Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF937C4E342111F1B43A53EECE1D38B0.roa
File: EF937C4E342111F1B43A53EECE1D38B0.roa (raw, json)
Hash identifier: Wq3Vk8KsV1htSuvFhFUb2vdT+GJM0lCaN0r6kaAMHWM=
Subject key identifier: 17:A1:B8:55:05:8A:50:6F:B8:4C:2A:9F:D8:05:C8:A5:91:75:17:A6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C408
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF937C4E342111F1B43A53EECE1D38B0.roa
Signing time: Thu 09 Apr 2026 14:39:39 +0000
ROA not before: Thu 09 Apr 2026 14:39:34 +0000
ROA not after: Mon 09 Apr 2029 14:39:34 +0000
asID: 17561
IP address blocks: 154.93.222.0/24 maxlen: 24
154.93.223.0/24 maxlen: 24
154.93.224.0/24 maxlen: 24
154.93.225.0/24 maxlen: 24
154.93.226.0/24 maxlen: 24
154.93.227.0/24 maxlen: 24
154.93.228.0/24 maxlen: 24
154.93.229.0/24 maxlen: 24
154.93.230.0/24 maxlen: 24
154.93.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115720 (0x1c408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 14:39:34 2026 GMT
Not After : Apr 9 14:39:34 2029 GMT
Subject: CN=69d7ba2a-e288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fa:13:a1:2e:ba:13:8e:6e:6e:7c:96:ea:15:
b3:0c:9b:ac:1f:f9:22:cc:71:37:5c:d9:39:0f:3d:
15:22:93:27:f8:8f:bb:56:6b:2d:a2:2d:12:b9:1c:
11:34:c2:43:27:3b:f1:d2:8f:3a:3b:5f:85:ba:71:
3f:65:c6:c2:11:4b:aa:30:ca:2e:35:5a:69:e7:21:
41:a9:66:27:19:27:37:53:4b:6b:3b:5f:f2:d0:7c:
b4:09:f0:40:89:d0:76:31:cd:34:da:34:43:e1:a1:
f1:09:34:5a:d6:58:28:51:84:4e:2d:d1:6d:67:f0:
96:1f:18:bb:63:75:11:69:4c:63:a3:e5:90:7b:4f:
a1:c9:e8:c3:06:c1:b4:e2:b8:b7:7e:c9:0e:b9:8d:
20:ac:dc:ed:a9:55:0d:3b:54:3b:c4:26:cc:bd:e2:
c8:44:bc:fd:e1:a5:39:83:b8:64:ef:db:c2:01:5d:
18:fa:e4:22:3d:ad:b2:5f:4d:83:c3:19:33:df:a2:
b1:0b:ac:b5:d7:7f:31:79:34:7a:19:ae:bf:09:4e:
32:cf:f6:cd:ff:fb:dd:de:db:c7:68:cd:b9:a6:79:
28:e6:c8:6c:e2:72:f2:d9:0e:e5:07:13:bf:e8:04:
47:1d:5a:08:da:5d:02:0c:8d:a0:0f:42:d3:92:c7:
9a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A1:B8:55:05:8A:50:6F:B8:4C:2A:9F:D8:05:C8:A5:91:75:17:A6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF937C4E342111F1B43A53EECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.222.0-154.93.231.255
Signature Algorithm: sha256WithRSAEncryption
41:72:55:3f:f9:b9:1e:d6:36:1e:a7:51:56:c8:4e:86:1b:ec:
c9:f9:3f:e3:71:9e:51:95:ca:6a:83:10:de:a4:3c:74:8f:34:
3b:3c:7a:c9:69:69:e0:e3:4c:7d:46:69:70:47:ee:2a:6f:2a:
f8:53:b9:19:c1:41:d3:2a:89:8b:44:52:10:b8:73:a4:a2:3a:
cc:2e:f0:f9:12:57:8f:b9:a4:43:f1:b4:8a:eb:c2:e0:3d:08:
4e:ef:f4:93:ff:8d:55:ce:8e:2f:25:a5:58:1b:68:3c:a7:ba:
27:5e:38:a5:af:56:7c:20:ca:a9:b3:34:22:20:28:a5:bf:a1:
96:bc:bf:ae:6b:10:ef:3a:df:6e:fb:41:ac:57:ec:4b:75:74:
64:59:da:73:64:fe:a8:0c:11:af:b0:40:55:48:34:57:58:18:
01:a7:8d:4d:9e:2b:23:9d:cc:ff:ab:c8:0a:1a:dd:cc:39:ce:
24:07:4e:5e:4c:2b:6d:f6:5c:68:84:37:7e:fd:5f:af:e1:32:
98:17:1e:31:3e:5a:24:40:78:8e:fd:a8:2e:50:e0:ae:8a:67:
9a:19:09:35:72:69:7d:ca:3f:6c:e1:56:94:82:c4:73:74:05:
08:68:fa:a0:99:cf:8d:c7:cc:fc:bf:97:ed:02:89:68:35:6c:
99:5a:d6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:20:09 2026 by rpki-client