Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70658674312911F1992B7B9BDAE4EC9C.roa
File: 70658674312911F1992B7B9BDAE4EC9C.roa (raw, json)
Hash identifier: 8SpHixlYfwlCwbg8EItCWtGuaSoE+e+Z9Ix05ecdKCw=
Subject key identifier: 92:D0:35:06:BA:5A:13:BE:1A:99:FA:AF:39:85:55:42:BF:CF:1E:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C351
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70658674312911F1992B7B9BDAE4EC9C.roa
Signing time: Sun 05 Apr 2026 19:55:53 +0000
ROA not before: Sun 05 Apr 2026 19:55:36 +0000
ROA not after: Sun 10 May 2026 19:55:36 +0000
asID: 1405
IP address blocks: 154.83.88.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115537 (0x1c351)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 5 19:55:36 2026 GMT
Not After : May 10 19:55:36 2026 GMT
Subject: CN=69d2be49-7332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4d:0d:10:10:02:e5:52:b0:91:49:65:15:c6:
eb:df:b2:fb:7e:4b:9a:f9:91:ba:f9:67:81:65:fa:
1b:5b:cc:6a:fc:86:01:dc:0c:2d:a9:f8:2d:12:02:
84:2d:12:70:6b:77:2a:85:79:b1:df:25:b2:a5:3c:
fb:03:2f:df:39:ff:bf:69:77:90:13:78:dd:98:76:
b1:93:ec:30:49:13:6f:bc:a1:93:df:8a:87:19:20:
89:28:b1:3e:5d:1d:fc:23:05:55:ae:1b:26:ba:3b:
c9:75:5b:08:c7:00:e2:d2:f6:37:ca:58:7e:f2:6d:
0d:eb:76:13:6d:0e:2b:09:58:b5:66:b4:dc:99:f1:
b1:f9:0d:ec:f6:d6:ed:8d:b1:0b:8b:70:4b:b1:8b:
e5:6d:16:e9:84:08:28:2e:45:29:ec:70:2c:86:20:
87:c6:93:49:08:02:6b:e7:fe:d4:64:38:fd:0d:d4:
64:e1:9d:e5:9a:18:7f:b8:a6:4b:69:ea:4a:a3:14:
38:5a:2c:06:7b:6b:e6:8b:c1:65:b2:67:e5:9a:8d:
bc:96:21:a2:e9:3c:94:f9:67:24:89:f8:a3:95:dd:
af:2c:99:bd:da:47:24:07:80:65:ba:5d:14:e5:40:
a5:94:de:0b:b1:0d:d4:3c:6a:cf:78:12:ef:80:60:
b8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D0:35:06:BA:5A:13:BE:1A:99:FA:AF:39:85:55:42:BF:CF:1E:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70658674312911F1992B7B9BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:79:f9:1e:1d:49:0b:48:4c:3a:da:21:27:55:10:92:2c:a7:
b9:f4:32:66:8d:c4:eb:06:5d:bb:a7:64:b4:43:3c:40:e3:14:
f0:9e:fd:3f:64:c2:e9:61:e7:b0:98:e1:a7:4c:d9:b1:ad:33:
50:bc:bc:93:47:33:f6:8b:12:61:c1:f7:9c:6c:70:ae:f6:93:
5c:3a:8d:dd:df:11:a7:49:1d:de:5f:cd:72:5b:ad:09:03:6a:
10:69:5e:f0:a9:03:10:07:41:56:33:ee:f4:9f:ff:25:84:d8:
64:d9:7f:6a:fb:94:ee:3b:b1:7e:ae:c4:c7:c5:7e:69:3b:df:
5d:6f:cf:9d:e0:89:c2:15:87:8b:8e:3a:5b:a5:9d:bb:8e:28:
61:98:e1:8f:e2:f2:3e:6a:46:bc:8e:09:b8:08:ad:e7:98:84:
fc:3f:30:13:35:8f:01:74:9d:9e:6c:b5:a6:53:78:83:d2:90:
18:ae:9d:1b:13:d4:9b:7c:84:bb:52:c7:35:66:14:df:33:9d:
59:e6:0a:8d:c2:65:60:ab:51:16:8d:e9:c5:13:29:51:86:9f:
06:2e:55:14:fb:66:08:55:dc:2e:21:05:0e:e5:14:54:63:bd:
76:81:a1:d8:2b:a0:52:b0:9d:14:4a:22:97:13:0f:f0:1c:ac:
cf:dd:43:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:29:03 2026 by rpki-client