Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1570EC012E911F18FC0ECCDDAE4EC9C.roa
File: D1570EC012E911F18FC0ECCDDAE4EC9C.roa (raw, json)
Hash identifier: qgGzReO/7So+fb67OBWPZr5FYx1WpeXJY6+sMtIEAXQ=
Subject key identifier: 33:1F:6B:F0:5E:B2:26:A7:76:0D:E2:A6:98:D2:BD:9B:33:72:AC:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BBF3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1570EC012E911F18FC0ECCDDAE4EC9C.roa
Signing time: Thu 26 Feb 2026 08:04:47 +0000
ROA not before: Thu 26 Feb 2026 08:04:43 +0000
ROA not after: Mon 30 Mar 2026 08:04:43 +0000
asID: 9304
IP address blocks: 154.90.67.0/24 maxlen: 24
154.90.189.0/24 maxlen: 24
154.92.216.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113651 (0x1bbf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 26 08:04:43 2026 GMT
Not After : Mar 30 08:04:43 2026 GMT
Subject: CN=699ffe9f-a34a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b3:b1:4f:78:7a:98:26:89:1f:cb:f8:83:5d:
ac:0e:68:38:07:db:b9:db:7f:33:67:b3:c1:59:2c:
ef:7b:65:3d:25:e1:59:e8:0b:e4:19:e7:f9:8e:16:
2d:f2:e0:26:20:bb:39:4a:9d:b2:22:2c:65:0f:6c:
11:0b:23:60:09:b6:39:45:c2:2c:f2:03:f6:ac:66:
8a:f2:eb:75:3b:72:d6:85:3b:0b:88:a6:de:1f:7d:
84:69:f8:e2:a9:a5:10:ba:d1:1f:c2:94:66:fe:8a:
2c:70:b6:bd:e0:c2:2a:db:3b:0f:7f:d7:3b:25:6b:
6f:4f:60:7c:85:58:bb:29:bc:4d:cc:76:8f:b1:8f:
ff:e8:d0:17:77:fe:5e:20:ff:dd:b0:71:88:a9:84:
e2:e4:07:68:14:bf:ac:4a:04:9f:0a:7d:a6:5e:77:
b0:1d:5f:c1:34:c9:e0:fa:3e:23:d4:8f:09:9c:b9:
b2:9f:ed:94:cc:26:7e:ea:b4:e6:f2:8d:3f:70:e1:
57:18:34:cd:8f:b2:05:a9:6f:a8:d9:d4:db:5a:85:
9e:6e:d0:d3:8d:a1:d2:73:6f:a8:92:10:07:a1:c4:
06:0d:8d:29:e5:50:1a:19:88:bb:e1:23:2c:d3:97:
6b:e9:7e:b1:34:f6:f6:b8:36:e3:60:18:de:68:76:
df:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:1F:6B:F0:5E:B2:26:A7:76:0D:E2:A6:98:D2:BD:9B:33:72:AC:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1570EC012E911F18FC0ECCDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.67.0/24
154.90.189.0/24
154.92.216.0/21
Signature Algorithm: sha256WithRSAEncryption
17:9d:8b:3a:36:21:27:ba:1b:23:2f:0a:57:6b:07:0b:e3:1c:
59:c3:d7:0e:96:2d:4f:a6:a6:0a:a6:ea:2c:3d:2a:3c:99:45:
b6:ff:24:73:ef:e3:19:8e:6f:5a:1b:93:27:9e:8a:ff:37:f3:
23:49:9a:72:8e:39:24:20:a0:32:42:40:71:76:10:45:bf:0e:
d6:c8:ac:28:05:19:c7:fe:27:f6:54:ab:ff:3b:7d:94:fa:09:
7a:70:66:7f:9a:38:02:4f:39:80:47:c7:37:8d:4d:a3:e2:3b:
15:12:29:03:64:e6:56:f6:81:19:56:28:e9:b9:18:d8:56:e1:
2e:80:67:92:44:6e:8e:27:97:04:dc:6f:d0:75:94:64:e0:fd:
db:14:6d:27:89:31:03:f7:54:70:95:af:00:4b:76:f4:ce:10:
08:34:36:e9:dc:08:fe:80:60:06:74:8e:b0:36:eb:da:df:9b:
af:9b:6e:75:5d:3f:cb:0a:53:d6:2e:3b:9e:f4:ce:2d:50:cb:
04:a2:0b:08:d7:66:d3:ce:4a:d5:72:d0:4a:44:15:f3:f0:2a:
2d:db:c9:fc:e0:76:de:f8:6a:1c:07:3f:10:48:18:9e:cd:7a:
47:8a:21:85:a2:4b:22:70:da:15:5a:2c:e0:ca:7e:a8:f6:8c:
39:51:aa:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:05:02 2026 by rpki-client