Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E435B645FFF11F192CAFBA8CE1D38B0.roa
File: 1E435B645FFF11F192CAFBA8CE1D38B0.roa (raw, json)
Hash identifier: iIbJqtRJ8pTz9p3Q6Z9AJaFO6yeHJzjpV16a8QkaMLA=
Subject key identifier: C7:57:D1:56:BA:F5:D4:59:D5:00:34:4D:37:2E:33:D0:A3:F5:02:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E435B645FFF11F192CAFBA8CE1D38B0.roa
Signing time: Thu 04 Jun 2026 10:21:16 +0000
ROA not before: Thu 04 Jun 2026 10:21:10 +0000
ROA not after: Fri 10 Jul 2026 10:21:10 +0000
asID: 138915
IP address blocks: 154.95.83.0/24 maxlen: 24
154.95.84.0/24 maxlen: 24
154.95.85.0/24 maxlen: 24
154.95.86.0/23 maxlen: 24
154.95.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119202 (0x1d1a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 10:21:10 2026 GMT
Not After : Jul 10 10:21:10 2026 GMT
Subject: CN=6a21519c-6def
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:88:2c:a8:9a:51:ea:80:b0:52:42:ca:96:81:
3d:f6:23:7f:46:c5:0c:94:e3:70:ff:06:48:ef:76:
c7:4a:a9:00:dc:28:6f:73:98:bd:f1:cc:e9:1e:00:
8a:e1:87:27:ac:5f:85:94:e5:53:12:97:d9:14:a7:
d6:60:78:56:c2:c6:e2:49:66:bd:2d:22:aa:76:70:
52:dd:bb:f9:e7:5a:59:71:99:1e:30:a4:58:26:e4:
52:49:ed:7c:d6:7a:50:1a:45:38:b0:a5:0f:a0:26:
10:78:eb:17:21:be:94:7d:50:33:97:ce:f8:bb:a0:
48:30:9f:e8:fd:d9:19:ac:36:eb:36:1d:6b:c4:77:
28:e8:e3:5f:ac:be:37:7e:27:b8:0e:c4:2b:87:5e:
50:61:d1:05:21:0d:23:d1:d2:f8:ba:9c:83:0c:ed:
31:05:f5:fc:fb:1d:24:26:0e:d2:a9:d3:93:fe:37:
59:63:1e:c9:de:27:75:cd:7a:0d:42:83:d3:ea:2b:
d7:b5:37:d8:84:2a:6e:7d:7e:ba:67:ca:81:aa:03:
c4:cb:86:38:89:08:85:76:3e:29:8f:18:c1:28:7f:
ac:84:c5:90:39:7e:b6:b8:2f:e2:b2:23:5e:c1:47:
6c:65:29:e4:5a:f2:0d:48:7c:0a:5f:9a:6b:2c:ba:
39:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:57:D1:56:BA:F5:D4:59:D5:00:34:4D:37:2E:33:D0:A3:F5:02:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E435B645FFF11F192CAFBA8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.83.0-154.95.88.255
Signature Algorithm: sha256WithRSAEncryption
c6:23:f2:69:36:57:c2:21:cc:a1:0a:01:ae:1c:c6:55:7a:b1:
f8:b9:52:75:d5:fb:15:b1:71:4e:10:28:a1:e3:04:23:67:15:
6b:23:ab:55:01:ce:e7:18:22:8b:b1:89:f1:29:eb:49:ba:cd:
5a:0e:81:a4:8c:b0:58:e7:8d:94:20:56:6b:a6:7c:72:41:e1:
48:ba:98:98:1a:d3:90:bd:ab:f9:75:13:ec:ce:95:26:82:03:
7e:79:d8:22:36:0c:ba:9d:3b:fd:e6:48:50:71:66:8b:44:7c:
a8:c6:f2:28:13:2e:64:52:27:1c:a2:9c:65:72:52:e8:6c:37:
d3:c3:12:c9:34:a1:20:1c:8a:08:10:8e:79:42:54:86:be:ee:
1a:fa:b5:5d:1a:87:76:99:72:45:94:30:b1:40:3d:a8:07:21:
11:da:26:33:d9:b4:df:a6:bb:94:9d:0e:fa:99:c3:a1:48:2e:
c2:68:42:8e:93:95:8f:9a:dc:c4:9b:10:e1:fa:97:8b:6d:d0:
00:fd:5f:f7:1e:03:72:99:02:17:1a:92:b9:a9:bc:b7:3b:37:
80:e0:01:9e:7a:12:d4:77:59:77:77:5e:98:a6:cb:16:85:1d:
b0:16:7d:dd:fb:f9:09:12:e0:f6:c6:99:f8:8f:ba:14:67:25:
67:e5:cc:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:02 2026 by rpki-client