Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3C984F8634111F1B124DFF8CE1D38B0.roa
File: A3C984F8634111F1B124DFF8CE1D38B0.roa (raw, json)
Hash identifier: Vo469+cIXSsrHMxE2m1ofDdElMRGFCP0oQ1u9P6AJ+M=
Subject key identifier: 2D:77:CC:AB:E2:6C:F5:FE:F8:2A:B5:E3:B4:1D:42:99:42:8D:2A:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D244
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3C984F8634111F1B124DFF8CE1D38B0.roa
Signing time: Mon 08 Jun 2026 13:55:00 +0000
ROA not before: Mon 08 Jun 2026 13:54:55 +0000
ROA not after: Thu 08 Jul 2027 13:54:55 +0000
asID: 328888
IP address blocks: 154.81.64.0/24 maxlen: 24
154.81.65.0/24 maxlen: 24
154.81.66.0/24 maxlen: 24
154.81.67.0/24 maxlen: 24
154.81.68.0/24 maxlen: 24
154.81.69.0/24 maxlen: 24
154.81.70.0/24 maxlen: 24
154.85.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119364 (0x1d244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 8 13:54:55 2026 GMT
Not After : Jul 8 13:54:55 2027 GMT
Subject: CN=6a26c9b4-cf2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:2b:66:bf:ec:09:94:2b:60:2f:65:a3:2b:
88:ff:a5:58:47:b6:13:5e:a6:cd:a0:b6:f5:72:51:
80:d5:04:b4:fd:7e:eb:8a:71:ed:45:4c:2f:5e:8f:
f8:da:6a:e4:45:38:23:95:c5:a2:7a:70:73:e9:00:
21:99:63:40:91:18:ca:51:51:3c:4a:19:e5:25:97:
15:ce:5b:00:6f:8c:58:4f:a3:30:16:8d:67:b1:37:
20:db:ea:6f:4d:da:49:90:a7:4c:12:09:69:82:03:
1e:2d:ea:e4:30:70:d6:23:f9:af:d5:11:09:fb:d8:
c1:11:a0:f5:97:c8:04:b5:35:31:f8:d0:9e:d3:35:
b6:11:f5:9d:60:7e:e6:94:fb:07:0b:db:a7:9c:71:
c4:f9:d1:84:75:5b:3e:72:e7:24:4f:9f:51:fb:16:
2c:0b:9b:2b:d1:09:bd:c4:4a:88:cd:38:db:63:b5:
b4:96:a5:50:f7:8b:9a:da:32:0d:ea:db:5d:a4:9e:
cf:3c:6d:23:a2:48:cd:7d:35:83:f3:d8:bf:83:8d:
0a:78:0f:ef:9b:6f:09:cc:1d:59:bc:51:a5:be:8a:
5c:bd:5d:72:6c:de:0c:0e:e7:04:f8:a6:e8:27:00:
df:bf:ff:02:b3:c5:e3:9e:06:99:ef:3e:96:60:d9:
ef:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:77:CC:AB:E2:6C:F5:FE:F8:2A:B5:E3:B4:1D:42:99:42:8D:2A:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3C984F8634111F1B124DFF8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.64.0-154.81.70.255
154.85.123.0/24
Signature Algorithm: sha256WithRSAEncryption
02:f6:22:88:d2:9e:45:1a:16:3b:3f:9f:a7:ac:0b:8f:8b:40:
64:80:56:69:20:fc:d7:07:d5:68:2f:ad:89:57:b8:f4:a7:a0:
01:df:d6:18:29:38:e4:4d:c1:7e:3a:14:03:6f:8f:76:af:a1:
23:e6:51:cf:b4:18:1c:ac:73:9b:fc:61:c8:76:e9:c1:4e:a4:
ef:2e:f8:16:67:c1:e8:29:d1:d2:69:fb:fe:33:7e:e8:43:1f:
06:d8:2a:68:65:fa:7a:6a:8f:f3:34:10:a7:53:a7:a8:56:8d:
88:3f:5a:48:9f:a8:32:b1:20:f6:e7:54:82:57:9e:6f:06:d4:
1d:71:11:d6:2e:84:72:62:a5:4f:49:d1:d5:14:84:c0:4a:bf:
fe:a9:8f:61:0e:58:8e:d8:b6:3f:36:bb:88:91:8a:a8:c6:11:
7f:28:9c:15:2c:58:60:ea:38:d3:97:e0:85:62:1f:23:f1:84:
cf:89:71:08:aa:e2:7c:e6:89:df:09:00:9d:b6:21:8a:9e:ff:
16:cc:f1:cd:8f:dd:f8:17:d0:6e:20:27:ed:87:be:44:39:e3:
ce:25:7a:48:60:52:d5:f6:5f:6b:e4:8e:26:a8:76:3f:24:35:
c1:eb:c4:39:97:90:de:66:ef:4b:ec:a9:f3:1b:45:78:8c:31:
d8:86:28:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:52:56 2026 by rpki-client