Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98464A20117111F1BB64ABC6DAE4EC9C.roa
File: 98464A20117111F1BB64ABC6DAE4EC9C.roa (raw, json)
Hash identifier: fIznHaH7W1wB/gWtnlwDBmZDgoa+DeqD7fJcBhGQyBw=
Subject key identifier: C1:5B:76:80:9B:17:DE:7F:DA:DD:29:D6:BE:24:57:F5:6D:C1:EE:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB4C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98464A20117111F1BB64ABC6DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 11:11:41 +0000
ROA not before: Tue 24 Feb 2026 11:11:36 +0000
ROA not after: Tue 31 Mar 2026 11:11:36 +0000
asID: 62240
IP address blocks: 154.195.29.0/24 maxlen: 24
154.195.30.0/24 maxlen: 24
154.195.31.0/24 maxlen: 24
154.195.96.0/24 maxlen: 24
154.195.188.0/24 maxlen: 24
154.195.189.0/24 maxlen: 24
154.195.190.0/24 maxlen: 24
154.195.191.0/24 maxlen: 24
154.196.82.0/24 maxlen: 24
154.196.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113484 (0x1bb4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 11:11:36 2026 GMT
Not After : Mar 31 11:11:36 2026 GMT
Subject: CN=699d876d-9cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:95:52:6f:54:d4:24:7b:80:35:04:9c:0c:6d:
22:5b:ce:a3:be:4d:4a:ca:1b:fd:b0:be:2a:9d:f3:
11:94:fd:e1:47:f0:58:7d:9d:79:3b:c6:6b:22:f0:
da:df:30:55:41:39:c8:79:37:b9:9b:20:86:66:47:
35:32:f0:0b:10:26:f3:d1:c7:32:52:d5:61:03:d2:
00:5a:f5:6a:94:43:80:66:05:aa:93:6b:14:16:ee:
58:0e:9d:08:c8:19:47:5f:46:01:75:24:0d:44:e8:
10:fc:8f:49:11:1f:d0:af:e5:a2:95:46:d1:69:51:
8c:0e:9b:0e:c5:59:8d:db:8f:80:67:e5:c1:88:62:
c9:6e:65:a6:1e:10:09:5f:cc:e9:0b:c0:e0:e9:4d:
d6:a7:98:78:4f:b1:17:b0:c9:1b:41:27:92:83:55:
99:93:6d:19:4d:b3:01:07:6a:68:0c:68:62:06:c8:
51:5a:70:02:04:e0:9d:95:b9:42:c2:cf:3f:5f:92:
b2:36:be:e6:24:04:fa:cd:94:37:61:6e:b5:a6:38:
40:19:f8:f7:b2:40:28:7d:5e:b4:1a:2d:05:c8:d8:
54:e7:f4:ed:2f:ba:14:fc:7c:07:36:e4:ab:81:19:
d6:c4:34:c5:37:80:2b:cb:c9:01:47:84:2b:a0:32:
9a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5B:76:80:9B:17:DE:7F:DA:DD:29:D6:BE:24:57:F5:6D:C1:EE:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98464A20117111F1BB64ABC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.29.0-154.195.31.255
154.195.96.0/24
154.195.188.0/22
154.196.82.0/24
154.196.86.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:03:fb:fa:74:02:f2:c0:32:c1:2a:30:e9:2a:5d:fb:f5:04:
a0:68:47:0d:d3:1f:e9:ae:3d:1d:05:75:44:39:41:31:dd:e4:
0b:74:80:f9:27:7d:f0:7c:ee:6c:03:b1:de:68:69:1e:e6:94:
38:5d:5a:07:83:ae:21:9b:97:54:71:95:45:02:f1:06:b2:54:
61:48:2c:e3:68:a5:2c:e1:52:d0:b1:4f:88:f2:e2:19:e9:df:
46:3c:06:2d:13:81:d6:96:51:1f:27:15:1b:01:1a:91:ed:10:
33:d9:89:fb:6c:85:cb:bc:d4:d9:09:2b:89:f1:1e:68:37:e6:
57:64:40:de:f3:8b:f5:25:70:11:13:b6:65:02:4d:0a:a2:f5:
7f:cd:48:0e:17:b5:d1:c7:11:72:5f:c5:48:4a:39:ba:24:19:
91:ab:79:7f:fd:f9:88:48:5c:6c:e9:bb:cf:ba:ab:87:d1:50:
22:c4:6a:11:95:cc:b7:12:5b:a7:dc:90:54:4b:2f:1a:77:33:
a0:d4:54:37:83:1e:57:14:a8:d5:6b:b1:31:2b:82:b2:c1:bc:
2b:57:6f:e8:35:f8:f6:1a:cb:84:23:cd:d8:1b:e8:71:38:c0:
de:d9:59:bb:a0:a6:16:fd:6a:48:b1:1f:eb:01:b3:54:d5:96:
7d:45:e4:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:08:46 2026 by rpki-client