Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D9EAEFE5FE211F187EC7FFDCE1D38B0.roa
File: 8D9EAEFE5FE211F187EC7FFDCE1D38B0.roa (raw, json)
Hash identifier: c2v1ZaPKpf6ssEjtHh8lSWAwLW3Zfjk4aPc6iCMckfA=
Subject key identifier: E2:7F:50:10:4C:77:80:39:8F:39:85:48:DD:B8:60:06:8B:8C:41:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D188
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D9EAEFE5FE211F187EC7FFDCE1D38B0.roa
Signing time: Thu 04 Jun 2026 06:56:47 +0000
ROA not before: Thu 04 Jun 2026 06:56:43 +0000
ROA not after: Fri 10 Jul 2026 06:56:43 +0000
asID: 154177
IP address blocks: 154.90.44.0/23 maxlen: 24
154.90.46.0/23 maxlen: 24
154.90.52.0/23 maxlen: 24
154.90.56.0/23 maxlen: 24
154.90.58.0/23 maxlen: 24
154.90.62.0/23 maxlen: 24
154.93.37.0/24 maxlen: 24
154.93.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119176 (0x1d188)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 06:56:43 2026 GMT
Not After : Jul 10 06:56:43 2026 GMT
Subject: CN=6a2121af-38df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cb:88:e4:1b:1b:1d:cc:32:71:b4:6a:b7:b9:
dc:93:2a:7c:d5:60:6b:91:ef:30:fc:86:9e:7e:b0:
29:b0:24:78:4c:dd:0b:c2:24:c9:41:b2:64:64:a8:
36:b9:cf:ca:5e:1a:be:7d:4e:a8:d3:f9:70:72:84:
43:a1:4a:43:a2:02:ef:e3:c1:db:3a:af:6d:85:0b:
45:bd:33:51:d7:fb:c5:6c:05:96:0a:b3:38:25:21:
ec:5e:9c:87:11:a6:6c:86:a0:fe:0f:47:74:34:6f:
f0:be:e1:a9:ec:cf:ac:8f:0a:50:83:35:f0:2c:a3:
cf:42:31:d0:b7:d1:0e:34:46:f8:3f:f8:96:2f:f4:
5e:31:d2:8b:ee:df:0d:a5:b2:cd:47:80:1b:3e:f0:
c1:20:8c:b9:09:ef:eb:d7:1d:f7:78:a2:a7:84:94:
e5:4e:bd:f3:20:dc:5e:ea:f6:ac:fc:30:ae:c0:1f:
a3:cb:7a:5b:b3:0d:d5:9c:75:06:0f:1f:31:62:cb:
af:20:03:fe:b8:11:4b:ec:d6:db:ff:f6:62:f1:53:
28:f6:e6:5f:40:f9:0f:e8:49:47:ef:be:ee:b5:a8:
2c:3d:3a:a6:9e:85:12:ce:c2:ee:2b:65:bf:6e:7a:
b6:7f:ca:6b:7d:20:5f:6d:1c:e3:67:0e:79:ae:a8:
9e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:7F:50:10:4C:77:80:39:8F:39:85:48:DD:B8:60:06:8B:8C:41:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D9EAEFE5FE211F187EC7FFDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.44.0/22
154.90.52.0/23
154.90.56.0/22
154.90.62.0/23
154.93.37.0/24
154.93.51.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e7:ef:4f:12:22:1f:81:50:bb:ae:08:a3:9f:3c:f7:d4:87:
42:35:34:8c:3b:c4:e0:0a:33:f6:cf:1a:46:72:22:92:1e:75:
87:1a:b1:db:4b:fe:bc:7f:65:7e:8b:ac:93:3e:7b:a5:6f:6b:
f1:16:37:4e:b1:66:1d:d4:e5:0a:ba:3c:6f:9f:6a:c3:7d:26:
af:93:36:cc:ef:15:a1:cb:70:5b:7a:18:7b:79:f1:9d:7a:86:
82:9e:09:df:7e:f4:e9:70:e8:7c:44:29:96:66:96:60:bf:2d:
65:6b:cb:fc:bb:8a:ab:26:64:71:9a:48:bc:65:09:c1:a8:63:
e7:54:d9:a3:b4:7a:37:99:91:f4:cc:d3:d1:82:0b:ea:bb:c9:
6e:27:75:54:fd:fb:04:93:c0:c5:f9:7a:69:06:44:e6:76:e2:
74:c4:e5:41:80:15:81:98:97:3a:0d:81:b6:93:5a:f8:8c:41:
41:2c:b7:de:06:56:3f:6e:b1:b7:c7:2f:04:61:b7:3a:12:57:
ae:81:4f:44:87:b2:80:78:c4:fa:4c:a5:24:fa:18:02:89:60:
69:45:3e:73:3d:08:f5:89:ba:55:8b:c2:f0:c2:9f:bc:57:27:
c1:ca:97:93:86:5f:26:38:89:6e:16:d1:2e:e1:28:44:08:26:
e3:c4:ad:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:45:19 2026 by rpki-client