Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4565B46FEA111F0AB3C21A9DAE4EC9C.roa
File: D4565B46FEA111F0AB3C21A9DAE4EC9C.roa (raw, json)
Hash identifier: nv5kbQX5dFqKVPq8FqTxIvqdtHd3iTUX5XO8G8igSfw=
Subject key identifier: 18:A3:7B:DE:B1:46:74:82:7D:62:95:E3:38:C7:0D:03:FD:28:D4:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B7EA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4565B46FEA111F0AB3C21A9DAE4EC9C.roa
Signing time: Sat 31 Jan 2026 12:39:06 +0000
ROA not before: Sat 31 Jan 2026 12:39:00 +0000
ROA not after: Sun 08 Mar 2026 12:39:00 +0000
asID: 44559
IP address blocks: 154.209.19.0/24 maxlen: 24
154.209.95.0/24 maxlen: 24
154.209.132.0/24 maxlen: 24
154.209.133.0/24 maxlen: 24
154.209.135.0/24 maxlen: 24
154.209.136.0/24 maxlen: 24
154.209.137.0/24 maxlen: 24
154.209.138.0/24 maxlen: 24
154.209.139.0/24 maxlen: 24
154.209.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112618 (0x1b7ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 12:39:00 2026 GMT
Not After : Mar 8 12:39:00 2026 GMT
Subject: CN=697df7ea-14d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:07:be:21:9b:9f:d2:1d:ae:4a:84:c7:51:5d:
15:97:e7:ea:85:cd:07:c1:db:23:54:fd:89:6d:2b:
2c:b8:09:c3:5a:8f:c9:8d:aa:cc:ad:c6:1f:19:53:
ec:a7:af:83:cc:5b:98:5e:f8:49:04:ae:2c:ee:f4:
0f:fb:06:1d:6c:8d:0c:ab:93:d9:ba:84:dc:67:95:
31:47:81:26:3a:00:37:1f:d1:f6:b9:0a:bf:8f:fb:
cd:b1:46:d6:c8:99:89:40:90:4f:1b:39:4f:be:a8:
80:df:35:b5:94:c0:66:af:7b:bf:9a:08:44:7c:33:
0f:c6:ef:b5:ec:fc:36:02:6e:2a:f5:ff:81:ba:29:
e3:70:ab:c8:ea:66:0d:10:c3:61:69:b2:26:97:23:
79:a7:6d:2b:46:33:d1:fb:5d:cb:83:3b:f4:19:eb:
14:0a:d2:67:0e:30:1a:5f:50:25:f9:ee:11:a1:e9:
e5:e8:97:a0:29:d5:57:d1:7e:79:fd:8d:2b:71:91:
ce:82:c4:41:ce:99:7d:11:c6:87:ab:ba:60:54:34:
bb:e5:09:ea:5b:3f:56:c7:45:41:b0:79:34:82:ed:
38:e3:66:9b:88:28:a4:17:c4:d6:1c:6a:b1:28:a1:
a6:09:36:14:15:c4:09:3d:8d:32:7d:67:25:f4:f3:
2f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A3:7B:DE:B1:46:74:82:7D:62:95:E3:38:C7:0D:03:FD:28:D4:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4565B46FEA111F0AB3C21A9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.19.0/24
154.209.95.0/24
154.209.132.0/23
154.209.135.0-154.209.140.255
Signature Algorithm: sha256WithRSAEncryption
7f:f7:e7:7c:97:71:5b:92:20:d0:dc:9e:f3:b5:a8:18:d0:a4:
41:f0:28:f8:5b:56:62:c4:94:68:42:d1:71:08:4a:8d:36:01:
b4:8a:b9:a3:ed:1c:d0:c5:58:65:b2:db:96:0a:7b:04:4a:19:
0e:6d:83:14:7b:9c:36:00:78:49:89:f7:0a:d3:42:f1:62:86:
8f:49:58:5c:6f:ed:d1:cc:75:52:1b:a7:ee:76:d1:06:d8:75:
90:b9:84:e2:7a:49:a9:8e:e0:68:73:9c:eb:b0:02:ee:fa:7b:
65:d1:a8:40:c2:10:e2:3c:29:bb:ac:71:50:89:bb:19:e7:8d:
f4:45:ba:fd:40:8a:21:e8:38:02:41:9a:33:8c:f2:7e:84:da:
01:fb:f3:c2:9a:e7:38:4f:86:3b:ef:ea:a7:37:dd:c4:bb:fa:
dc:37:d9:3e:aa:84:54:fc:be:80:ae:b3:9a:b9:37:eb:5a:5e:
55:49:eb:e7:cc:93:f3:a2:60:c9:8f:80:f1:2c:30:eb:2c:1f:
22:df:91:15:a4:23:b9:26:1e:89:2f:52:94:13:e7:21:78:4c:
f8:8e:99:10:69:f0:37:7a:1e:b0:0e:02:ba:74:c7:12:4d:17:
30:d0:d8:21:ca:93:60:eb:dd:55:aa:56:02:45:dc:07:d3:7d:
5a:81:b2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:04:55 2026 by rpki-client