Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9239E20A358311F18B597DC4CE1D38B0.roa
File: 9239E20A358311F18B597DC4CE1D38B0.roa (raw, json)
Hash identifier: 85vwMtpKSs5wDJDPOjSpO+CEGyno3BHXYctqWHfwyz8=
Subject key identifier: 56:BD:82:AF:B1:B6:CC:C4:A1:32:74:61:0E:4B:AC:C5:14:D8:9E:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C493
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9239E20A358311F18B597DC4CE1D38B0.roa
Signing time: Sat 11 Apr 2026 08:51:04 +0000
ROA not before: Sat 11 Apr 2026 08:50:59 +0000
ROA not after: Sun 17 May 2026 08:50:59 +0000
asID: 139613
IP address blocks: 154.81.136.0/24 maxlen: 24
154.81.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115859 (0x1c493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 08:50:59 2026 GMT
Not After : May 17 08:50:59 2026 GMT
Subject: CN=69da0b78-43ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:8b:05:76:01:0d:88:ea:d3:57:b5:b7:43:82:
ab:92:0a:73:e0:02:53:63:37:89:b5:ad:b8:21:ec:
c1:87:95:80:d9:c3:b1:3d:b5:1d:02:63:6f:41:81:
65:97:24:a4:32:60:49:ff:c1:72:b4:26:ad:07:1c:
2c:83:83:4a:e7:a2:de:74:d8:f7:f2:4d:8a:b4:23:
63:07:63:01:da:fa:e2:ca:33:96:df:42:21:06:f4:
b3:b2:cb:9b:ed:24:21:b4:23:aa:47:cc:f7:a9:93:
af:6a:d8:de:c8:54:9d:dc:a2:37:4a:3d:b6:0d:b0:
95:d7:3f:ce:80:6b:05:34:7c:3e:51:21:96:25:e0:
99:26:59:ef:1c:17:89:1f:16:22:10:9b:62:8c:fa:
fd:24:aa:80:0d:74:1f:01:c9:3f:a2:eb:46:f5:9f:
ca:76:ed:c2:00:aa:ad:6e:03:e5:08:66:a0:e5:cd:
24:44:59:ce:61:aa:74:36:6c:d7:9b:fc:75:3e:d3:
4f:ea:1f:64:9e:65:e6:ad:0f:cb:15:09:50:d8:fb:
b0:bd:ca:e4:b6:c9:9a:3e:93:f0:8e:75:93:00:ba:
e5:45:df:b2:93:cc:2a:3e:85:da:e5:b7:7c:5f:e2:
8f:9e:37:09:21:d8:3b:87:2b:c9:04:7b:ee:93:bf:
20:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:BD:82:AF:B1:B6:CC:C4:A1:32:74:61:0E:4B:AC:C5:14:D8:9E:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9239E20A358311F18B597DC4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.136.0/24
154.81.166.0/24
Signature Algorithm: sha256WithRSAEncryption
95:95:62:11:75:33:75:34:50:5c:67:3e:c3:7a:86:f9:ec:ea:
52:94:20:4a:f0:b6:30:6a:cd:04:12:4c:c9:d2:27:3c:38:96:
77:7e:01:3b:a4:20:50:28:4a:21:64:7b:1b:4b:fe:22:b5:ad:
e9:37:24:2d:99:40:62:2f:2a:2f:6f:80:63:b3:1a:2c:e6:84:
19:6e:84:3b:d3:c3:8e:5a:b3:ac:ca:61:ae:e1:8c:be:c8:b4:
e1:60:a8:2a:81:8d:ee:3f:40:dd:9c:fa:40:52:ca:eb:1d:85:
d4:19:c5:ed:f9:11:f1:9e:33:29:ce:8e:5b:35:4e:5a:84:82:
bc:75:1b:80:68:72:dc:7a:49:92:02:86:7f:9e:e2:3d:db:67:
90:0e:47:e3:1c:35:aa:06:94:f6:02:66:9a:7a:d8:f3:23:f3:
af:68:82:5f:ca:8e:5b:6b:95:e6:7f:95:ce:2e:a4:9a:9c:b1:
42:56:80:86:ea:44:62:64:7c:a1:58:46:91:aa:51:52:28:ad:
3d:54:47:09:1b:a7:6f:bb:51:a0:ff:be:cb:0f:06:d4:7b:00:
68:10:8c:2d:85:70:b4:ba:37:06:84:35:ad:77:64:9c:62:44:
96:ba:e9:dc:23:94:90:62:34:b6:7e:14:c6:4c:b3:b4:84:54:
14:32:7f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 02:05:21 2026 by rpki-client