Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F82214E370411F1A1D983F7CE1D38B0.roa
File: 8F82214E370411F1A1D983F7CE1D38B0.roa (raw, json)
Hash identifier: a8BfHe+nTugYBeQ6RtbPhcF+nAbsKxl4q2Qq3uXJ++8=
Subject key identifier: C6:2D:43:CC:E7:FF:3D:32:BA:F1:CF:B1:D5:96:91:BE:BA:3C:F4:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4DD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F82214E370411F1A1D983F7CE1D38B0.roa
Signing time: Mon 13 Apr 2026 06:46:55 +0000
ROA not before: Mon 13 Apr 2026 06:46:50 +0000
ROA not after: Sat 16 May 2026 06:46:50 +0000
asID: 17497
IP address blocks: 154.196.216.0/21 maxlen: 24
154.196.216.0/24 maxlen: 24
154.196.217.0/24 maxlen: 24
154.196.218.0/24 maxlen: 24
154.196.219.0/24 maxlen: 24
154.196.220.0/24 maxlen: 24
154.196.221.0/24 maxlen: 24
154.196.222.0/24 maxlen: 24
154.196.223.0/24 maxlen: 24
154.197.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115933 (0x1c4dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 06:46:50 2026 GMT
Not After : May 16 06:46:50 2026 GMT
Subject: CN=69dc915f-32dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:76:a4:df:83:c7:d9:7e:0d:36:80:10:48:ae:
ac:82:a6:15:de:2e:01:12:98:94:bf:48:92:58:40:
0b:26:4a:30:db:b4:a7:0c:01:71:6e:53:73:08:21:
e2:99:6f:22:e9:67:7b:55:a2:bd:fc:d8:48:d7:76:
8b:e4:e8:b2:5d:3a:09:74:86:ce:c8:d0:f0:be:eb:
42:c3:98:a5:ec:da:1f:fa:c0:a2:31:0c:7f:2e:26:
28:84:6c:44:1d:19:6c:cc:a8:41:54:3e:61:51:35:
a2:6f:7a:43:fe:6f:16:ef:a7:b1:35:f7:71:57:03:
48:b2:31:e4:35:b9:d8:1c:53:76:07:43:b3:f2:eb:
d9:8e:e1:bc:b4:4d:e0:35:59:a6:e2:18:3d:16:39:
9a:f4:1c:3f:d4:b3:5f:e7:2f:57:ed:69:e6:3b:85:
86:20:d7:f4:6f:f5:f3:65:07:fd:fc:77:71:f5:cd:
3b:c9:dd:34:28:68:62:a0:37:c7:0f:59:ca:ee:07:
7f:8a:1b:23:fe:4e:f7:5e:fb:01:f7:33:f0:dd:dc:
99:76:88:c3:92:14:38:a4:ad:a6:44:75:27:09:4c:
d2:55:01:ae:2b:cc:64:58:4c:a2:6c:d2:52:6a:43:
37:5c:95:54:40:d6:ea:11:dd:a1:e2:22:1d:75:6b:
c6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2D:43:CC:E7:FF:3D:32:BA:F1:CF:B1:D5:96:91:BE:BA:3C:F4:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F82214E370411F1A1D983F7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.216.0/21
154.197.27.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:b8:d7:ef:47:89:1a:6e:d0:71:8b:b0:dd:fa:3d:08:64:a9:
4d:de:80:3d:69:04:9c:84:5d:a6:60:f8:0f:aa:44:73:42:c3:
97:d3:a1:c8:54:84:2a:d2:94:68:4c:f6:e0:10:a4:c6:02:bb:
42:96:cb:0c:98:2f:1a:40:e2:bd:fd:6c:b2:5a:ff:e9:ce:93:
cf:43:d0:f2:71:c8:77:16:d4:cf:45:ef:07:1f:fc:7e:01:df:
2c:0a:78:8b:60:93:e3:2a:5d:40:b1:42:84:90:56:6f:16:55:
8d:d0:12:46:73:50:3f:9b:27:4e:42:73:8f:6e:47:ba:2f:50:
c8:f9:15:f8:91:70:b7:35:bd:a5:1a:81:e5:4a:4b:d7:d2:11:
83:06:bc:71:16:cb:34:39:9d:5d:27:01:70:ba:06:4e:24:ca:
0d:9f:89:b0:8a:4f:8e:4c:b1:e7:e6:07:68:ba:83:28:55:8e:
84:34:99:83:75:5c:d6:fe:6c:a1:cd:ad:5a:72:c8:af:5a:78:
3c:42:f0:a3:4d:4a:c5:ee:76:6d:05:93:24:6d:bf:4a:3a:98:
8e:86:97:b4:2a:28:a7:90:5a:2b:b4:08:93:78:f1:94:dd:e8:
20:40:ea:c3:eb:44:30:0f:34:b4:28:c9:b5:78:8a:54:7a:f2:
00:c4:95:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:38 2026 by rpki-client