Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/155AA570342111F1AC762AEACE1D38B0.roa
File: 155AA570342111F1AC762AEACE1D38B0.roa (raw, json)
Hash identifier: VZqDDPLkqUlH7CgjF3ZTH73B9KkfYGkGef84BPvFMq0=
Subject key identifier: 12:D8:00:F2:95:70:28:B6:74:48:C6:7D:D4:C4:D7:41:57:B7:B4:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C406
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/155AA570342111F1AC762AEACE1D38B0.roa
Signing time: Thu 09 Apr 2026 14:33:32 +0000
ROA not before: Thu 09 Apr 2026 14:33:28 +0000
ROA not after: Mon 09 Apr 2029 14:33:28 +0000
asID: 17561
IP address blocks: 154.93.212.0/24 maxlen: 24
154.93.213.0/24 maxlen: 24
154.93.214.0/24 maxlen: 24
154.93.215.0/24 maxlen: 24
154.93.216.0/24 maxlen: 24
154.93.217.0/24 maxlen: 24
154.93.218.0/24 maxlen: 24
154.93.219.0/24 maxlen: 24
154.93.220.0/24 maxlen: 24
154.93.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115718 (0x1c406)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 14:33:28 2026 GMT
Not After : Apr 9 14:33:28 2029 GMT
Subject: CN=69d7b8bc-0fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e4:d6:3f:ad:f0:a8:b0:b0:46:28:e1:67:57:
46:0f:1b:a1:cf:fa:50:76:9c:8f:cc:09:b5:56:d9:
ae:e6:fe:25:19:cd:78:c0:4a:9d:6f:7e:14:85:cd:
d2:b6:83:a0:2b:e2:9e:74:69:ed:ea:96:ae:3e:6c:
d5:10:86:e1:01:03:57:3d:ad:51:19:2b:57:87:94:
88:1c:24:33:89:f1:5a:66:b9:fd:7d:c2:91:2e:5f:
6d:4c:1a:5f:62:d7:f6:ec:58:29:98:55:10:eb:45:
35:b4:75:76:86:ae:71:76:a3:7b:cf:3a:db:c4:50:
91:e1:f6:a3:91:8d:0d:fa:23:90:de:23:0c:2b:75:
09:7d:1b:0c:79:25:4e:69:58:57:1b:c7:39:3e:9f:
fe:c7:97:ff:8e:3c:03:5e:ea:c3:80:c1:cc:4d:c0:
40:36:ad:f0:db:f6:11:c3:84:dd:72:30:e8:f2:68:
73:22:40:2d:5f:03:29:01:0c:c4:7c:c3:6c:92:52:
59:a9:b8:50:7a:a5:61:b7:f5:ea:12:2d:5f:68:35:
0d:b4:31:64:1b:4e:02:1f:00:83:ec:da:01:52:47:
c4:10:ce:35:a0:a2:3e:72:c7:08:06:a6:70:f6:3a:
d1:9b:7f:a9:07:60:e8:27:e9:79:67:59:9c:66:38:
bb:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D8:00:F2:95:70:28:B6:74:48:C6:7D:D4:C4:D7:41:57:B7:B4:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/155AA570342111F1AC762AEACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.212.0-154.93.221.255
Signature Algorithm: sha256WithRSAEncryption
c2:ff:82:26:7b:aa:c6:45:ac:46:52:f7:7d:68:f9:eb:88:43:
dd:9a:87:ff:d0:7b:26:32:12:4d:95:bf:0e:fa:1d:c9:05:b1:
eb:96:25:a3:eb:ae:72:12:9c:b5:6f:8d:f8:34:03:59:e5:ec:
fa:6c:bd:32:13:3b:1a:4b:80:be:1d:99:25:01:8f:9d:e9:3f:
49:49:d6:5a:e4:8d:6a:6d:f5:aa:98:bf:d7:ca:d4:a4:8d:95:
8d:2d:d9:9d:fc:41:ae:ac:60:af:34:db:e9:08:4c:43:32:8a:
45:f9:3a:1f:68:7e:58:ee:be:a0:60:e0:64:6c:ce:ed:ad:c9:
ec:17:97:48:ae:ee:05:a3:51:f8:68:44:3d:0b:a8:85:10:2a:
ca:59:ef:88:3d:37:68:69:33:48:ca:29:f7:d2:be:48:cd:54:
6d:72:45:27:e7:7c:53:52:22:14:8e:91:cd:d5:bd:53:5d:d1:
33:23:8c:7b:0a:13:2b:29:03:52:31:d5:bb:4f:6a:95:cd:98:
02:4f:c3:f2:60:20:60:45:e1:05:57:e9:99:5f:eb:88:93:25:
f4:37:69:9c:7f:c6:a5:71:1a:70:9b:38:a4:ac:40:80:0c:62:
a6:ee:96:fc:7e:55:fa:66:f2:b6:a3:39:4e:0c:ef:58:05:8d:
d9:69:87:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:11:36 2026 by rpki-client