Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28922CA82D9611F1B4457DDCDAE4EC9C.roa
File: 28922CA82D9611F1B4457DDCDAE4EC9C.roa (raw, json)
Hash identifier: 5gDlm/wM4/TN3Y0Vgsxta5N9H4U6L3w7pdbAsqYyN1w=
Subject key identifier: CE:A7:B4:C5:F0:95:E0:4F:25:46:37:6E:5D:BE:17:C5:64:37:0B:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C1E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28922CA82D9611F1B4457DDCDAE4EC9C.roa
Signing time: Wed 01 Apr 2026 06:43:58 +0000
ROA not before: Wed 01 Apr 2026 06:43:53 +0000
ROA not after: Sat 02 May 2026 06:43:53 +0000
asID: 11427
IP address blocks: 154.82.26.0/23 maxlen: 24
154.82.28.0/22 maxlen: 24
154.85.0.0/23 maxlen: 24
154.85.100.0/22 maxlen: 24
154.90.168.0/22 maxlen: 24
154.90.184.0/22 maxlen: 24
154.94.8.0/22 maxlen: 24
154.94.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115173 (0x1c1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:43:53 2026 GMT
Not After : May 2 06:43:53 2026 GMT
Subject: CN=69ccbeae-706c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:81:6d:e9:52:35:88:5e:f5:e4:9c:84:94:e4:
cf:37:84:21:08:e8:46:e7:25:9b:82:31:12:74:84:
9d:78:c0:fe:de:41:bb:ea:f7:95:ce:14:93:cf:5c:
63:f7:12:65:95:5a:a6:19:ad:58:02:91:b5:44:7a:
7e:97:e5:c3:b3:49:74:87:ec:15:49:95:ac:89:a8:
fd:a5:5c:69:fb:36:e8:5f:e4:de:10:fd:72:e2:40:
24:ca:9d:ba:96:a2:9a:a9:f2:88:09:67:7a:d0:29:
7a:1b:c4:da:a9:e5:7e:dc:f0:e9:c0:2a:4b:66:6a:
fb:51:00:09:66:c6:3a:77:97:33:c8:d1:fc:d6:a7:
c5:78:61:c5:50:ee:d5:7d:ab:fc:31:fb:10:01:00:
03:8a:68:8d:be:06:b2:d1:70:18:9a:a0:ce:8d:f9:
32:bb:58:63:d0:fc:fd:52:c7:c9:18:12:8f:81:95:
66:65:fc:3f:95:a4:83:fc:df:4f:ff:cb:a1:12:ad:
6b:0a:7b:d9:a2:3a:c3:c9:2d:67:2a:e3:5b:8a:7a:
fe:02:bb:8b:45:e8:59:80:ab:98:b2:c0:68:a6:92:
25:de:c2:3e:35:31:38:4a:66:34:20:dd:76:10:43:
08:76:9c:1b:a0:7d:a8:6a:0a:4b:d6:19:25:14:eb:
67:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A7:B4:C5:F0:95:E0:4F:25:46:37:6E:5D:BE:17:C5:64:37:0B:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28922CA82D9611F1B4457DDCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.26.0-154.82.31.255
154.85.0.0/23
154.85.100.0/22
154.90.168.0/22
154.90.184.0/22
154.94.8.0/22
154.94.128.0/18
Signature Algorithm: sha256WithRSAEncryption
bb:52:a0:fe:99:3d:cf:95:ce:4f:bc:8a:3a:29:b9:fa:4a:a4:
92:5e:7a:dd:ce:cc:d9:ff:5a:1a:c9:b6:4c:32:8c:99:9b:16:
99:f0:80:0c:bb:c3:5d:66:9b:b6:9b:4a:2a:65:fd:52:ac:e8:
79:ee:f1:c2:70:11:b8:eb:77:df:0b:d1:c5:b3:79:91:3c:b1:
ca:1a:0f:fa:7a:2e:25:5f:cc:3c:74:8c:3b:c9:4f:c5:d7:0a:
f3:32:35:b2:60:93:65:54:4e:f6:9d:51:90:77:62:2e:b2:b0:
72:97:d5:70:7a:eb:48:68:73:68:19:9a:b1:bb:a1:28:d2:8a:
94:32:6b:87:58:41:46:ca:5f:1c:3d:ef:bd:09:43:df:72:ca:
4f:f9:9c:01:72:89:46:9b:ef:67:82:49:c4:d3:87:b8:28:0d:
0a:b4:d5:f3:a8:3b:27:05:30:51:14:7f:08:4e:cd:ed:47:14:
b9:a3:7a:89:cd:04:01:d0:80:99:89:21:30:46:58:95:69:99:
e3:97:d8:c3:7d:a3:90:09:76:94:46:c8:1e:63:18:4f:07:e3:
24:16:4a:33:9d:12:9e:68:a3:97:ce:66:44:9a:c3:33:2b:0e:
e8:56:a2:1a:b8:d3:34:65:ff:18:da:2e:f9:68:39:67:7a:66:
95:12:c9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:19:04 2026 by rpki-client