Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/268B10685BC811F19CDF30FCCE1D38B0.roa
File: 268B10685BC811F19CDF30FCCE1D38B0.roa (raw, json)
Hash identifier: NWgwpFUlNt00N5CmxifWbX85EOf543vKDORH04KTyIM=
Subject key identifier: 29:AD:25:E0:0B:8D:C1:18:2A:F6:31:7E:25:20:65:6B:B5:50:B0:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D0C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/268B10685BC811F19CDF30FCCE1D38B0.roa
Signing time: Sat 30 May 2026 01:37:43 +0000
ROA not before: Sat 30 May 2026 01:37:38 +0000
ROA not after: Wed 01 Jul 2026 01:37:38 +0000
asID: 62240
IP address blocks: 154.194.4.0/24 maxlen: 24
154.194.81.0/24 maxlen: 24
154.195.102.0/24 maxlen: 24
154.195.103.0/24 maxlen: 24
154.195.104.0/24 maxlen: 24
154.195.105.0/24 maxlen: 24
154.195.106.0/24 maxlen: 24
154.195.109.0/24 maxlen: 24
154.195.110.0/24 maxlen: 24
154.195.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118984 (0x1d0c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 01:37:38 2026 GMT
Not After : Jul 1 01:37:38 2026 GMT
Subject: CN=6a1a3f67-638d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:f7:1a:b7:91:9b:90:e3:ff:4c:74:dd:62:
59:75:44:26:95:e7:8d:06:9c:79:9b:61:65:24:3a:
94:0c:80:5f:07:94:08:d1:5f:46:2d:a0:b4:1a:06:
70:cd:47:e4:0e:d4:21:a4:76:de:e9:9b:b7:40:b3:
09:db:20:ea:44:fa:8d:6b:d6:ce:0f:ca:ee:86:1c:
1b:a8:6f:e1:d2:19:7c:2a:4a:21:ad:05:1c:b3:62:
88:55:66:0f:f4:e8:9b:c0:53:36:1c:59:a6:11:9d:
49:ed:cf:cd:8e:19:9f:47:bc:be:32:dc:72:d3:99:
b1:7c:92:eb:65:98:53:ae:20:61:86:3f:21:fb:1f:
79:6e:c4:1a:f8:47:83:a4:ba:1b:40:de:4d:6f:fb:
8e:ed:cf:f8:da:4a:fe:43:aa:73:fe:b4:e9:87:28:
ea:a3:c2:fd:fc:e0:fd:00:55:3e:65:4d:63:d5:30:
79:91:4a:e5:12:3c:11:ef:0a:58:7a:38:9f:c3:8b:
20:d1:c3:d0:12:2c:66:64:1f:30:fb:4d:8d:2b:6a:
c5:09:46:79:a4:4a:ee:28:1b:a0:d2:2e:34:f1:cb:
d2:ee:6c:f3:e9:d1:f2:a7:08:0f:3d:09:e9:b7:1a:
fc:c9:ac:d2:86:11:bb:4e:d3:d4:13:5c:1e:ef:b9:
18:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AD:25:E0:0B:8D:C1:18:2A:F6:31:7E:25:20:65:6B:B5:50:B0:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/268B10685BC811F19CDF30FCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.4.0/24
154.194.81.0/24
154.195.102.0-154.195.106.255
154.195.109.0-154.195.110.255
154.195.114.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:e0:2b:c8:4c:a5:f8:9e:06:cd:78:be:58:7b:c4:61:91:34:
8f:5c:21:64:9b:1b:51:db:67:4d:12:54:7e:91:72:45:7c:94:
44:3c:d6:1a:fe:0c:b7:f2:63:98:b9:c9:ce:11:df:a6:dc:12:
f7:a0:ca:20:17:2e:e0:b1:e6:d0:40:5d:89:13:3b:5a:f9:a2:
2c:1d:2c:50:01:3a:0b:ac:84:e1:84:e7:27:46:12:46:30:fe:
7f:43:28:70:ae:d2:cd:1d:2f:92:5f:81:68:f1:ff:2d:c4:05:
26:16:d9:18:fb:34:4e:f7:1f:f7:93:7f:c9:9b:81:f5:79:6d:
44:91:d0:46:a7:42:1d:8f:0d:65:f1:cc:2d:58:4f:9b:bc:fb:
3d:c5:1d:bf:d8:27:e5:7c:b8:22:9b:80:77:3f:16:ca:b9:00:
b5:37:21:9c:1b:b7:6a:bd:51:f6:5b:3f:da:7b:45:9d:7e:44:
53:f1:f1:46:d5:c6:a9:7c:2b:1f:e6:23:72:3c:d7:90:15:c3:
ae:81:37:56:67:c2:e6:4b:df:8f:80:03:2b:d6:08:7a:1b:b1:
fa:9d:62:53:70:ca:5e:c0:2e:9b:b3:72:18:19:80:44:2d:ee:
02:70:46:47:e1:a0:5e:d9:a9:ad:7d:86:0b:0a:2b:fc:02:e7:
bb:44:56:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:31:17 2026 by rpki-client