Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33C821D2157B11F1A0ECE18BDAE4EC9C.roa
File: 33C821D2157B11F1A0ECE18BDAE4EC9C.roa (raw, json)
Hash identifier: s5s8xvfrE/T1Z5Jan4UkBFbJZvCRD1kZ9azINqcCoFM=
Subject key identifier: E9:C6:54:6D:25:B9:E6:33:1E:F7:A4:B5:F3:86:A0:6E:F6:DC:09:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BC90
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33C821D2157B11F1A0ECE18BDAE4EC9C.roa
Signing time: Sun 01 Mar 2026 14:30:32 +0000
ROA not before: Sun 01 Mar 2026 14:30:28 +0000
ROA not after: Sun 05 Apr 2026 14:30:28 +0000
asID: 48031
IP address blocks: 154.213.6.0/24 maxlen: 24
154.213.7.0/24 maxlen: 24
154.222.248.0/24 maxlen: 24
154.222.249.0/24 maxlen: 24
154.222.250.0/24 maxlen: 24
154.222.251.0/24 maxlen: 24
154.222.253.0/24 maxlen: 24
154.222.254.0/24 maxlen: 24
154.222.255.0/24 maxlen: 24
154.223.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113808 (0x1bc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 14:30:28 2026 GMT
Not After : Apr 5 14:30:28 2026 GMT
Subject: CN=69a44d88-2b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:52:de:26:16:1d:1a:87:85:c5:80:6e:a4:95:
aa:8c:ef:0f:d1:09:5c:9f:d9:67:e2:81:a5:94:ee:
af:4c:97:63:67:56:5e:67:9b:f7:6a:73:26:01:3b:
b4:2e:72:64:e1:05:e2:6d:38:16:65:4f:90:5b:d0:
70:3f:3d:c7:98:3b:57:1d:f9:bc:eb:70:ee:3b:60:
29:76:13:2a:fa:45:7b:a4:54:d6:99:fb:77:d0:1f:
24:3f:b7:84:75:85:ed:a9:22:65:2f:29:90:24:0f:
7e:14:ff:f8:b6:66:53:2c:6f:69:75:82:be:90:9f:
d8:1c:da:af:15:75:cf:70:a6:e4:5d:ab:0b:80:cc:
98:d5:02:56:bd:7e:3a:05:6d:32:fc:3e:26:97:4c:
61:6a:b9:37:f2:71:40:79:19:24:26:52:f6:50:dd:
88:86:cc:6b:18:9e:0b:4a:f6:73:f6:07:a8:99:43:
3c:81:42:56:73:a0:f3:60:f2:4f:9a:6c:5a:d0:3a:
64:96:c8:c1:b8:60:dd:1f:4f:7e:70:ee:c5:b2:e1:
a2:91:42:ca:d0:e6:9d:bd:f8:dc:3d:67:24:6a:c3:
51:c8:cc:a4:c7:ae:08:d4:b4:8e:5c:f1:6e:8a:a7:
64:8e:6e:fe:91:75:d3:b3:ed:b2:67:ef:4b:c7:57:
76:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C6:54:6D:25:B9:E6:33:1E:F7:A4:B5:F3:86:A0:6E:F6:DC:09:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33C821D2157B11F1A0ECE18BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.6.0/23
154.222.248.0/22
154.222.253.0-154.222.255.255
154.223.80.0/24
Signature Algorithm: sha256WithRSAEncryption
67:59:d9:2f:fa:7e:b2:4a:b9:59:86:52:e6:9b:b2:b7:1d:fe:
38:e0:08:d2:e5:af:0f:2d:30:fb:5a:29:03:b1:55:00:23:3f:
04:b7:39:6a:14:67:56:2a:be:87:ce:51:55:c2:75:d9:db:f7:
53:f8:64:bb:b9:56:a5:ed:0a:54:e9:ba:9e:a1:3a:1d:6d:6e:
14:14:6a:98:a8:28:d6:f0:f1:6c:37:1c:7f:1c:82:fe:76:2a:
f9:97:12:91:53:79:3f:43:d3:1c:5b:6c:30:2b:03:38:38:20:
46:84:df:b7:ff:68:c1:ca:ca:68:15:38:72:e6:c6:7e:64:4c:
8b:1e:07:a8:1d:6a:ce:a0:54:b4:67:cc:85:11:fd:1d:ce:47:
0a:23:9a:5e:f2:54:a4:dc:31:c0:60:a2:9f:45:ba:98:56:97:
4f:8e:25:be:1b:34:18:30:27:ca:47:96:09:16:f0:77:82:6a:
ac:9d:6e:2e:2d:13:04:42:50:c8:4e:9e:6a:e2:a5:08:8f:ef:
8d:96:f8:ca:ec:6d:cd:ec:52:4f:5d:2d:a4:d5:62:97:48:0a:
33:d7:33:e8:d7:18:b7:83:dc:9c:d8:3f:81:98:44:b2:8e:8f:
c0:9f:ad:f3:bc:14:cb:10:f0:60:0f:81:a7:40:e1:95:84:b2:
38:17:3a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:16:40 2026 by rpki-client