Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35B4150614C11F1BAA2B70ACF1D38B0.roa
File: B35B4150614C11F1BAA2B70ACF1D38B0.roa (raw, json)
Hash identifier: XlRNdm5aBa4X6m6lEiUHzAiRjLJULsARTtmEZEqaP84=
Subject key identifier: CE:10:C8:3A:A6:B4:03:88:FD:89:5A:80:7E:70:16:39:5C:BD:BF:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1CF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35B4150614C11F1BAA2B70ACF1D38B0.roa
Signing time: Sat 06 Jun 2026 02:09:08 +0000
ROA not before: Sat 06 Jun 2026 02:09:02 +0000
ROA not after: Sun 02 May 2027 02:09:02 +0000
asID: 23764
IP address blocks: 154.83.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119247 (0x1d1cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 02:09:02 2026 GMT
Not After : May 2 02:09:02 2027 GMT
Subject: CN=6a238144-20fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:69:03:7d:0a:fa:e2:73:b1:ef:f5:02:0a:56:
b9:74:88:de:f1:13:d4:2b:4d:45:36:2b:c7:fa:b1:
19:88:b1:a6:bf:b2:24:1e:d4:18:b1:82:76:dd:9e:
15:fd:1a:75:0c:b0:49:29:a6:3a:a4:07:0a:de:fd:
af:c3:bb:cb:62:fe:1d:5a:49:c4:0b:6e:ae:7a:44:
15:ea:09:c7:6f:70:7c:6c:ea:bb:e7:2e:c0:3f:c8:
02:e3:50:b4:30:54:2b:9a:30:76:77:1f:0d:a8:7c:
44:9d:7b:4c:5d:9c:49:39:47:e9:26:ba:39:36:43:
ad:ef:6b:f0:29:d2:a1:95:7d:01:b3:1e:9a:d1:1b:
ba:45:a8:c4:eb:06:3f:58:34:4b:2f:56:ce:10:71:
e6:42:66:b8:3c:20:31:58:12:02:b5:79:5d:12:35:
d8:fe:a8:19:e1:36:c7:87:aa:6c:6a:59:33:c9:72:
6b:b9:b0:52:ec:08:fb:2e:f1:88:c3:e3:f5:35:23:
e6:c2:6c:92:ec:08:2b:03:5f:36:1b:f5:99:95:99:
f2:e3:da:37:09:f9:e9:20:5e:8a:de:bf:bf:4f:52:
a1:55:a1:82:1c:9c:73:87:02:40:4c:b7:08:e2:c2:
38:a0:d0:de:d6:6c:aa:1d:78:68:f5:b3:47:73:3f:
a8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:10:C8:3A:A6:B4:03:88:FD:89:5A:80:7E:70:16:39:5C:BD:BF:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35B4150614C11F1BAA2B70ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.28.0/24
Signature Algorithm: sha256WithRSAEncryption
05:c6:3c:30:b5:06:3e:31:65:97:a7:d6:2b:63:0d:b6:e8:69:
20:b2:4c:a1:60:17:17:01:9e:f1:9b:0e:1e:35:1f:f9:50:a0:
c2:bb:3d:64:c8:05:8a:a1:34:83:7b:64:0f:9a:3f:07:ea:77:
c5:e9:59:41:fd:1b:8a:81:0a:95:9b:26:20:b6:f9:e7:69:e3:
75:4b:0a:96:f1:63:f2:03:1e:ec:d1:3b:29:cf:e5:d0:d5:10:
b3:00:3c:09:e7:cb:f4:df:5d:74:cb:1a:1c:d9:bd:dd:35:66:
06:88:1d:c4:e7:6d:a6:1a:4d:59:64:4c:a3:01:f2:54:46:be:
3f:8a:af:c6:6e:f6:27:07:a5:44:dd:77:9c:db:64:fc:ea:cc:
31:be:99:e3:71:8b:39:9d:80:ff:92:78:36:d6:d7:71:44:87:
77:0b:fd:47:7f:bf:cd:0b:ae:22:b6:bf:87:18:92:77:d8:a7:
fa:da:da:59:ba:f9:ed:a6:e2:da:42:1d:82:e6:e3:7d:12:78:
93:c3:e2:0f:f9:dc:1a:26:60:a4:8c:c2:ef:d2:7d:b4:b2:16:
95:f7:81:fa:13:c3:05:68:ae:f1:2b:cc:32:af:db:56:b8:a6:
53:d6:e0:8a:c6:b6:39:7a:de:09:cc:36:36:1c:1b:83:81:d2:
44:d0:70:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:18:15 2026 by rpki-client