Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76187C08112F11F1BF25C1B5DAE4EC9C.roa
File: 76187C08112F11F1BF25C1B5DAE4EC9C.roa (raw, json)
Hash identifier: fTOdZWK9fhJVwtbSnF/KBDnoQ7WjyAf01CNWBJ6rbmY=
Subject key identifier: 8D:CA:56:3B:FA:C7:86:03:EA:FA:02:15:C1:CC:1F:BD:4A:46:60:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76187C08112F11F1BF25C1B5DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 03:18:17 +0000
ROA not before: Tue 24 Feb 2026 03:18:13 +0000
ROA not after: Tue 03 Mar 2026 03:18:13 +0000
asID: 149014
IP address blocks: 154.223.168.0/24 maxlen: 24
154.223.169.0/24 maxlen: 24
154.223.170.0/24 maxlen: 24
154.223.171.0/24 maxlen: 24
154.223.176.0/24 maxlen: 24
154.223.177.0/24 maxlen: 24
154.223.178.0/24 maxlen: 24
154.223.179.0/24 maxlen: 24
154.223.180.0/24 maxlen: 24
154.223.181.0/24 maxlen: 24
154.223.182.0/24 maxlen: 24
154.223.183.0/24 maxlen: 24
154.223.188.0/24 maxlen: 24
154.223.189.0/24 maxlen: 24
154.223.190.0/24 maxlen: 24
154.223.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 03:18:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113434 (0x1bb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 03:18:13 2026 GMT
Not After : Mar 3 03:18:13 2026 GMT
Subject: CN=699d1879-ef2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9c:aa:96:5a:55:51:8e:90:b1:72:29:47:89:
cd:cf:ab:65:f4:44:f9:96:67:52:0f:3e:e8:b8:8f:
7d:a8:4f:60:6e:ca:f9:1a:41:43:59:f7:32:2e:cf:
b0:da:c9:c4:e4:ac:10:89:23:e8:fe:08:41:2c:1d:
c4:10:90:68:38:e3:37:00:c4:6b:74:4c:e1:04:d2:
4f:42:3d:a9:ce:de:e0:0b:f8:83:60:79:b5:86:27:
c7:eb:7c:e7:a3:ea:38:2b:48:d0:c7:3c:af:98:d0:
37:77:86:33:0e:89:53:18:1e:28:d5:28:c7:d2:56:
bd:62:5c:31:95:5c:7b:f5:a7:11:26:d1:82:c8:44:
58:1c:59:ba:b7:5b:ba:b7:3c:90:d9:d1:37:60:33:
c7:cc:2f:3b:ee:f1:eb:fc:24:db:1b:db:91:1f:9f:
df:d6:b7:b4:59:c6:ea:7c:fa:85:84:8e:82:30:8e:
c8:b3:5b:dd:37:a2:db:51:35:f0:14:c1:34:e5:1f:
2d:79:ac:b4:2d:92:4a:c6:59:e1:7c:0a:f1:16:55:
20:35:38:e2:ce:ff:1f:c8:30:1a:86:db:61:77:7f:
45:b9:ac:b8:3c:58:31:0b:40:a7:cf:5f:57:96:78:
6b:5a:bc:00:19:3f:bc:14:b0:6e:b3:fe:88:1d:e1:
08:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:CA:56:3B:FA:C7:86:03:EA:FA:02:15:C1:CC:1F:BD:4A:46:60:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76187C08112F11F1BF25C1B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/22
154.223.176.0/21
154.223.188.0/22
Signature Algorithm: sha256WithRSAEncryption
36:41:e0:3c:d6:b3:fe:3e:14:0d:67:e0:84:1a:8a:62:e6:29:
cb:e5:42:6e:9c:d4:66:76:01:69:92:81:55:69:14:d3:a5:0c:
66:51:5a:d7:0b:d4:a5:01:d3:d0:eb:43:5d:4e:90:02:d3:4a:
41:7e:a2:60:ff:09:62:2f:f1:80:77:d8:89:da:ef:8e:ae:8a:
8e:29:61:d9:f3:11:dc:0b:7c:9c:b7:19:bf:6c:05:19:df:75:
76:8a:0a:71:fa:ba:cb:0d:f9:6d:c9:dc:ca:bc:33:96:fb:b9:
df:b0:c4:f0:ac:bd:13:01:b6:ae:c9:5e:f8:08:c5:76:96:12:
2a:9e:04:73:39:15:ca:ce:70:ed:bd:16:34:50:2c:9e:76:7d:
d2:95:11:4f:3f:ec:25:25:88:e6:d1:a5:12:9b:d8:69:1a:f4:
93:b3:d2:85:60:54:b2:7b:22:35:e6:ff:b2:64:c7:98:85:3f:
e4:ca:2e:06:9e:aa:a8:cc:3b:96:10:c9:8a:e5:25:77:11:fe:
2e:b9:aa:4d:d1:f3:5b:aa:09:ee:4b:0c:55:bc:1e:7c:d7:68:
26:53:42:8d:c1:ee:86:de:0d:18:c4:b1:32:42:bf:f7:ed:b8:
30:6d:de:5f:11:93:18:aa:f4:9e:26:eb:6c:30:0c:af:4b:6e:
e8:0c:74:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:36:16 2026 by rpki-client