Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3198DF8C2E9E11F198893AD6DAE4EC9C.roa
File: 3198DF8C2E9E11F198893AD6DAE4EC9C.roa (raw, json)
Hash identifier: mdnFCFbTv9BcYkX3hEJ9yWpd2F1umVhTbSrb+Dqg2Dg=
Subject key identifier: E8:F8:65:85:B7:63:7A:C0:D8:CE:AA:16:3C:2F:DA:CD:19:90:A4:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C257
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3198DF8C2E9E11F198893AD6DAE4EC9C.roa
Signing time: Thu 02 Apr 2026 14:14:00 +0000
ROA not before: Thu 02 Apr 2026 14:13:55 +0000
ROA not after: Sun 10 May 2026 14:13:55 +0000
asID: 138915
IP address blocks: 154.90.46.0/23 maxlen: 24
154.93.32.0/24 maxlen: 24
154.93.33.0/24 maxlen: 24
154.93.34.0/23 maxlen: 24
154.93.36.0/23 maxlen: 24
154.93.38.0/23 maxlen: 24
154.93.40.0/23 maxlen: 24
154.93.42.0/23 maxlen: 24
154.93.44.0/24 maxlen: 24
154.93.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115287 (0x1c257)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 14:13:55 2026 GMT
Not After : May 10 14:13:55 2026 GMT
Subject: CN=69ce79a8-d2cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bc:15:69:7b:cb:71:29:10:e6:69:1d:a5:b6:
06:59:a0:cb:52:d6:ff:7e:37:16:76:a6:5a:b6:46:
e9:7c:83:33:3a:7b:71:6e:25:23:52:47:a3:f1:aa:
4d:8c:17:8f:2c:0c:21:97:1e:55:35:99:54:5e:05:
dc:d4:85:b4:88:d4:86:c9:4e:de:c6:06:c8:ab:a4:
62:9e:20:d3:99:35:9b:24:26:e7:b1:4e:c2:9b:f5:
71:a5:1f:54:c3:68:03:3a:af:03:97:04:a3:f8:ea:
66:03:0b:fe:a1:e5:36:8e:5d:e3:59:0d:d9:0e:98:
1f:ab:e1:4b:aa:35:1a:b7:11:df:27:b4:a7:ba:4b:
95:b6:a8:6a:9d:f9:b0:e2:7b:12:97:fd:ba:56:d1:
fb:38:22:12:dc:27:21:77:17:e9:01:ab:cf:f0:59:
b6:f4:5b:22:e4:7f:c6:df:e0:65:47:87:66:ac:7a:
53:c0:13:77:4f:84:20:6d:bb:f4:14:60:7d:08:93:
e0:20:53:65:36:76:8d:92:db:da:cd:9a:10:7e:0d:
3b:2a:ec:77:cb:c1:85:a8:92:be:31:67:49:4c:e2:
47:1e:8e:f7:5e:74:99:1c:87:5a:23:41:f7:59:76:
42:cf:5a:cf:36:36:8e:c5:a0:02:dc:53:fb:2a:41:
8d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F8:65:85:B7:63:7A:C0:D8:CE:AA:16:3C:2F:DA:CD:19:90:A4:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3198DF8C2E9E11F198893AD6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.46.0/23
154.93.32.0-154.93.45.255
Signature Algorithm: sha256WithRSAEncryption
2b:a6:55:dc:00:8d:aa:9d:23:6b:b6:bf:db:f6:a7:75:e8:ca:
bf:51:0f:c1:f8:69:b7:65:e5:c4:92:e4:dd:6b:23:03:79:31:
d3:7f:69:11:47:c6:3b:e6:2e:2a:f6:56:a9:d3:19:db:bf:3b:
4a:f4:2d:82:42:75:10:e6:ad:68:8d:34:8a:14:b7:ba:15:5e:
b5:b4:50:0c:90:54:c0:84:65:c1:e3:ce:4e:8b:3e:dc:28:53:
7a:a0:bb:44:3c:a3:e0:a0:21:8f:df:fc:50:47:88:72:15:b5:
25:39:8a:d7:38:b4:ee:6e:ce:c2:bf:9c:54:40:3d:67:30:e5:
13:a7:9c:14:35:d0:9e:ec:ec:b6:df:75:39:4d:f6:b6:d0:a1:
92:ff:1f:07:17:28:c3:18:2b:76:4a:44:5b:16:ea:50:4f:4f:
92:15:b4:60:0c:0c:9a:23:15:ef:ad:bc:08:a5:13:7a:96:c6:
67:26:02:e8:b0:2f:df:b2:d4:9f:79:cf:ac:97:6f:39:ad:d9:
ca:9c:0e:8e:d7:8b:fb:e0:42:43:3a:9a:fe:0e:1a:f9:66:45:
62:a0:95:d0:fa:aa:e9:28:b8:35:71:73:6f:e5:4a:86:6d:a5:
f4:98:f1:e4:b8:4c:a0:64:b4:00:f1:91:f1:df:43:7f:cb:fa:
f9:cf:73:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:11:22 2026 by rpki-client