Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AC83C26370311F1BEBE33F1CE1D38B0.roa
File: 7AC83C26370311F1BEBE33F1CE1D38B0.roa (raw, json)
Hash identifier: 2yyNVWO8OrP8Yr3mzc5RxsmmYPw2khR+0MWgvf8PAxo=
Subject key identifier: E1:BA:45:8E:FA:E9:5D:E3:D1:3D:F0:EA:BF:3E:53:72:B8:C2:03:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AC83C26370311F1BEBE33F1CE1D38B0.roa
Signing time: Mon 13 Apr 2026 06:39:11 +0000
ROA not before: Mon 13 Apr 2026 06:39:06 +0000
ROA not after: Sat 18 Apr 2026 06:39:06 +0000
asID: 211392
IP address blocks: 154.83.22.0/24 maxlen: 24
154.83.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 18 Apr 2026 06:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115927 (0x1c4d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 06:39:06 2026 GMT
Not After : Apr 18 06:39:06 2026 GMT
Subject: CN=69dc8f8f-0716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f3:d5:39:7c:95:bc:ae:e2:5b:c0:81:ec:ad:
f7:e2:fa:d3:b4:e3:d5:a5:1a:24:26:5c:8c:ec:06:
32:b9:b9:af:8e:d2:28:7d:48:ea:8f:33:aa:ab:19:
63:cc:d3:4c:e3:dc:db:a9:87:ad:a0:4a:3f:8b:c9:
37:22:a7:13:d1:f7:27:44:b4:58:6f:02:ac:38:19:
5f:82:61:2d:5d:c7:25:0b:d5:76:45:16:0c:6f:17:
23:d5:90:98:83:72:cd:53:df:9c:b1:d9:a8:51:c8:
f2:22:90:92:9e:5e:f9:6e:da:32:dd:8f:39:95:14:
68:f5:3b:2e:ba:1b:71:03:b8:70:3a:14:0b:15:46:
e8:68:e1:2a:a6:a6:9a:85:df:e1:f4:e6:8a:00:5e:
9b:1c:d3:d4:6d:11:58:3a:5f:c7:f3:cf:35:75:8e:
60:aa:9e:35:41:ce:33:89:e6:e5:f2:a7:31:13:58:
fb:3d:55:f8:99:7c:d9:61:d7:26:7c:28:39:c8:e0:
99:54:46:2f:dd:34:c0:b9:ad:7f:8b:27:1c:41:57:
95:2e:b9:30:90:92:88:c4:31:81:24:03:f0:96:bc:
7d:55:ea:23:de:f1:7b:24:e9:29:75:92:45:96:28:
71:4f:4d:25:91:6f:fd:f0:d3:f2:d4:d1:03:88:54:
8d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:BA:45:8E:FA:E9:5D:E3:D1:3D:F0:EA:BF:3E:53:72:B8:C2:03:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AC83C26370311F1BEBE33F1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.22.0/23
Signature Algorithm: sha256WithRSAEncryption
04:79:55:b3:b8:bf:8d:06:43:d1:c0:de:53:b0:c4:31:95:3f:
5c:f5:6f:ce:b6:24:a1:91:19:b5:9a:09:a4:d2:0b:4d:ae:1b:
f3:f2:28:74:df:a5:62:3e:7b:37:54:16:3d:5e:a2:06:a7:fa:
42:da:65:9b:6f:bd:fe:21:d4:72:1b:6c:48:ee:af:2b:2d:9e:
94:98:18:a9:34:83:5d:08:c6:cc:6f:94:f0:30:02:ea:0a:60:
dd:0d:f4:6b:40:13:39:ad:3a:85:1d:cd:0c:0c:32:f3:fa:3b:
8f:d7:f4:fb:86:b0:a0:5b:fc:5e:2f:fc:7e:2b:7d:c8:7f:6f:
22:5c:46:b4:26:be:80:42:28:f5:bc:28:15:95:36:27:41:bc:
7a:e7:94:1e:65:a9:89:5c:73:14:6d:e0:31:f1:53:13:9f:f3:
93:49:7d:ed:a0:bb:e3:ba:c7:20:1d:a8:6f:82:16:27:eb:e0:
0e:f6:fa:10:de:21:6b:32:3c:11:e1:02:16:77:d2:32:73:24:
e7:3c:a7:66:d4:8c:be:d1:d4:7c:c8:4c:81:bc:5b:bd:68:a5:
a3:63:68:46:71:e4:8e:38:09:77:e4:71:cc:87:19:4f:70:9d:
46:e5:f7:18:c7:72:fc:60:eb:bb:5a:92:fd:71:e5:d4:f7:af:
3e:e9:c5:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:29:09 2026 by rpki-client