Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69D7EC80352E11F199994DAACE1D38B0.roa
File: 69D7EC80352E11F199994DAACE1D38B0.roa (raw, json)
Hash identifier: ERmP8T6aWSbA4XUft9m2IsGCCSqHLU3ScG+mBipC+U0=
Subject key identifier: 40:FA:86:84:BB:15:20:F2:F3:41:34:90:41:79:26:B6:D3:B3:27:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C47D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69D7EC80352E11F199994DAACE1D38B0.roa
Signing time: Fri 10 Apr 2026 22:41:29 +0000
ROA not before: Fri 10 Apr 2026 22:41:24 +0000
ROA not after: Sun 10 May 2026 22:41:24 +0000
asID: 141883
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115837 (0x1c47d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 22:41:24 2026 GMT
Not After : May 10 22:41:24 2026 GMT
Subject: CN=69d97c99-f8f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:36:19:3d:fe:a0:4d:12:19:83:1e:a7:f9:cf:
ba:d3:05:5a:e1:8b:aa:94:21:3b:f1:13:62:50:96:
66:ce:a1:2e:52:b7:9a:64:77:03:7e:ad:56:91:50:
31:4d:6d:35:96:9e:f5:55:4e:cb:52:82:b4:96:59:
ac:8d:d7:8b:06:98:57:02:a5:11:c2:23:7a:bc:f8:
8a:79:f0:aa:74:0b:a5:8d:aa:07:44:88:f1:98:00:
4f:88:28:7a:66:cc:58:63:90:44:cd:57:b0:69:78:
71:2a:f6:80:f4:7f:b2:d8:30:8d:b6:ba:16:1d:f7:
a3:bd:2b:92:54:a7:26:15:d7:1b:50:c8:24:c5:8f:
8f:be:83:f0:2a:9d:a4:e0:fa:2c:a7:d8:4c:8c:6e:
18:f1:65:d7:65:0a:1e:cf:3c:de:09:66:03:6a:8c:
21:33:2a:07:fb:dd:55:cb:42:ba:27:e2:8e:55:c6:
26:b0:5e:50:20:c7:d6:c6:72:73:38:24:36:e1:bf:
4b:29:f9:90:99:fa:30:4f:b3:0b:d6:be:06:e5:6e:
37:a3:ae:01:64:13:52:8b:0f:bb:8f:e8:b8:a9:41:
88:1d:8d:f8:64:5a:ef:5e:6e:e5:43:77:d8:da:f8:
b5:77:ae:99:94:41:71:77:14:bb:4e:c1:9d:4f:c7:
84:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:FA:86:84:BB:15:20:F2:F3:41:34:90:41:79:26:B6:D3:B3:27:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69D7EC80352E11F199994DAACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
63:20:ad:1b:04:c1:f4:2c:63:95:dc:f2:f0:17:ed:66:97:da:
c1:a4:37:e6:71:05:41:7e:81:22:af:71:8a:c6:e8:69:68:f9:
2d:e2:eb:20:a2:02:fb:63:7c:fd:ec:79:6f:f1:fb:0f:9d:4a:
5f:8b:22:cd:1b:ec:0e:0c:4a:e8:75:4c:86:c8:85:90:78:1c:
95:00:89:92:19:19:64:28:0f:ef:29:87:2a:d7:6d:8e:ff:f7:
8b:38:28:f1:0a:40:8a:6c:c9:3a:92:36:3b:de:5f:a2:d4:af:
ae:81:03:77:7c:13:56:aa:72:63:60:b9:84:78:09:b5:11:8b:
40:04:a4:59:0e:83:28:f0:17:cb:06:65:49:ad:05:be:15:4e:
25:59:a2:1c:94:e9:28:28:7b:b3:08:27:cc:d9:f5:b7:d7:c7:
74:3f:77:99:83:cc:1f:06:e2:e4:6e:ad:92:8a:02:38:54:ad:
d3:8f:68:98:d0:24:09:7d:d9:9b:56:ad:e4:d9:5a:6d:bd:23:
2b:c6:39:60:3e:f3:a7:6f:5a:b3:58:1e:a9:03:c2:e5:01:f0:
65:57:a2:d1:a0:12:6a:b3:3a:05:f9:08:b1:53:f7:18:7b:a1:
6d:30:6e:a9:91:e7:06:e3:d4:41:3b:e4:bf:06:45:73:de:f5:
87:38:19:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:51:48 2026 by rpki-client