Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA09008A155611F1BF1359B1DAE4EC9C.roa
File: EA09008A155611F1BF1359B1DAE4EC9C.roa (raw, json)
Hash identifier: idfNQLMHEBTK86XlGGPW531yX6Ae6Miy8Af64JfEE9o=
Subject key identifier: 32:0B:79:66:54:C5:EC:78:BB:83:10:20:6D:F9:14:50:7B:95:22:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BC74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA09008A155611F1BF1359B1DAE4EC9C.roa
Signing time: Sun 01 Mar 2026 10:10:46 +0000
ROA not before: Sun 01 Mar 2026 10:10:42 +0000
ROA not after: Sun 05 Apr 2026 10:10:42 +0000
asID: 49505
IP address blocks: 154.209.208.0/24 maxlen: 24
154.209.209.0/24 maxlen: 24
154.209.210.0/24 maxlen: 24
154.209.211.0/24 maxlen: 24
154.209.212.0/24 maxlen: 24
154.209.213.0/24 maxlen: 24
154.209.214.0/24 maxlen: 24
154.209.215.0/24 maxlen: 24
154.209.216.0/24 maxlen: 24
154.209.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113780 (0x1bc74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 10:10:42 2026 GMT
Not After : Apr 5 10:10:42 2026 GMT
Subject: CN=69a410a6-e23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8e:de:0f:22:d5:06:7a:81:4a:1f:5c:b0:05:
23:41:df:08:1b:b9:56:55:43:82:76:e7:fe:16:65:
8c:e5:7d:17:70:0c:ba:1a:85:ff:89:f5:95:56:85:
75:9f:09:3d:1e:e6:03:8e:d0:7c:10:46:e1:9d:9e:
68:b3:0b:50:69:e0:2f:95:70:5f:65:0d:c7:03:f7:
87:58:b7:93:6c:6a:8d:9e:73:95:f4:d3:55:cb:81:
30:d9:22:2d:a9:43:44:8d:86:e0:5e:5f:44:3c:3d:
40:e3:e6:ac:24:d7:5a:67:aa:f7:02:97:b5:53:a3:
cf:c2:eb:cb:db:93:ca:21:45:8b:2e:ee:93:b6:77:
3d:7e:4b:c1:d9:d5:70:ae:64:f6:72:fa:f7:9f:38:
6f:9e:f6:54:9a:b3:44:ea:9b:3a:87:7e:bc:12:e5:
0e:f3:98:45:db:68:32:b8:bc:97:68:a8:c1:20:a1:
31:e8:04:42:d2:f3:7c:d5:b8:9b:05:ca:63:1f:07:
b9:68:56:18:86:59:f8:97:1b:b5:0a:60:24:09:cb:
4b:7b:a5:08:ce:f9:33:a4:b5:3b:46:b3:99:53:2a:
3f:f5:e7:dc:52:b1:07:70:4b:1d:64:a4:d3:5d:f5:
44:9a:d7:bb:52:31:8e:98:17:23:6c:1b:da:3d:84:
e6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0B:79:66:54:C5:EC:78:BB:83:10:20:6D:F9:14:50:7B:95:22:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA09008A155611F1BF1359B1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.208.0-154.209.217.255
Signature Algorithm: sha256WithRSAEncryption
95:49:60:02:80:93:b9:fa:a3:16:c0:fe:e4:7e:7d:1a:01:ad:
f7:a0:38:3f:71:c9:54:bd:09:82:c8:e5:4b:19:f1:c2:e6:34:
09:f7:a4:5c:a6:ab:ec:83:8f:87:e2:bb:c0:18:53:50:4c:db:
e5:8c:26:26:6e:d7:f4:21:66:33:9b:d3:56:a6:c2:10:10:75:
ee:c8:dd:17:7d:c5:00:c3:84:18:69:85:d9:e7:a4:f6:c2:09:
ed:6f:e9:6c:fa:14:dd:41:d2:a4:f1:b8:08:8e:ec:f8:91:d9:
dd:49:00:42:1f:66:2d:8a:2f:74:62:f8:2e:08:6b:ab:91:ea:
17:3e:4e:d7:a1:a1:80:9b:85:9d:4e:f4:5f:bc:9b:7d:ce:91:
05:9c:c0:34:d5:fa:16:41:03:e8:1e:3a:99:02:41:88:c6:92:
4e:bf:bb:a4:01:a3:44:e4:18:72:a6:33:1b:bc:a2:82:0d:b5:
ce:ff:4f:cd:49:a9:2a:6f:47:f2:ec:1e:cb:76:32:e0:0b:67:
36:af:ba:a2:d1:19:32:94:59:b5:d4:3b:14:c6:64:80:7e:ab:
55:5d:62:74:d4:6b:19:ea:fb:67:34:78:2f:c1:55:0e:27:79:
da:94:2d:15:7b:7d:1d:92:8f:63:3f:ae:5b:c5:38:15:d2:f0:
bd:eb:3c:ac
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAbx0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzAxMTAxMDQyWhcNMjYwNDA1MTAxMDQyWjAYMRYw
FAYDVQQDEw02OWE0MTBhNi1lMjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx47eDyLVBnqBSh9csAUjQd8IG7lWVUOCduf+FmWM5X0XcAy6GoX/ifWV
VoV1nwk9HuYDjtB8EEbhnZ5oswtQaeAvlXBfZQ3HA/eHWLeTbGqNnnOV9NNVy4Ew
2SItqUNEjYbgXl9EPD1A4+asJNdaZ6r3Ape1U6PPwuvL25PKIUWLLu6Ttnc9fkvB
2dVwrmT2cvr3nzhvnvZUmrNE6ps6h368EuUO85hF22gyuLyXaKjBIKEx6ARC0vN8
1bibBcpjHwe5aFYYhln4lxu1CmAkCctLe6UIzvkzpLU7RrOZUyo/9efcUrEHcEsd
ZKTTXfVEmte7UjGOmBcjbBvaPYTmFQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFDIL
eWZUxex4u4MQIG35FFB7lSL8MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQTA5MDA4QTE1NTYxMUYxQkYxMzU5QjFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBASa0dADBAGa0dgwDQYJ
KoZIhvcNAQELBQADggEBAJVJYAKAk7n6oxbA/uR+fRoBrfegOD9xyVS9CYLI5UsZ
8cLmNAn3pFymq+yDj4fiu8AYU1BM2+WMJiZu1/QhZjOb01amwhAQde7I3Rd9xQDD
hBhphdnnpPbCCe1v6Wz6FN1B0qTxuAiO7PiR2d1JAEIfZi2KL3Ri+C4Ia6uR6hc+
TtehoYCbhZ1O9F+8m33OkQWcwDTV+hZBA+geOpkCQYjGkk6/u6QBo0TkGHKmMxu8
ooINtc7/T81JqSpvR/LsHst2MuALZzavuqLRGTKUWbXUOxTGZIB+q1VdYnTUaxnq
+2c0eC/BVQ4nedqULRV7fR2Sj2M/rlvFOBXS8L3rPKw=
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:50:36 2026 by rpki-client