Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0A9169E34AC11F186529DA3CE1D38B0.roa
File: A0A9169E34AC11F186529DA3CE1D38B0.roa (raw, json)
Hash identifier: sRJc5ZFB3octE7tFWOdJ+JkZjKvWcx+Vs8OfzfbqNg0=
Subject key identifier: 39:15:1A:10:FF:69:C4:6F:B3:32:55:56:13:E7:2D:01:51:4B:6E:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C453
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0A9169E34AC11F186529DA3CE1D38B0.roa
Signing time: Fri 10 Apr 2026 07:12:26 +0000
ROA not before: Fri 10 Apr 2026 07:12:22 +0000
ROA not after: Sun 10 May 2026 07:12:22 +0000
asID: 54801
IP address blocks: 154.204.0.0/24 maxlen: 24
154.208.12.0/22 maxlen: 24
154.208.16.0/20 maxlen: 24
154.212.128.0/24 maxlen: 24
154.215.0.0/24 maxlen: 24
154.218.0.0/24 maxlen: 24
154.221.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115795 (0x1c453)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 07:12:22 2026 GMT
Not After : May 10 07:12:22 2026 GMT
Subject: CN=69d8a2da-884c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fe:c4:18:7b:20:83:3e:05:4b:6a:c3:43:59:
df:42:86:8b:34:a0:eb:a4:bb:d5:65:d7:b5:a0:69:
6f:32:bc:4e:de:44:dc:84:5a:cd:2c:d8:01:bf:71:
66:e8:bf:63:06:60:1c:a3:6e:65:95:2c:31:29:99:
3d:cc:cf:95:59:4c:92:be:c2:f5:f7:bd:71:35:8d:
9a:d7:e8:f4:91:d1:37:9e:7d:a3:11:99:3f:8f:f6:
cc:29:3b:06:4b:86:11:a3:68:f0:7a:ba:8d:f7:ed:
8f:83:39:0a:ba:c1:94:9b:b1:81:c0:b5:c3:a9:11:
ce:1a:68:60:14:31:70:6a:ac:bb:71:02:b6:6a:51:
69:98:03:08:06:4a:25:3b:df:9a:f3:8f:51:0d:4d:
34:94:a6:70:77:1e:54:89:30:7b:c1:51:69:34:2b:
52:d5:06:a6:8a:3f:e2:26:44:fc:fc:2e:26:3c:d2:
d6:64:24:be:91:03:03:05:1f:55:34:e1:eb:e1:96:
f2:1b:78:03:06:f6:3f:b4:df:dd:3f:99:ab:0b:4d:
28:8c:17:25:cf:62:e5:30:84:60:74:b2:52:75:07:
b4:3c:60:e1:db:2a:1f:82:4d:24:48:9c:45:6b:41:
7e:9c:86:a3:28:8c:7b:28:4f:8e:9f:5f:5b:8a:65:
15:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:15:1A:10:FF:69:C4:6F:B3:32:55:56:13:E7:2D:01:51:4B:6E:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0A9169E34AC11F186529DA3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.0.0/24
154.208.12.0-154.208.31.255
154.212.128.0/24
154.215.0.0/24
154.218.0.0/24
154.221.0.0/24
Signature Algorithm: sha256WithRSAEncryption
56:2e:4f:07:70:4f:00:26:cf:db:5f:7b:2a:df:71:13:5e:67:
ab:24:72:cb:97:b4:86:e9:02:3c:55:ff:44:bc:df:d1:06:e2:
f8:b1:86:76:89:1d:97:c3:7c:3c:4b:36:d6:8b:e8:cb:b7:ec:
11:6a:0e:29:16:8f:50:89:80:e8:a3:03:da:47:f8:38:8f:a4:
f7:4f:ec:cc:8a:8a:db:77:d9:a2:8c:ac:0e:c4:a1:40:6f:94:
6f:37:66:c3:88:e6:93:3e:c6:3c:87:18:58:ed:a0:73:07:58:
8d:8c:6a:8d:30:c4:9e:9c:84:2d:1a:ff:07:86:a0:ca:ad:68:
df:3e:19:bc:df:34:30:ed:02:41:f7:23:47:6b:02:68:7b:37:
30:51:27:f0:69:f8:f7:38:d7:87:5c:bf:a0:5f:f9:7e:77:e9:
cc:ab:5e:5d:a7:d9:7e:59:bf:31:db:ef:9e:98:49:b1:41:08:
0d:a2:02:42:90:70:0c:71:bb:40:0d:a1:fa:d3:66:dd:32:34:
d2:0c:ca:5c:3e:a8:62:11:01:be:3c:6d:16:54:d0:2c:2c:a0:
02:a9:b8:a6:7e:58:ab:36:c1:82:0e:ad:f5:df:a5:6f:3f:a9:
f7:5f:6b:69:6a:b8:a2:d6:f1:01:52:67:a7:3e:51:6a:47:b2:
35:2a:10:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:28:46 2026 by rpki-client