Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36DEC1DE2E7411F1BBF153E8DAE4EC9C.roa
File: 36DEC1DE2E7411F1BBF153E8DAE4EC9C.roa (raw, json)
Hash identifier: AxUo2avV8U7U7O4lsAbcJHqMr7fQHOorvxM/09kdyAc=
Subject key identifier: 92:13:97:B2:9D:EC:EC:16:FB:5F:FE:21:E9:44:E2:34:0C:52:B9:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C21B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36DEC1DE2E7411F1BBF153E8DAE4EC9C.roa
Signing time: Thu 02 Apr 2026 09:13:30 +0000
ROA not before: Thu 02 Apr 2026 09:13:24 +0000
ROA not after: Sat 09 May 2026 09:13:24 +0000
asID: 44559
IP address blocks: 154.219.64.0/24 maxlen: 24
154.219.65.0/24 maxlen: 24
154.219.66.0/24 maxlen: 24
154.219.67.0/24 maxlen: 24
154.219.68.0/24 maxlen: 24
154.219.69.0/24 maxlen: 24
154.219.70.0/24 maxlen: 24
154.219.71.0/24 maxlen: 24
154.219.92.0/24 maxlen: 24
154.219.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115227 (0x1c21b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 09:13:24 2026 GMT
Not After : May 9 09:13:24 2026 GMT
Subject: CN=69ce333a-5054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:76:7b:bc:f1:49:18:26:8b:8e:9f:38:48:a8:
4a:62:b4:0e:19:a8:80:3f:30:01:2e:40:ba:b4:54:
7c:5c:12:4c:aa:c6:5e:1a:bf:99:58:a0:40:6f:ab:
18:83:12:da:47:a4:d6:b8:d3:9c:08:90:bd:51:53:
6f:ee:96:67:87:d6:69:2f:cf:94:2c:78:72:85:5a:
36:f8:0d:08:30:b7:85:76:ff:59:60:35:c4:91:32:
73:ad:fe:4f:2a:61:35:cb:cf:62:62:88:8e:d0:92:
7c:d9:56:f1:5c:42:74:0b:6a:f9:c2:b2:b1:22:61:
b4:4d:ee:3b:f7:c6:9c:ce:8b:12:49:ce:9b:a9:f8:
d2:f4:aa:aa:00:3a:31:54:ec:36:dc:0d:8e:46:3c:
25:13:23:2a:0d:cd:ac:e9:99:d7:3a:67:97:87:0a:
1f:74:97:3c:e6:ef:55:6d:50:e7:64:7b:a7:fa:05:
fe:33:fc:93:c5:33:85:8b:06:b4:d5:fb:8e:e3:82:
63:25:8a:30:9f:ae:f0:25:8b:64:11:02:c2:cd:bb:
7f:bb:2f:41:8a:f9:32:20:ac:1a:32:27:c2:81:4c:
67:5e:98:f2:37:76:8c:12:00:ac:02:ed:5f:78:45:
36:79:35:9c:f2:49:33:04:68:98:9d:50:9a:50:60:
82:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:13:97:B2:9D:EC:EC:16:FB:5F:FE:21:E9:44:E2:34:0C:52:B9:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36DEC1DE2E7411F1BBF153E8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.64.0/21
154.219.92.0/23
Signature Algorithm: sha256WithRSAEncryption
60:87:72:b5:4b:57:36:66:37:92:80:9b:13:c3:71:da:5d:c3:
cd:70:9c:10:d7:7a:90:a0:39:b7:9d:77:87:02:70:c0:82:85:
2c:e1:37:c7:8d:95:c5:43:8c:27:3b:65:91:76:b9:3c:6e:af:
53:41:6c:dd:02:61:f8:2a:6c:22:38:59:b6:82:b8:67:fc:6b:
40:69:87:a7:2e:8b:87:ee:8a:85:f0:7a:fe:34:e4:f4:31:6e:
8c:98:f2:42:0e:c2:42:c6:7a:e4:c6:2b:e3:1b:ec:93:82:37:
62:fc:2e:c9:e0:9e:5c:e8:0d:d7:57:8f:f3:82:70:1f:f0:cf:
03:fb:ea:d1:de:6a:85:ce:1d:4d:93:49:f4:c7:39:2d:c2:26:
18:5c:28:4a:f0:78:96:62:a1:55:eb:f8:98:2c:48:64:24:4f:
cc:22:14:15:c8:64:1f:36:7e:c4:df:e8:4a:85:63:94:2b:a3:
23:ce:be:0b:d3:b7:c5:1c:0e:55:c3:7a:88:cd:e6:5d:db:f5:
b1:65:1b:a6:3f:0b:29:85:14:65:8a:04:5a:4e:87:c9:a0:a8:
88:d0:fc:b5:14:e6:4e:9c:74:e8:fa:e7:9c:e1:c5:72:b2:82:
f4:8e:47:e4:4f:de:8e:1b:69:f4:de:d2:fc:be:0b:94:3b:c8:
3e:2d:2d:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:50:31 2026 by rpki-client