Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C921FF30342211F1BA9A7BF4CE1D38B0.roa
File: C921FF30342211F1BA9A7BF4CE1D38B0.roa (raw, json)
Hash identifier: mxNQPUmAWhB08HTKV8rl5xsCH4YNUFE6tHU0PVd4bFM=
Subject key identifier: F5:E3:2F:2E:56:6B:30:32:AC:68:58:97:BB:1B:B0:4E:D4:50:00:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C40C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C921FF30342211F1BA9A7BF4CE1D38B0.roa
Signing time: Thu 09 Apr 2026 14:45:44 +0000
ROA not before: Thu 09 Apr 2026 14:45:39 +0000
ROA not after: Mon 09 Apr 2029 14:45:39 +0000
asID: 17561
IP address blocks: 154.93.232.0/24 maxlen: 24
154.93.233.0/24 maxlen: 24
154.93.234.0/24 maxlen: 24
154.93.235.0/24 maxlen: 24
154.93.236.0/24 maxlen: 24
154.93.237.0/24 maxlen: 24
154.93.238.0/24 maxlen: 24
154.93.239.0/24 maxlen: 24
154.93.240.0/24 maxlen: 24
154.93.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115724 (0x1c40c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 14:45:39 2026 GMT
Not After : Apr 9 14:45:39 2029 GMT
Subject: CN=69d7bb97-6d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cf:bd:6a:07:99:f0:e7:b0:3d:08:ec:63:30:
26:ac:ac:52:04:23:fb:f1:3d:fd:46:4a:ce:6c:cc:
f0:0e:bb:90:6b:b1:5f:00:8b:61:b2:bf:6b:42:71:
b1:5f:65:a1:9b:a4:33:6b:ba:c5:6a:80:75:14:53:
6d:17:f8:eb:1b:65:9c:9b:72:51:85:e5:c3:e6:68:
e7:ee:e6:e2:5a:e9:9b:a0:02:e7:61:be:55:08:5f:
2a:6c:b1:a2:02:5d:30:0f:e4:5d:3b:4d:f6:56:84:
82:60:77:59:a7:ea:2b:24:98:c5:ef:87:cf:86:0c:
d2:63:98:15:b7:23:b4:21:34:17:fe:51:d7:f5:2d:
7b:c4:29:72:fd:e9:99:10:d4:c9:fb:19:bf:32:f1:
61:e0:5a:8d:e1:66:fd:e1:d4:9a:23:2c:7c:34:29:
5e:28:cc:8c:74:40:7d:13:48:6f:21:76:72:3e:78:
e2:d3:7d:83:15:d4:33:1f:5f:89:3c:d2:fa:9f:41:
33:8b:58:ae:94:fa:e5:17:aa:75:96:3d:06:4a:b3:
af:12:26:29:7e:2a:66:b5:1f:05:90:88:1c:ac:58:
d3:20:3e:7c:01:bb:ed:6c:76:57:b5:55:c7:11:32:
63:bb:f4:9c:10:45:fa:ce:55:7c:97:3a:49:da:b3:
a3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E3:2F:2E:56:6B:30:32:AC:68:58:97:BB:1B:B0:4E:D4:50:00:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C921FF30342211F1BA9A7BF4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.232.0-154.93.241.255
Signature Algorithm: sha256WithRSAEncryption
83:a1:63:cc:67:ac:ac:00:30:d8:e7:fb:ea:4e:30:7b:06:a0:
4e:08:38:81:fd:fe:8a:75:46:6a:c9:1a:41:14:b8:8a:57:c6:
55:f1:c2:1f:6f:63:63:11:56:72:04:b9:2e:ab:dc:c9:5d:d2:
b7:8b:7d:8c:96:c1:5b:67:9d:1b:57:bb:ad:07:1f:a8:1b:ab:
6b:1e:c1:bf:80:d1:b8:c0:71:73:31:63:23:3d:17:53:72:cb:
78:8d:28:68:f3:41:78:a0:02:7e:f4:6f:6b:61:22:b9:f5:84:
a3:d1:97:f4:34:fd:61:b0:c4:1a:57:e3:64:1d:ec:b4:ab:16:
4a:5e:c6:6f:2d:52:3e:3a:5b:28:26:3c:10:87:9a:37:96:c3:
83:e6:31:7c:2b:a4:f6:df:ae:97:e2:b7:fd:49:8f:74:8f:ec:
81:1d:88:b1:90:a0:e0:ee:37:33:29:8e:ff:de:42:e3:c3:75:
c6:cf:ae:7c:ce:43:59:9c:6c:1a:c3:e2:01:02:f5:58:c8:42:
b1:74:22:19:30:6f:35:9a:37:9b:c7:ea:41:7a:68:cd:9d:06:
84:2f:b5:9c:d0:36:05:f3:b7:7d:f8:84:23:f4:12:a9:ad:59:
4a:20:02:20:69:c9:45:96:be:7e:64:f2:91:ce:70:a8:75:97:
9b:e3:91:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:53:27 2026 by rpki-client