Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ADA23D2FA5A11F0A8B0D5D0DAE4EC9C.roa
File: 6ADA23D2FA5A11F0A8B0D5D0DAE4EC9C.roa (raw, json)
Hash identifier: KRdq/klx5/qOjdQJgkOmfwY84xjW44i9g3yzVm5rmmM=
Subject key identifier: 15:5F:6D:37:43:1E:8B:E3:C2:23:01:2D:C4:9C:8A:A7:BE:06:F7:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B6D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ADA23D2FA5A11F0A8B0D5D0DAE4EC9C.roa
Signing time: Mon 26 Jan 2026 01:57:50 +0000
ROA not before: Mon 26 Jan 2026 01:57:45 +0000
ROA not after: Wed 04 Mar 2026 01:57:45 +0000
asID: 984
IP address blocks: 154.82.132.0/24 maxlen: 24
154.82.135.0/24 maxlen: 24
154.90.133.0/24 maxlen: 24
154.95.2.0/24 maxlen: 24
154.95.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112343 (0x1b6d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 26 01:57:45 2026 GMT
Not After : Mar 4 01:57:45 2026 GMT
Subject: CN=6976ca1e-8b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a9:34:a9:fa:1d:b7:ff:0d:f8:47:fe:0a:67:
13:e6:49:30:e3:4c:84:b3:88:09:cf:af:53:ff:b6:
72:eb:28:e4:e9:1c:30:8f:90:aa:5d:c3:58:3c:5d:
aa:5a:10:4b:ee:b3:30:c2:02:03:18:f0:52:cb:26:
6d:b7:9a:b6:ec:b6:31:bb:62:1e:60:5d:5d:b5:67:
ea:ca:b9:99:7a:a4:3d:ae:e7:1b:1b:4c:c1:22:94:
14:bc:ec:6c:04:b2:ea:15:44:81:f8:f9:82:a9:db:
f6:9c:56:a9:f1:d8:7b:65:70:98:ec:b8:93:b4:49:
98:d6:bb:3e:7b:57:5c:ff:65:91:03:a3:f1:ce:59:
42:36:92:af:b9:ed:16:93:6f:8c:6c:07:62:7d:6b:
a3:b8:4b:4e:0b:e2:25:b6:d9:a0:bf:53:e2:f0:9f:
fb:bc:18:35:2c:2f:65:8d:a0:89:79:a8:9a:03:be:
01:df:d0:ab:b2:85:30:d5:8e:64:68:50:3c:41:ff:
e9:b3:c4:2b:23:a9:24:b4:17:29:c2:8c:de:74:33:
0b:69:f5:54:91:6c:d8:d0:92:bf:e1:b3:6d:b5:7f:
48:2e:05:ca:75:72:25:86:f0:91:dc:a9:d4:73:b9:
dc:c3:2c:29:c9:f0:78:de:d6:f8:eb:a2:29:cb:8f:
e3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:5F:6D:37:43:1E:8B:E3:C2:23:01:2D:C4:9C:8A:A7:BE:06:F7:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ADA23D2FA5A11F0A8B0D5D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.132.0/24
154.82.135.0/24
154.90.133.0/24
154.95.2.0/23
Signature Algorithm: sha256WithRSAEncryption
96:15:dd:8c:62:3e:ee:d9:c4:c0:ed:5b:a4:2e:a5:7f:1f:e5:
8a:fa:00:c4:4c:fc:42:ea:b5:0e:32:c2:e2:3b:fb:1f:f4:ec:
5b:e2:96:9d:46:b3:50:4e:8f:98:8e:56:1d:08:00:e7:6f:7d:
22:c9:51:e4:a5:bf:60:56:0f:d8:6f:3b:20:5f:9c:e0:4d:0b:
e0:c4:c8:ea:97:85:07:f8:52:7d:b7:60:62:57:06:bb:ee:07:
85:d5:7f:b4:83:04:d8:64:7e:47:55:8a:44:77:1a:a0:c9:af:
a8:97:d3:f6:46:87:9d:7d:33:3f:4b:3b:37:d3:2e:74:ab:3f:
6c:5b:5a:e7:32:d4:09:6a:46:68:c6:da:75:33:a0:18:f6:ec:
40:92:1a:d9:86:99:ce:b9:19:0f:c3:0d:7b:eb:fc:58:ca:59:
a7:b8:e9:c1:92:b1:83:27:35:67:2a:5a:fb:b0:80:a2:59:c6:
12:aa:4d:11:77:70:bf:81:09:fe:aa:c7:c9:78:01:14:40:ad:
b5:ea:0d:31:f6:77:c4:23:a0:ba:11:a0:cf:c6:10:c3:f8:3e:
64:f9:13:af:d8:04:a4:d1:77:ac:bf:40:67:d5:0e:3c:21:b4:
ca:68:16:bb:2d:d7:b7:cb:8c:cb:cc:ae:9a:9d:fe:a2:c5:60:
b9:20:df:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:42 2026 by rpki-client