Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C139730370711F1A9832907CF1D38B0.roa
File: 1C139730370711F1A9832907CF1D38B0.roa (raw, json)
Hash identifier: zv4zgBzgTzuWsNdRbrivNGt/k/da0hI+VoijjMWTCME=
Subject key identifier: 90:64:36:70:13:8A:B0:64:54:89:5B:F4:B7:7B:06:3C:8F:D4:4B:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C139730370711F1A9832907CF1D38B0.roa
Signing time: Mon 13 Apr 2026 07:05:10 +0000
ROA not before: Mon 13 Apr 2026 07:05:04 +0000
ROA not after: Mon 20 Apr 2026 07:05:04 +0000
asID: 141159
IP address blocks: 154.94.228.0/22 maxlen: 24
154.94.228.0/24 maxlen: 24
154.94.229.0/24 maxlen: 24
154.94.230.0/24 maxlen: 24
154.94.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115941 (0x1c4e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 07:05:04 2026 GMT
Not After : Apr 20 07:05:04 2026 GMT
Subject: CN=69dc95a6-bc69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fb:ea:d9:a3:11:ca:aa:c4:3d:0d:65:bd:b1:
1d:08:7b:09:92:9f:cb:ef:bb:51:fe:f3:c3:fe:34:
81:ac:f6:c9:3f:c2:21:1e:2d:47:7e:bf:e0:bf:77:
7a:e2:96:71:5b:0a:09:0d:97:6c:73:2d:63:ff:e4:
50:0f:a1:53:f5:df:25:7c:4f:9c:56:3e:90:b2:bc:
04:6c:6b:ad:95:75:b7:48:aa:87:59:80:08:a4:cd:
52:38:24:de:bd:a7:58:d5:ad:66:e7:9c:25:db:37:
9c:e4:49:6b:db:7a:d9:13:23:e1:41:c4:dd:b9:cd:
7e:63:75:02:0f:58:11:4a:44:54:25:ab:f7:ec:18:
cd:90:ae:76:0d:42:f2:58:a7:04:99:04:11:23:a1:
26:33:e2:15:b4:48:4a:6e:ea:95:e6:5b:6c:a0:d4:
2f:2f:0c:a5:14:ee:21:b4:46:20:2f:97:c5:d1:66:
65:98:3b:94:ed:f1:9a:64:0d:11:b7:1a:62:8a:b2:
83:6f:2a:d5:4a:90:a4:81:55:46:ef:20:8a:18:19:
3f:bc:73:a2:da:b0:bf:4a:72:74:20:cb:c0:a5:38:
91:94:da:94:87:77:db:29:62:b9:11:af:1a:c8:94:
a5:d6:3d:6c:ed:8f:8c:a6:8c:ea:60:b5:7c:ef:bc:
bc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:64:36:70:13:8A:B0:64:54:89:5B:F4:B7:7B:06:3C:8F:D4:4B:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C139730370711F1A9832907CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.228.0/22
Signature Algorithm: sha256WithRSAEncryption
65:83:7d:74:34:d7:8a:32:6d:96:87:12:ee:09:7f:6b:ab:58:
47:1b:0f:c3:1d:c3:c9:dd:73:50:f8:2a:70:95:bf:58:08:e6:
05:fe:4e:c5:24:e5:12:11:71:11:ab:83:60:cd:20:14:15:d6:
09:cb:e5:f7:b4:ba:f7:20:df:79:09:ce:dc:2b:55:f7:27:53:
7e:52:08:d2:1a:2e:ca:63:6a:b8:28:d5:63:71:45:76:38:06:
34:72:90:f8:25:9e:ad:e4:b3:69:59:23:02:7b:2d:fe:f9:45:
d3:21:d1:e1:ac:98:ed:9d:46:21:48:66:47:84:1d:34:45:7c:
cb:e6:e0:47:d6:29:91:fd:06:af:e2:e3:b7:ec:51:ca:e7:4b:
be:5a:db:6b:d9:50:53:d1:b7:13:45:e3:34:5b:9e:c7:c2:27:
74:2e:e0:9c:ec:58:34:28:06:9d:35:9d:5e:be:0a:57:c2:20:
97:ec:4b:58:29:bb:8a:54:9f:43:33:36:1c:f8:e9:84:b8:6f:
80:59:5b:e3:5b:5f:7b:81:d7:6e:0b:d5:e8:c2:29:32:3f:97:
37:e1:dc:f9:bf:62:79:92:1c:07:38:36:17:43:18:66:d2:37:
ce:e2:7b:27:98:dd:7c:68:a9:84:70:3c:63:2d:7c:06:e8:cd:
5b:21:21:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 02:42:21 2026 by rpki-client