Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21F3E2E860DF11F189845EFACE1D38B0.roa
File: 21F3E2E860DF11F189845EFACE1D38B0.roa (raw, json)
Hash identifier: GUt8OhEavTWMgl6htwjUDXJ41GqoK7gZSZslGFj+U7g=
Subject key identifier: DE:9E:A1:43:1F:00:DA:94:DE:56:25:CF:06:82:43:38:4F:8B:5F:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1CB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21F3E2E860DF11F189845EFACE1D38B0.roa
Signing time: Fri 05 Jun 2026 13:04:49 +0000
ROA not before: Fri 05 Jun 2026 13:04:44 +0000
ROA not after: Tue 05 Jun 2029 13:04:44 +0000
asID: 17561
IP address blocks: 154.195.192.0/24 maxlen: 24
154.195.193.0/24 maxlen: 24
154.195.194.0/24 maxlen: 24
154.195.195.0/24 maxlen: 24
154.195.196.0/24 maxlen: 24
154.195.197.0/24 maxlen: 24
154.195.198.0/24 maxlen: 24
154.195.199.0/24 maxlen: 24
154.195.200.0/24 maxlen: 24
154.195.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119243 (0x1d1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 5 13:04:44 2026 GMT
Not After : Jun 5 13:04:44 2029 GMT
Subject: CN=6a22c971-51f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c4:1c:ce:8f:8f:e0:20:59:21:dd:c6:8c:15:
c0:3b:32:bb:b7:85:8f:49:9c:af:7a:13:6c:f5:85:
4b:a2:4a:f5:61:a3:b2:dc:cd:9b:b9:52:23:68:3e:
6c:dc:a1:e6:3a:a3:9a:55:8b:a8:24:c6:6a:dd:b4:
2b:e7:0f:9b:1e:2f:d7:7a:05:d2:c0:e3:89:c5:93:
98:f8:b9:13:6a:34:63:f3:a5:37:c9:58:12:f7:d7:
4c:4f:f3:30:56:ca:4f:3c:bc:44:9f:27:2b:96:b7:
fa:cc:4b:30:98:c9:5b:53:c7:76:f1:2f:f1:4b:d6:
c0:14:b8:db:38:74:ab:8d:0f:6c:88:5f:1d:11:d4:
d5:ac:4b:87:ca:0f:ba:7a:05:1d:28:d9:2e:e9:ad:
e3:d1:b0:c6:14:b1:24:03:1b:c0:20:ea:ce:a2:f7:
62:3c:99:73:f9:82:f8:91:36:71:e1:a1:47:47:f2:
ab:9f:15:fd:34:c6:c5:86:fc:de:e2:48:f6:0b:6b:
92:1f:ba:89:2b:db:7d:d0:e1:16:d9:d3:ed:a3:95:
ba:4d:6f:0d:29:17:02:47:91:f6:4e:0d:24:9d:a7:
32:4e:77:07:32:c3:5b:da:ca:4d:fa:d4:04:38:0e:
09:b2:64:d5:b4:9c:99:83:3e:1a:b2:f0:a1:3f:a3:
be:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:9E:A1:43:1F:00:DA:94:DE:56:25:CF:06:82:43:38:4F:8B:5F:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21F3E2E860DF11F189845EFACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.192.0-154.195.201.255
Signature Algorithm: sha256WithRSAEncryption
63:4b:06:ed:9d:08:f9:8a:db:42:b1:2f:e7:fa:5e:25:aa:50:
60:d8:dd:c6:07:20:1a:fc:32:d5:cf:ab:c6:23:5c:56:8f:d0:
de:83:a0:cc:2d:97:ca:2e:9e:68:27:4f:73:f7:39:72:83:92:
15:49:04:58:13:9a:d0:a7:b9:1c:18:40:80:e7:89:69:2a:7f:
98:d9:54:17:96:b8:29:a7:ad:24:5a:40:d3:33:9d:7b:0d:4b:
b3:fd:e1:c1:1d:c5:29:2b:41:93:22:1c:29:e8:be:8d:4b:d5:
f9:fb:37:88:f1:46:ac:1a:82:e2:a0:a8:e2:a2:53:af:10:c2:
48:f2:e5:83:73:d3:8e:35:62:dd:b3:27:46:38:e3:6c:da:44:
62:c0:e4:63:38:af:0d:4b:69:f5:30:86:8a:58:b9:22:88:ef:
7a:db:79:15:10:18:00:95:39:7b:ad:36:9a:5c:e3:3e:83:f9:
14:69:6c:7a:50:d9:81:cd:0e:d5:44:d9:99:88:50:a6:7d:8e:
f0:ac:89:d4:2e:a2:9c:e4:c8:7b:b5:ee:8d:63:76:d5:32:bc:
93:44:7b:77:cd:d7:22:e0:62:df:be:e4:da:c3:f0:1b:08:fb:
db:f3:56:da:2a:ea:ec:f8:23:29:d5:54:37:b2:8b:58:01:0c:
be:36:de:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:52 2026 by rpki-client