Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0AA9F4A397111F1A979A2C8CE1D38B0.roa
File: A0AA9F4A397111F1A979A2C8CE1D38B0.roa (raw, json)
Hash identifier: niqyX0UYon0JtsEcAJtNmK0wBiUiJNoLWTRMy865FI4=
Subject key identifier: 96:11:07:D1:C1:C5:8D:29:74:0B:CC:93:C7:B5:B4:C2:B9:14:D0:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C587
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0AA9F4A397111F1A979A2C8CE1D38B0.roa
Signing time: Thu 16 Apr 2026 08:52:42 +0000
ROA not before: Thu 16 Apr 2026 08:52:37 +0000
ROA not after: Wed 29 Apr 2026 08:52:37 +0000
asID: 214143
IP address blocks: 154.82.172.0/23 maxlen: 24
154.82.174.0/23 maxlen: 24
154.83.18.0/23 maxlen: 24
154.83.32.0/24 maxlen: 24
154.83.40.0/23 maxlen: 24
154.83.42.0/23 maxlen: 24
154.83.72.0/23 maxlen: 24
154.83.74.0/23 maxlen: 24
154.83.76.0/23 maxlen: 24
154.93.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116103 (0x1c587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 08:52:37 2026 GMT
Not After : Apr 29 08:52:37 2026 GMT
Subject: CN=69e0a35a-6bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1e:77:f6:d1:7a:fa:92:15:10:2c:a0:f8:3c:
73:c6:d6:55:16:8e:5d:cb:f2:4a:65:ef:81:01:67:
38:f1:7d:62:c6:eb:85:c7:87:05:dd:8a:ea:24:69:
f0:db:ec:75:3c:32:3b:2a:f5:55:33:1f:dc:37:d4:
e6:11:bd:0d:9c:4b:fe:0e:fa:a5:a2:ce:a9:84:64:
95:79:5c:fa:54:90:ca:f4:23:9a:2c:80:59:b2:f1:
dc:8a:48:91:e4:ca:07:ad:92:70:c5:5e:45:65:4a:
1f:8d:67:03:3f:35:83:eb:1b:1e:fe:ae:e2:4f:dc:
67:5c:24:04:ce:4f:bb:ab:e4:c5:0f:6d:be:5b:df:
02:dc:d4:53:54:98:c6:91:58:c6:b4:c7:3e:2a:7a:
81:fc:57:63:d9:27:ee:7c:05:f5:99:86:8e:09:33:
fb:76:0a:25:54:3b:0f:0d:7a:1f:ab:05:20:02:37:
a5:5e:d7:22:46:7b:6e:e2:09:bd:7e:3c:b6:33:b6:
3f:ee:dc:a7:07:7f:b1:c6:b8:32:a2:5b:d2:13:49:
6e:60:9d:1e:b4:c0:ab:23:f6:20:dd:33:0a:66:49:
88:31:28:ae:9b:31:45:cf:af:ce:dd:ad:08:d6:d7:
60:41:d3:81:05:db:77:d3:43:82:95:ab:d4:7e:02:
f3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:11:07:D1:C1:C5:8D:29:74:0B:CC:93:C7:B5:B4:C2:B9:14:D0:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0AA9F4A397111F1A979A2C8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.172.0/22
154.83.18.0/23
154.83.32.0/24
154.83.40.0/22
154.83.72.0-154.83.77.255
154.93.28.0/22
Signature Algorithm: sha256WithRSAEncryption
91:9d:53:fd:6e:0f:f1:fb:0b:6c:66:5c:10:f4:f9:e5:46:b9:
2d:90:87:64:2f:bd:1d:65:b6:ab:0f:06:3c:c3:57:60:ac:49:
ae:24:c6:74:cf:be:31:a9:49:c3:80:dc:ac:52:7c:13:b2:cb:
77:7b:cd:5f:39:ed:91:7f:af:2f:98:2e:18:e7:a3:dc:31:5f:
cb:c1:af:01:3f:d6:de:31:4e:84:33:26:ee:6d:89:5f:35:3b:
b3:50:a9:3b:e0:2c:48:ab:0c:be:74:82:43:db:15:85:1a:89:
83:90:36:1c:f8:50:4b:bc:6a:57:a1:d5:03:b9:01:b4:4f:f8:
b4:fb:2d:fe:89:db:ce:c7:0f:4a:68:f1:34:2d:83:c2:f8:d2:
b6:53:2a:16:ec:70:a5:2e:85:28:a7:ed:d3:34:78:ed:3a:6c:
61:f8:e9:6e:5c:87:37:39:79:9b:c1:36:52:10:f1:73:c3:14:
20:36:48:cd:5a:5e:0b:53:40:d2:f4:8e:22:79:17:e5:2e:a1:
cb:d1:b4:f3:6c:d0:cc:dc:62:82:3c:40:5d:4f:da:e3:90:37:
68:b4:9f:19:e9:e8:d0:8e:7e:b0:57:d7:86:ea:74:6a:95:2e:
6b:7a:03:75:bb:ae:99:c9:3e:46:e3:92:37:34:9c:a3:57:ee:
d4:fc:9e:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:28:55 2026 by rpki-client