Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68B6C28C2F3311F189DD60C6DAE4EC9C.roa
File: 68B6C28C2F3311F189DD60C6DAE4EC9C.roa (raw, json)
Hash identifier: sEuPmWDWuqhTkunzVif69+h7H7KSY5lNWrkq7pzvrKI=
Subject key identifier: 7E:6E:18:AA:4C:F0:E2:63:5F:70:BE:70:27:36:FF:29:3F:E3:C6:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C2A0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68B6C28C2F3311F189DD60C6DAE4EC9C.roa
Signing time: Fri 03 Apr 2026 08:02:07 +0000
ROA not before: Fri 03 Apr 2026 08:02:03 +0000
ROA not after: Sun 10 May 2026 08:02:03 +0000
asID: 14315
IP address blocks: 154.81.11.0/24 maxlen: 24
154.81.48.0/23 maxlen: 24
154.84.128.0/22 maxlen: 24
154.84.132.0/23 maxlen: 24
154.84.134.0/24 maxlen: 24
154.84.152.0/24 maxlen: 24
154.88.68.0/22 maxlen: 24
154.89.1.0/24 maxlen: 24
154.89.128.0/22 maxlen: 24
154.89.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115360 (0x1c2a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 08:02:03 2026 GMT
Not After : May 10 08:02:03 2026 GMT
Subject: CN=69cf73ff-c4e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a0:4d:d8:fd:26:bc:37:09:31:ba:5d:a3:1a:
10:fa:80:40:67:86:9b:28:f1:1d:eb:e4:c5:07:d9:
47:c1:58:69:64:f3:2a:9c:14:ff:bc:68:f3:65:fb:
3b:bf:86:d9:78:40:3b:71:fb:57:2e:22:2e:da:c6:
5f:80:d9:bf:fa:37:3b:fa:23:72:ba:d8:87:a1:2d:
47:33:49:5b:8f:a9:d4:df:db:d4:ff:d4:08:97:2f:
c3:30:c6:1b:6d:92:e8:45:99:03:07:03:40:4a:b8:
da:65:44:87:db:bf:c9:e2:60:60:fc:97:30:49:3c:
68:48:db:1c:f4:f8:1e:34:ef:bb:af:88:10:8e:50:
a4:4e:e6:00:68:c4:52:92:8c:ec:d9:3d:39:ad:1f:
b0:ad:eb:d4:fc:e2:d0:36:03:d6:71:f7:74:ab:93:
3b:15:e7:97:25:07:b0:71:97:44:93:0b:de:38:5e:
87:e0:66:35:a0:00:8b:f0:17:f4:8b:0b:01:c8:76:
bf:fb:53:25:ab:48:12:7a:ec:36:cf:21:a0:ae:22:
ce:ea:dd:a2:2f:bb:17:aa:a1:d2:a9:76:d9:7f:43:
ed:0c:bb:f8:2b:24:72:36:75:11:d8:7b:ae:e5:8b:
ed:40:6a:25:ce:cc:c0:14:2b:2b:fa:6a:0a:07:49:
1e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6E:18:AA:4C:F0:E2:63:5F:70:BE:70:27:36:FF:29:3F:E3:C6:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68B6C28C2F3311F189DD60C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.11.0/24
154.81.48.0/23
154.84.128.0-154.84.134.255
154.84.152.0/24
154.88.68.0/22
154.89.1.0/24
154.89.128.0/22
154.89.136.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:4a:5e:a9:0b:dd:4a:ce:83:1f:a4:49:33:c2:a9:7a:6f:af:
6e:0b:72:8e:34:95:1c:7e:48:46:77:86:70:8c:99:bd:ed:b3:
c1:3d:e4:6e:6a:a6:1c:46:87:a8:2a:a1:07:b7:3d:b9:66:da:
03:6c:af:d5:43:90:6c:c3:a5:c8:54:25:e0:50:c0:9d:20:ab:
55:d5:94:a9:66:32:66:79:29:5f:44:a3:73:00:e4:a9:2f:58:
57:0c:4f:11:7c:1c:b4:35:2e:53:50:88:f1:74:41:3c:8a:19:
1e:19:6b:dd:4b:16:08:a5:33:30:8c:38:8d:a6:39:74:c1:33:
27:b5:ec:13:ef:63:43:75:24:9b:2e:93:d9:f7:eb:6f:73:3d:
95:d9:b0:ea:9b:01:c2:e5:40:5e:2a:3c:53:31:bc:9d:da:98:
dd:cb:40:8b:98:2e:9f:49:f3:db:92:b5:8b:e9:44:dc:13:f8:
b8:cb:02:f9:09:24:db:80:4b:62:4a:c5:85:50:b4:f3:e9:bf:
41:eb:1a:1c:da:a2:3d:81:b4:89:f0:e0:af:8b:d3:27:11:97:
3f:ea:11:b3:36:8a:a9:52:af:b5:8b:66:d4:35:0f:64:ca:91:
e8:51:15:72:e7:b0:93:b8:7e:d4:68:45:c6:e4:e7:c8:6f:40:
72:74:31:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:24:35 2026 by rpki-client