Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3724AB18396E11F1913B0CB6CE1D38B0.roa
File: 3724AB18396E11F1913B0CB6CE1D38B0.roa (raw, json)
Hash identifier: sGWUd9J1cPF6YBM3M4UCyNuEqM+4XjnoyGqJvqzPQIM=
Subject key identifier: 04:35:6A:45:7B:9C:C3:02:6F:27:BC:CB:D2:83:74:87:A5:38:11:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C57F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3724AB18396E11F1913B0CB6CE1D38B0.roa
Signing time: Thu 16 Apr 2026 08:28:16 +0000
ROA not before: Thu 16 Apr 2026 08:28:11 +0000
ROA not after: Thu 30 Apr 2026 08:28:11 +0000
asID: 9304
IP address blocks: 154.200.130.0/24 maxlen: 24
154.200.154.0/24 maxlen: 24
154.200.156.0/24 maxlen: 24
154.200.157.0/24 maxlen: 24
154.200.158.0/24 maxlen: 24
154.200.159.0/24 maxlen: 24
154.200.161.0/24 maxlen: 24
154.200.162.0/24 maxlen: 24
154.200.191.0/24 maxlen: 24
154.211.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116095 (0x1c57f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 08:28:11 2026 GMT
Not After : Apr 30 08:28:11 2026 GMT
Subject: CN=69e09da0-a5b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3f:80:98:39:61:84:e1:5f:88:a9:9d:99:e4:
a6:2d:35:cb:64:d2:31:c9:4a:d4:41:cc:8d:ec:45:
60:a3:80:0d:fa:ce:d8:74:a2:28:55:35:0a:53:4e:
ca:b3:5d:4c:80:7d:c4:e6:34:1c:cc:bd:58:e1:55:
6c:3c:12:99:d7:8a:61:e5:da:d7:e7:96:a2:d9:00:
bf:f7:90:e2:49:82:d8:da:42:99:67:90:fa:7c:b9:
ba:82:9b:32:50:cb:e4:8c:14:67:2e:da:46:fe:24:
c8:c2:0c:9f:15:c9:2a:6c:cb:68:fe:dd:50:f9:61:
b8:26:37:50:ac:1b:c8:63:5c:08:bd:79:1a:5f:01:
b8:20:eb:6a:4b:42:18:41:45:5e:90:69:59:99:b4:
82:c1:b9:66:0e:1d:49:28:49:78:ba:9d:21:cd:95:
00:f7:20:ac:c4:18:bf:56:36:53:73:ea:0c:40:21:
19:6d:4e:bd:94:c9:cc:50:df:42:a2:f0:6b:28:cf:
77:a4:3f:d2:93:11:aa:b6:29:09:52:9f:66:2a:10:
fb:28:9c:3d:78:29:81:52:32:b2:af:fa:86:52:46:
ba:99:cc:e5:21:2c:03:6f:72:0f:4b:18:6c:df:1e:
43:e0:10:cd:aa:52:1a:36:85:2f:6e:06:95:7a:c7:
35:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:35:6A:45:7B:9C:C3:02:6F:27:BC:CB:D2:83:74:87:A5:38:11:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3724AB18396E11F1913B0CB6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.130.0/24
154.200.154.0/24
154.200.156.0/22
154.200.161.0-154.200.162.255
154.200.191.0/24
154.211.211.0/24
Signature Algorithm: sha256WithRSAEncryption
47:ff:15:e6:fa:aa:18:fb:11:e1:19:ff:98:0d:5e:ce:33:77:
15:dd:75:56:43:e5:e6:fa:5d:1e:f2:d9:08:a6:96:8b:40:e8:
9d:b0:49:dd:59:db:46:9b:fd:99:f5:a9:d2:ef:80:90:59:eb:
a0:4f:4c:9c:64:7a:7a:bd:33:6c:c0:de:b1:4b:da:35:47:4e:
88:3f:05:ca:d2:54:20:ab:37:50:ce:a6:6b:aa:13:44:78:38:
96:97:4a:56:61:9c:53:71:fc:86:38:d8:eb:09:b2:77:44:95:
46:59:d9:2a:6b:17:d2:c0:c7:1f:30:49:98:6b:91:a7:b4:68:
d4:e2:93:68:38:a5:de:3a:ba:4b:26:e0:f9:8b:7f:01:4a:04:
c9:e3:78:b1:d7:78:14:b3:5a:61:64:cb:51:25:a4:4a:f5:b5:
4f:8e:ed:62:bd:67:7b:ae:e9:78:6c:d2:42:75:1f:63:f0:19:
b7:8c:e6:1e:a8:2d:16:6b:be:cc:d4:ae:5a:0b:e5:53:74:6b:
28:ed:b7:5f:81:f4:f0:56:bc:27:b2:f0:78:78:84:3a:bd:fc:
a2:a5:62:df:9c:a8:ba:a8:ea:13:c1:c3:a5:cf:a7:cf:bb:4d:
2d:22:39:61:5a:e9:99:73:37:84:88:05:be:a2:40:d6:88:d3:
96:fa:c2:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:22:44 2026 by rpki-client