:9f:3b:6e:f0:
35:b7:c8:17:ef:25:54:f0:d3:80:f3:3d:cf:ee:8c:bf:5f:06:
41:59:f0:f4:e7:ee:00:f1:94:a9:06:9c:20:e0:89:34:2c:8c:
d4:cb:e1:82:68:2c:4a:86:10:ac:bf:09:19:e8:8a:10:9d:14:
69:b3:17:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:41:40 2026 by rpki-client