Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69627A6856C611F188695214CF1D38B0.roa
File: 69627A6856C611F188695214CF1D38B0.roa (raw, json)
Hash identifier: RxpfpsBHufJibMQvg1zxuEhdnOQgYaVbYrOjfyEpqfo=
Subject key identifier: 03:42:A4:E5:B5:D5:F4:77:55:8D:6B:29:72:58:15:85:E4:76:3B:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE82
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69627A6856C611F188695214CF1D38B0.roa
Signing time: Sat 23 May 2026 16:42:40 +0000
ROA not before: Sat 23 May 2026 16:42:35 +0000
ROA not after: Fri 26 Jun 2026 16:42:35 +0000
asID: 136907
IP address blocks: 154.93.100.0/23 maxlen: 24
154.93.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118402 (0x1ce82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 16:42:35 2026 GMT
Not After : Jun 26 16:42:35 2026 GMT
Subject: CN=6a11d900-ad30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2c:76:d9:be:4a:7f:cc:b1:f1:3f:e6:d8:ba:
96:a6:db:69:ac:fb:d6:46:40:38:78:a6:f7:72:ae:
36:27:66:41:71:af:87:35:d5:18:b2:ae:49:7a:28:
78:b4:42:05:7f:d4:81:ea:d1:9e:35:d6:56:d1:a9:
7d:82:c3:16:e2:14:e8:2c:fb:77:96:b8:95:00:67:
f7:63:0d:be:22:94:ad:15:89:4d:34:74:ba:b2:73:
6f:6a:ae:1f:b8:30:15:e9:b0:44:f9:83:32:06:e4:
ba:94:fc:36:87:bc:d5:1b:ad:db:27:2e:49:f9:56:
29:d4:d7:06:a9:e6:53:c7:4d:ec:f8:16:ac:8c:1d:
09:17:e8:d0:91:de:f2:a9:15:a2:01:f5:8b:70:77:
6a:a5:99:8d:a0:98:24:bd:77:74:cf:e8:b4:35:7e:
67:dd:d8:94:d7:a9:7a:49:fa:c8:1d:2e:b6:48:55:
80:b5:17:d4:56:f7:6c:a6:67:4a:7e:e4:ba:cb:65:
ef:49:d4:a1:2c:27:1d:4a:95:e5:a5:6e:03:d5:60:
38:9d:03:9b:40:3b:bc:96:05:81:c2:8c:c3:fc:35:
f3:a0:2a:8f:58:e4:ed:f0:3c:13:35:76:91:01:ae:
fd:4c:87:50:4f:7a:d8:b3:c8:6c:d0:a0:05:e9:31:
b2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:42:A4:E5:B5:D5:F4:77:55:8D:6B:29:72:58:15:85:E4:76:3B:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69627A6856C611F188695214CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.100.0/23
154.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
68:b2:bd:1f:1f:85:4f:7d:13:38:50:9b:9d:ce:da:ce:6f:05:
f2:34:5e:8f:d2:49:5f:e8:4c:d6:ea:69:57:83:74:8a:aa:e7:
d0:e7:5e:79:88:3a:ac:e0:4f:ae:9d:98:84:de:67:42:ee:bd:
23:2f:2c:0a:f7:40:72:36:b6:45:fd:b5:a4:fc:05:d4:86:7e:
1e:db:83:d4:f2:ce:c0:64:78:ba:f6:2d:0a:16:ab:f1:11:90:
1c:93:b6:82:42:27:6f:9a:42:2a:3a:18:8f:db:69:74:36:50:
db:db:c2:4b:ba:95:3f:d3:f2:d1:2d:9d:c0:e4:82:42:19:89:
61:0e:58:7f:cc:ee:b0:4b:ef:77:e5:b0:18:37:e5:ec:89:f2:
6e:74:53:87:fe:cb:79:3d:58:95:2e:ac:f7:89:d3:68:16:68:
b0:c9:66:48:11:5f:6c:08:33:14:ac:2b:98:53:7b:e0:f4:d5:
b4:80:84:0f:67:9f:c3:99:8b:26:a3:1b:b7:7d:2f:fc:04:9c:
5a:df:8c:4e:d1:c4:19:11:34:f7:f1:cc:47:26:40:72:44:51:
2a:13:04:9f:c9:8c:aa:cb:95:b5:5f:f3:bc:6b:0b:7d:0e:af:
45:e3:b7:7e:a7:84:fc:73:83:9f:6f:75:49:32:44:b7:d0:30:
5e:39:24:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:26 2026 by rpki-client