Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C27F4642E7F11F1AC66C0A4DAE4EC9C.roa
File: 0C27F4642E7F11F1AC66C0A4DAE4EC9C.roa (raw, json)
Hash identifier: WAwUWdSKRDojwQnPhLLcdAWBwuMHV6imDCbo6/LBmec=
Subject key identifier: 4B:2E:41:BD:16:EB:A9:70:EE:30:C5:1A:B2:88:80:73:9F:F1:92:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C231
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C27F4642E7F11F1AC66C0A4DAE4EC9C.roa
Signing time: Thu 02 Apr 2026 10:31:03 +0000
ROA not before: Thu 02 Apr 2026 10:30:58 +0000
ROA not after: Wed 06 May 2026 10:30:58 +0000
asID: 202656
IP address blocks: 154.218.25.0/24 maxlen: 24
154.218.26.0/24 maxlen: 24
154.218.31.0/24 maxlen: 24
154.219.217.0/24 maxlen: 24
154.219.218.0/24 maxlen: 24
154.219.219.0/24 maxlen: 24
154.219.220.0/24 maxlen: 24
154.219.221.0/24 maxlen: 24
154.219.223.0/24 maxlen: 24
154.219.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115249 (0x1c231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 10:30:58 2026 GMT
Not After : May 6 10:30:58 2026 GMT
Subject: CN=69ce4567-5fcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7f:1d:7b:cf:01:9d:ec:d3:f2:cd:8c:9b:80:
e6:1c:56:56:61:2f:a5:3b:b2:51:75:05:4a:b3:3e:
63:61:e2:51:58:05:02:28:77:7b:38:df:57:71:81:
10:15:0b:00:ab:7b:3e:65:01:56:38:87:c2:dc:b8:
fe:6e:3e:98:43:21:32:6e:9f:be:05:23:3f:33:c8:
f5:7c:a4:cc:72:47:26:bf:75:38:39:32:cd:8e:9f:
54:11:13:cc:c7:4e:35:da:f6:41:7a:1c:10:d8:e4:
33:8f:b7:9c:0b:70:98:74:af:38:b6:2c:0f:de:ce:
c5:bf:b3:6c:ec:72:8f:ab:90:7e:f4:9d:17:5b:1d:
dd:17:f0:da:e1:9c:74:57:81:97:4d:5c:0b:db:93:
a8:3c:bf:c7:ed:47:54:12:f6:96:29:75:40:b2:47:
a7:00:1d:f0:17:59:6f:6a:cd:f9:89:94:d0:64:28:
c2:ae:39:a7:24:6e:18:cf:13:db:8c:fe:e7:dc:39:
b7:d3:13:03:c6:90:cb:52:f1:ff:7d:a0:8f:b4:f4:
c4:9c:8a:ab:20:37:35:92:38:d2:58:c6:21:3b:38:
5f:29:9c:d3:ae:03:ab:ac:b9:05:20:21:2a:71:01:
52:4a:5b:a8:8b:d0:13:a1:8e:5a:45:63:dc:20:12:
3b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2E:41:BD:16:EB:A9:70:EE:30:C5:1A:B2:88:80:73:9F:F1:92:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C27F4642E7F11F1AC66C0A4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.25.0-154.218.26.255
154.218.31.0/24
154.219.217.0-154.219.221.255
154.219.223.0-154.219.224.255
Signature Algorithm: sha256WithRSAEncryption
68:83:53:b6:90:55:5d:40:cc:4c:99:81:78:38:4e:3e:02:82:
92:54:1b:a4:cb:00:b7:b2:40:39:d3:60:df:0a:1e:de:04:b2:
67:f7:02:cc:e0:a2:82:a0:63:6f:b5:31:f4:a9:77:e4:76:66:
f5:f1:bf:6c:60:71:c0:c9:87:4a:8b:bc:86:85:cc:e7:86:3b:
8d:56:6c:9c:7f:21:8a:7f:29:2b:bd:32:16:3e:09:36:66:9d:
69:6c:6a:44:36:a6:5a:ef:0d:d9:8c:e3:4c:95:e6:d8:26:92:
c7:74:a9:94:8a:47:11:9a:51:f9:9f:82:c3:58:80:52:90:33:
01:cd:86:a9:75:df:34:81:12:32:b1:3b:7d:19:47:e6:b3:cf:
6f:59:da:2a:fa:af:b8:59:73:59:98:e2:b0:7f:ef:34:c3:7a:
7f:00:36:13:21:48:ec:2d:48:08:a7:73:ce:e7:1f:49:35:9f:
d6:ab:c1:a6:6a:3a:a3:82:8c:86:1f:ab:bd:f6:99:c0:01:ef:
32:a9:96:2f:67:24:da:e0:fd:db:30:11:1b:97:6e:6c:13:75:
bd:93:01:69:ec:28:68:de:4b:2d:fc:04:e8:f3:d9:57:3d:96:
db:c2:62:5d:44:40:de:dc:61:22:41:2b:24:2b:ad:c4:a7:21:
18:7f:e6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:20:39 2026 by rpki-client