Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E4CB30833FC11F180D0E10ECF1D38B0.roa
File: 8E4CB30833FC11F180D0E10ECF1D38B0.roa (raw, json)
Hash identifier: XUbU4NW5zrAZHJqgvjbcskmzlX/b2p5l3O62e6Ihito=
Subject key identifier: B9:45:C3:FD:10:40:C1:1D:84:BC:7C:5F:40:55:8F:8B:54:9D:14:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C3CB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E4CB30833FC11F180D0E10ECF1D38B0.roa
Signing time: Thu 09 Apr 2026 10:12:04 +0000
ROA not before: Thu 09 Apr 2026 10:11:58 +0000
ROA not after: Mon 09 Apr 2029 10:11:58 +0000
asID: 17561
IP address blocks: 154.86.224.0/24 maxlen: 24
154.86.225.0/24 maxlen: 24
154.86.226.0/24 maxlen: 24
154.86.227.0/24 maxlen: 24
154.86.228.0/24 maxlen: 24
154.86.229.0/24 maxlen: 24
154.86.230.0/24 maxlen: 24
154.86.231.0/24 maxlen: 24
154.86.232.0/24 maxlen: 24
154.86.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115659 (0x1c3cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 10:11:58 2026 GMT
Not After : Apr 9 10:11:58 2029 GMT
Subject: CN=69d77b74-28c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3c:fd:e8:72:7c:1a:ff:fe:6c:b0:2e:0c:13:
ee:16:a0:ec:0c:fd:aa:a2:0d:52:e4:57:08:b7:80:
33:b2:29:ea:f8:44:94:f9:3b:93:9a:19:f7:2f:c9:
9c:e9:13:e0:37:9c:fc:60:d7:f4:23:f1:24:85:cf:
0b:de:a0:d8:cb:c1:67:30:d3:79:fa:d3:66:52:ec:
11:34:b1:be:30:3a:42:c7:9d:f8:0a:6d:4d:c0:a2:
30:5f:fe:20:73:9e:f2:dd:78:49:f3:4d:46:17:6b:
95:16:11:22:46:ab:0f:08:be:63:0b:15:55:dd:11:
0f:a9:e4:40:3c:23:76:83:d0:0d:90:a0:0e:1c:fd:
61:b6:44:83:d6:f9:13:2f:52:82:7e:3f:bb:ce:ba:
cb:a4:aa:6d:97:e8:c9:68:ce:fc:7f:5d:30:f4:8a:
37:0e:ed:c8:9e:51:21:2d:31:1a:b1:0b:93:50:8d:
d6:97:38:04:0e:3d:b4:9a:f8:8c:b9:9e:10:b5:4e:
8d:51:0d:d4:86:1b:6c:ad:d8:18:39:8d:8c:8b:d0:
99:7b:a8:6b:43:39:d7:12:4b:22:2a:38:85:61:ed:
d1:98:03:44:72:26:2d:0b:7c:7a:b5:2c:ba:72:01:
31:9a:1a:15:5e:36:12:13:c1:2f:91:75:7d:97:3c:
00:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:45:C3:FD:10:40:C1:1D:84:BC:7C:5F:40:55:8F:8B:54:9D:14:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E4CB30833FC11F180D0E10ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.224.0-154.86.233.255
Signature Algorithm: sha256WithRSAEncryption
7a:6c:99:08:95:ac:d3:46:2f:c6:ff:b5:db:de:dd:46:13:bc:
b9:93:c7:85:f5:27:61:73:e7:88:3a:5e:b0:a7:d9:68:43:71:
c8:96:d9:03:66:be:97:84:f5:d8:78:1b:31:0c:c1:dc:0b:70:
d8:3c:7e:3d:7b:02:94:e6:ca:70:fa:1e:4f:87:6b:b3:7f:5a:
a9:b7:5d:aa:fc:3a:99:1c:21:83:bc:fa:33:41:af:d2:7c:7a:
05:6e:33:45:1d:a3:39:93:c5:0b:94:07:d9:f2:6b:0a:fb:27:
ff:fa:29:3d:1c:3f:be:83:72:ff:da:42:1f:ec:cf:05:90:93:
61:43:97:14:f4:da:e5:2b:2d:79:ef:05:4b:ab:58:3e:3d:49:
bc:73:a9:31:19:bd:d4:f5:b2:a4:55:50:87:55:bc:d3:74:68:
c7:ef:24:99:f4:66:33:de:45:0d:fe:06:b7:df:ea:fc:a9:7d:
7d:86:e5:10:cd:aa:13:34:45:20:c4:7d:56:45:4b:54:70:53:
ea:31:da:27:1f:1b:0b:05:8b:7f:dd:9d:99:19:74:39:06:59:
75:39:90:4c:71:08:66:f2:7b:7d:30:b0:1a:f8:a1:ec:d8:11:
4f:5b:f9:c1:7a:f3:e5:29:35:05:2d:a6:2d:86:61:81:e3:0d:
91:e9:c1:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:18:36 2026 by rpki-client