Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83BCC95C29D711F19695EEC0DAE4EC9C.roa
File: 83BCC95C29D711F19695EEC0DAE4EC9C.roa (raw, json)
Hash identifier: VPDisPp5GlDSHv4pwmzcUlzwX6fpRs2Vm1H0swxHC5I=
Subject key identifier: EE:1B:1B:3D:F5:5C:61:84:A0:18:ED:31:EF:69:53:71:08:33:37:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C130
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83BCC95C29D711F19695EEC0DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 12:21:43 +0000
ROA not before: Fri 27 Mar 2026 12:21:38 +0000
ROA not after: Sun 10 May 2026 12:21:38 +0000
asID: 395793
IP address blocks: 154.194.208.0/22 maxlen: 24
154.194.212.0/23 maxlen: 24
154.196.208.0/24 maxlen: 24
154.196.209.0/24 maxlen: 24
154.200.55.0/24 maxlen: 24
154.200.56.0/22 maxlen: 24
154.200.56.0/24 maxlen: 24
154.200.57.0/24 maxlen: 24
154.200.58.0/24 maxlen: 24
154.200.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114992 (0x1c130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 27 12:21:38 2026 GMT
Not After : May 10 12:21:38 2026 GMT
Subject: CN=69c67657-48e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:31:22:08:b9:a5:ff:b0:c5:d6:0d:2e:bc:8e:
83:86:e0:fe:9d:ce:fa:0c:de:2d:e2:d1:da:11:9f:
31:8f:66:1b:e2:f8:03:e5:08:60:7f:4d:ae:c0:25:
44:4a:4d:36:20:f1:aa:69:81:9e:54:bf:db:af:8a:
de:16:6a:95:9a:75:e1:b8:3c:38:5a:31:5b:24:7a:
9d:d4:93:68:34:8e:62:2c:12:14:97:dd:a3:f5:ea:
31:34:d8:a2:85:6d:a3:2e:ea:d9:6d:99:38:b3:5a:
5a:78:d5:67:e7:5d:f0:b3:d7:c9:11:2c:d6:f4:3c:
43:a9:28:4f:e3:f1:ba:ea:9e:97:6d:2f:c3:41:14:
a0:10:1b:61:f8:a4:5f:81:c5:e2:52:37:21:6e:c5:
21:6b:3b:25:d8:68:d1:11:53:0b:54:ee:42:90:76:
9c:2a:70:6a:b4:27:35:89:19:92:ac:c4:42:68:25:
1e:39:88:6f:61:c1:27:ca:16:80:f4:d5:33:5d:cd:
a2:ca:d5:f2:dc:3e:24:aa:e9:57:a0:76:60:6d:8f:
12:5a:af:32:20:a4:d3:2d:59:a4:86:7e:a6:d7:8e:
0a:d2:0c:90:a6:72:21:a8:5d:36:19:d1:f5:21:f5:
25:6c:1d:c6:e5:7f:26:bd:62:04:a5:bf:47:10:74:
24:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:1B:1B:3D:F5:5C:61:84:A0:18:ED:31:EF:69:53:71:08:33:37:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83BCC95C29D711F19695EEC0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.208.0-154.194.213.255
154.196.208.0/23
154.200.55.0-154.200.59.255
Signature Algorithm: sha256WithRSAEncryption
85:44:1e:92:9f:89:97:57:d1:66:3e:ba:cc:c7:c9:ed:c4:c9:
55:bb:15:a1:0e:81:f5:c1:b9:9a:fd:7f:08:d0:a4:fe:3b:ed:
7c:90:83:c4:1e:50:9e:7c:14:d1:53:1c:ae:f3:dd:b9:16:59:
fb:a4:ba:36:01:d5:6a:dd:d4:f2:cf:5b:04:38:e3:fd:9d:d9:
45:b4:d3:15:31:9b:17:c9:e3:d3:58:df:3e:65:12:e8:0a:7e:
de:00:38:a2:ba:c5:df:90:b6:d4:b2:10:1e:71:9a:87:71:de:
d5:d1:61:dc:ef:87:3f:f9:c4:74:3b:00:17:a4:3a:84:47:a0:
dd:dd:2f:61:10:33:92:80:da:4c:fc:1d:56:2f:bf:e7:14:86:
51:06:34:ba:0d:bc:b1:fc:70:96:2b:66:35:39:89:3e:0e:46:
e5:b0:97:b7:e2:35:3b:cc:b3:10:5b:86:04:dc:41:a2:e5:ec:
f2:6a:50:b2:eb:78:e5:f2:ff:1c:a7:82:b2:fc:ac:b3:20:1d:
3a:6d:07:61:ca:1f:a5:e8:f6:48:77:26:9c:86:ed:3d:a7:e2:
80:5d:bf:56:84:cc:34:86:66:1e:01:2e:d0:8b:18:4a:ef:b6:
eb:03:55:9c:a8:26:fb:1c:67:07:0a:e8:7e:4b:6e:c0:01:71:
ab:ac:ef:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:38:33 2026 by rpki-client