Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7BC36465EB211F1B58D14B9CE1D38B0.roa
File: C7BC36465EB211F1B58D14B9CE1D38B0.roa (raw, json)
Hash identifier: oNakOGPWjwVLnpphwnWkx3uSyAsifOWeFbuTSB+sjSQ=
Subject key identifier: 79:8A:EA:1F:D0:5B:34:C1:FE:38:E7:A7:3B:28:16:BE:49:4B:D5:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D154
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7BC36465EB211F1B58D14B9CE1D38B0.roa
Signing time: Tue 02 Jun 2026 18:42:18 +0000
ROA not before: Tue 02 Jun 2026 18:42:13 +0000
ROA not after: Sun 12 Jul 2026 18:42:13 +0000
asID: 212042
IP address blocks: 154.83.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119124 (0x1d154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 2 18:42:13 2026 GMT
Not After : Jul 12 18:42:13 2026 GMT
Subject: CN=6a1f2409-5947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:99:60:85:51:93:ce:5c:02:e9:3d:25:91:c9:
f2:cc:26:d6:b1:04:47:0d:74:ce:a9:54:6a:bf:bb:
97:ee:05:87:7a:67:a2:47:89:40:66:37:b5:41:0b:
45:24:86:e4:53:e3:f0:50:0e:74:fd:31:35:cd:eb:
90:a7:b7:73:58:3e:f4:cd:c1:26:03:3b:37:80:c2:
32:17:7c:da:89:5c:74:79:ba:b9:f3:40:c8:c3:f1:
86:98:49:a1:0f:10:79:e1:6c:07:fb:b8:9f:3d:36:
3c:fb:6f:01:b9:7b:74:a4:8f:d6:0b:e8:5c:e3:8a:
f6:94:f3:28:0f:91:3e:c9:95:ad:97:4c:7f:08:86:
54:56:60:12:6c:8d:79:a8:ae:9c:25:37:f9:b1:8f:
ec:13:32:63:10:03:88:08:41:e4:20:eb:74:0b:ed:
cb:1a:7c:b4:90:8c:7f:23:a1:8c:75:8f:00:ff:c0:
23:5e:36:7f:b2:54:b7:73:bd:ac:ee:85:ae:4c:6e:
24:52:b0:06:1c:eb:c8:0c:bc:36:e3:08:2c:7a:04:
56:4e:a7:1b:09:c3:37:b4:02:e0:b7:ee:fb:e4:e3:
7f:d3:7f:25:3a:e3:95:fa:f9:72:66:8c:81:47:d1:
e7:4a:4d:15:f2:67:64:66:d2:a8:86:0a:2e:b9:b8:
18:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:8A:EA:1F:D0:5B:34:C1:FE:38:E7:A7:3B:28:16:BE:49:4B:D5:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7BC36465EB211F1B58D14B9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.136.0/24
Signature Algorithm: sha256WithRSAEncryption
80:8a:b5:b1:25:c2:57:81:a4:62:46:32:93:b9:d8:23:81:bf:
21:fa:e7:07:af:b9:ee:87:09:f9:70:9d:55:21:3c:4d:a4:c5:
27:38:1b:36:db:7a:9e:e4:95:16:c4:f7:b9:95:b2:c4:83:0a:
51:89:09:9c:1d:c0:74:ff:2e:dd:2f:e0:80:fe:5f:a9:0e:72:
6f:2e:1d:4c:52:5a:8c:45:aa:2a:10:da:1d:94:c9:1e:ed:ee:
47:6d:ad:10:aa:19:65:4a:89:18:6e:1c:58:7b:f0:60:65:7b:
89:de:57:19:c4:78:54:27:1d:de:68:bc:33:6a:2d:e2:ee:19:
b9:56:8a:ff:56:ca:cd:17:f2:eb:d9:31:c8:15:bb:45:58:72:
3c:0f:e5:ff:aa:47:ff:bb:a5:0a:a4:d3:0b:21:f7:d4:a9:90:
af:20:ca:11:d6:85:68:18:5a:1f:e8:ec:45:69:64:0b:ad:94:
b1:5b:39:17:a9:4d:e7:7d:10:ec:03:b0:ac:93:84:30:fb:fe:
94:4b:11:d1:7c:dc:50:52:a1:bb:ef:12:7e:61:28:05:ef:7c:
bf:0b:be:51:29:d2:04:20:c8:ac:3d:91:3d:75:ea:0d:78:db:
4d:d4:4a:51:34:5f:64:6f:95:b9:63:7b:f4:f3:5f:f3:19:72:
f0:7b:df:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:06:50 2026 by rpki-client