Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F84C6EC8FF4B11F0A69E16C3DAE4EC9C.roa
File: F84C6EC8FF4B11F0A69E16C3DAE4EC9C.roa (raw, json)
Hash identifier: TWPNn5/huZVBCsw1rnizcYDXsuvqRdqqBm9yv3JbeUA=
Subject key identifier: AA:90:18:83:55:E1:E0:F1:97:52:DE:66:07:11:ED:E6:B1:26:3B:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B800
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F84C6EC8FF4B11F0A69E16C3DAE4EC9C.roa
Signing time: Sun 01 Feb 2026 08:57:00 +0000
ROA not before: Sun 01 Feb 2026 08:56:55 +0000
ROA not after: Sun 08 Mar 2026 08:56:55 +0000
asID: 44559
IP address blocks: 154.219.73.0/24 maxlen: 24
154.219.74.0/24 maxlen: 24
154.219.75.0/24 maxlen: 24
154.219.76.0/24 maxlen: 24
154.219.77.0/24 maxlen: 24
154.219.78.0/24 maxlen: 24
154.219.79.0/24 maxlen: 24
154.219.80.0/24 maxlen: 24
154.219.81.0/24 maxlen: 24
154.219.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112640 (0x1b800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 1 08:56:55 2026 GMT
Not After : Mar 8 08:56:55 2026 GMT
Subject: CN=697f155c-d11d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3c:7b:e5:15:03:98:c5:7e:fa:0c:b5:56:1a:
b2:63:4b:9c:a5:f1:3f:7b:b4:84:36:29:ae:a6:cf:
51:17:99:94:79:76:77:05:cf:ce:f9:e1:af:17:4d:
56:de:5e:f8:63:4c:d7:a7:94:8f:da:de:3b:ec:7c:
c0:8f:f8:00:49:2c:b7:34:e2:04:b4:ea:11:01:5a:
2c:00:4e:c4:85:c8:67:31:39:a1:3f:c4:de:2e:f8:
d5:cf:51:48:50:ca:10:30:8a:d7:35:9e:84:8f:e2:
bd:43:ed:64:28:62:f9:c3:c7:08:6a:00:7f:fc:83:
ed:a1:ae:fb:28:0c:db:23:32:75:07:7f:ec:50:d6:
66:14:21:12:37:de:ac:6e:20:70:bb:80:d2:bc:a5:
9a:5c:3a:30:59:87:ae:aa:32:01:21:85:06:96:9e:
27:c0:d9:4a:08:f4:9f:6b:c2:3d:28:4b:d8:5b:01:
fb:dd:fb:2a:b1:43:c0:19:1a:1a:ac:ce:a1:2f:ef:
f8:87:99:f4:ad:37:79:68:31:22:a5:9a:13:8a:09:
3e:60:b8:46:73:68:ec:bc:4e:d8:dc:0a:25:7a:0a:
2b:73:53:54:82:16:c8:0d:c1:07:63:53:cb:02:fa:
fc:a0:b4:ab:b5:24:70:71:ea:a7:23:f5:f3:a1:00:
7d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:90:18:83:55:E1:E0:F1:97:52:DE:66:07:11:ED:E6:B1:26:3B:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F84C6EC8FF4B11F0A69E16C3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.73.0-154.219.82.255
Signature Algorithm: sha256WithRSAEncryption
18:42:6f:24:88:90:5c:a3:a8:61:be:6c:e5:7f:9b:c5:c4:d9:
12:2d:a9:26:70:a1:1b:31:25:bc:64:e9:8f:da:2a:7f:17:f0:
de:b5:5a:be:94:75:fd:58:c0:e5:8b:1f:f6:22:c4:ef:22:70:
88:97:a8:57:59:39:26:00:32:8d:cf:29:0f:7b:aa:8d:ef:50:
d3:87:af:ff:d7:a1:46:da:22:7f:c3:ef:c1:1c:ac:3c:74:95:
ac:d7:c5:54:3e:0a:a6:52:74:26:d2:b4:9d:fd:65:3a:91:ce:
8f:b5:38:8c:9d:3d:56:90:71:22:57:57:68:b6:2e:7d:df:ae:
13:7c:27:a0:95:26:87:94:5d:ac:01:17:fd:b2:0c:3c:a5:0c:
45:2a:e8:95:e3:a0:fa:fb:c1:e5:a0:0d:ed:bd:d1:2a:f4:15:
15:a6:68:69:10:83:bc:93:38:a8:42:69:7a:f9:da:f9:fb:c0:
3c:b6:b9:5b:bd:07:c4:65:25:00:d3:1c:4a:ec:b3:9a:5e:0e:
07:b3:e8:7c:3b:5c:71:7e:55:c3:4e:3d:fe:e3:2d:d5:24:26:
22:51:8b:9b:d9:9a:4e:a7:9c:3d:ed:72:aa:15:69:26:1e:e8:
ee:86:2b:4c:a5:b7:2d:fc:62:bd:26:df:e7:a3:84:43:7c:86:
c7:cb:1f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:18:39 2026 by rpki-client