Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B8D676060BB11F1BCD019A7CE1D38B0.roa
File: 9B8D676060BB11F1BCD019A7CE1D38B0.roa (raw, json)
Hash identifier: 8jPX5jT0n0nbRZY25+Yvrdm+PrSd1pW4wxu5LzwO5uw=
Subject key identifier: 41:9D:4E:95:E2:E1:A0:43:0B:A3:8D:07:BF:ED:9B:F7:7F:B8:D9:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B8D676060BB11F1BCD019A7CE1D38B0.roa
Signing time: Fri 05 Jun 2026 08:50:31 +0000
ROA not before: Fri 05 Jun 2026 08:50:27 +0000
ROA not after: Wed 30 Jun 2027 08:50:27 +0000
asID: 38638
IP address blocks: 154.83.20.0/23 maxlen: 24
154.91.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119223 (0x1d1b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 5 08:50:27 2026 GMT
Not After : Jun 30 08:50:27 2027 GMT
Subject: CN=6a228dd7-6b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7f:fe:92:a9:22:91:cb:25:35:f5:1f:16:df:
02:34:8c:eb:6b:af:ef:c3:b8:ac:99:60:ed:de:a7:
4d:c5:5e:15:94:ad:76:04:b7:95:b1:cf:95:ba:29:
9e:ba:0b:46:10:3e:d4:95:b7:6f:ce:ac:79:2b:1a:
9d:7d:1e:fd:f5:8d:3b:5f:55:8b:d6:60:17:93:d8:
85:19:21:0c:f8:73:ed:4f:18:cb:dd:eb:22:78:e3:
99:12:e8:2b:a3:6d:f0:4a:fc:8b:ca:b1:7d:4e:12:
33:eb:be:d6:b5:62:13:63:85:3a:2b:ab:41:0a:d5:
dd:66:64:ad:53:4f:39:55:c3:18:7c:80:07:5a:e3:
95:33:7e:fb:9e:93:4c:5b:ec:ad:c6:df:02:c5:e5:
fd:e5:bb:ad:be:b9:db:b7:55:7b:29:30:3b:f2:24:
c7:ed:7d:40:de:45:b7:60:fd:ce:8a:10:dd:62:6b:
1e:04:d9:72:2a:24:36:dd:89:84:46:16:84:ba:1d:
e9:b7:cf:0b:b9:8e:49:7c:a8:a8:bc:8f:ff:8a:e1:
2f:53:46:98:88:8c:c2:ff:5c:a6:be:36:45:d2:6f:
ca:79:3b:d8:9d:49:7c:8e:c9:36:fc:3f:46:e1:64:
cf:a8:f0:73:46:4e:6a:82:52:f7:7d:dc:88:70:33:
73:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:9D:4E:95:E2:E1:A0:43:0B:A3:8D:07:BF:ED:9B:F7:7F:B8:D9:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B8D676060BB11F1BCD019A7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.20.0/23
154.91.169.0/24
Signature Algorithm: sha256WithRSAEncryption
08:cb:43:e4:0c:97:a5:c1:3d:40:15:8a:5c:fb:4a:1c:83:22:
c2:cc:d2:a7:e5:80:2b:18:e0:cb:4f:22:0c:15:bd:5d:58:70:
81:73:16:c8:67:37:e8:9b:80:20:6c:31:0a:03:b0:88:82:46:
ec:96:97:5c:76:23:cc:8d:d7:44:b5:52:0b:33:ab:96:1e:dd:
3a:ec:cc:66:fd:bc:1f:cd:3d:ff:8a:38:6f:8e:8d:93:c7:34:
c8:49:cc:02:6b:f6:12:07:a1:a2:68:52:a1:3b:88:52:c8:f2:
d7:5d:8b:a9:15:22:3e:d2:78:bf:cc:75:de:b7:de:e2:eb:cf:
1f:21:dd:28:41:2a:69:fa:e6:2c:12:ea:db:08:8e:18:73:07:
c8:80:67:c8:70:17:d3:42:51:6d:e3:cc:1d:9a:1d:99:56:46:
aa:d1:f0:3b:f4:96:2e:91:1d:bd:73:4c:4b:cd:da:86:ed:25:
d9:82:78:73:e2:c8:30:51:46:db:b1:78:b3:f0:d9:eb:a4:9e:
c8:65:ea:7b:24:49:0a:e3:80:20:69:e4:93:0a:14:2d:14:97:
14:75:51:7f:e3:85:cb:46:5a:b9:78:4f:9b:27:bb:ad:8e:5c:
ca:b1:0a:73:dd:d9:64:b1:cc:c0:b9:0a:aa:be:e3:db:48:d8:
6f:4e:93:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:46 2026 by rpki-client