Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A94BD/2340EFBE342611F1AD21E606CF1D38B0/ED340E44376B11F1B04FA1E2CE1D38B0.roa
File: ED340E44376B11F1B04FA1E2CE1D38B0.roa (raw, json)
Hash identifier: 4ObZ7bDEQ2jHZa0f9dc6g+W1O0wVtCUpYVVLDLjdphU=
Subject key identifier: 1F:4D:EA:FC:45:91:C1:0A:83:A2:BF:D5:88:88:47:EF:0A:44:93:B7
Certificate issuer: /CN=F36A94BDAF/serialNumber=C44D32D4917C782BB1DB324AE057087C063C70B9
Certificate serial: 1A
Authority key identifier: C4:4D:32:D4:91:7C:78:2B:B1:DB:32:4A:E0:57:08:7C:06:3C:70:B9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xE0y1JF8eCux2zJK4FcIfAY8cLk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A94BD/2340EFBE342611F1AD21E606CF1D38B0/ED340E44376B11F1B04FA1E2CE1D38B0.roa
Signing time: Mon 13 Apr 2026 19:06:52 +0000
ROA not before: Mon 13 Apr 2026 19:06:36 +0000
ROA not after: Mon 12 Apr 2027 19:06:36 +0000
asID: 327746
IP address blocks: 154.73.100.0/24 maxlen: 24
154.73.101.0/24 maxlen: 24
154.73.102.0/24 maxlen: 24
154.73.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A94BD/2340EFBE342611F1AD21E606CF1D38B0/xE0y1JF8eCux2zJK4FcIfAY8cLk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A94BD/2340EFBE342611F1AD21E606CF1D38B0/xE0y1JF8eCux2zJK4FcIfAY8cLk.mft
rsync://rpki.afrinic.net/repository/afrinic/xE0y1JF8eCux2zJK4FcIfAY8cLk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 05:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A94BDAF, serialNumber=C44D32D4917C782BB1DB324AE057087C063C70B9
Validity
Not Before: Apr 13 19:06:36 2026 GMT
Not After : Apr 12 19:06:36 2027 GMT
Subject: CN=69dd3ecc-1d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c2:06:3a:a1:72:fa:1f:9c:79:d8:cf:c3:3c:
30:9d:33:d1:0f:dc:b3:87:88:6b:e9:d9:9a:96:41:
30:72:c5:44:30:f1:ed:04:f3:51:1b:7f:ed:a8:66:
9e:8c:9d:8d:f3:2c:dc:f0:7b:ff:fd:90:bc:93:1a:
f4:88:f1:9e:cc:c2:67:5e:1c:e1:53:9d:b0:fd:42:
03:cc:67:80:ea:97:5c:be:4d:59:67:1c:6f:a3:06:
8e:c5:ea:63:17:bb:4d:ef:ad:7d:2e:bb:31:95:dd:
ec:2d:aa:94:76:87:21:bf:8b:54:71:da:b2:e9:62:
83:cb:19:1a:e6:6d:20:50:42:e5:59:27:31:97:39:
4a:e8:54:ef:ab:35:d3:bb:b4:d7:9e:6b:30:3c:98:
a2:93:24:e9:28:d4:6d:cc:4f:59:65:29:07:81:58:
46:6b:d5:b1:8c:37:46:01:62:38:3c:27:f6:17:eb:
0f:59:de:39:7f:50:68:fa:94:9a:0c:23:dd:c6:01:
77:75:df:d8:87:3f:6d:4e:47:bc:f4:54:11:00:d7:
bd:62:55:df:74:73:8b:c8:86:b2:b5:1f:a0:f5:03:
67:b6:b4:94:dc:30:9c:40:30:33:8b:7b:a6:87:67:
7a:d7:7e:6b:25:e6:de:b8:ae:a6:e1:7c:d1:12:87:
3f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4D:EA:FC:45:91:C1:0A:83:A2:BF:D5:88:88:47:EF:0A:44:93:B7
X509v3 Authority Key Identifier:
keyid:C4:4D:32:D4:91:7C:78:2B:B1:DB:32:4A:E0:57:08:7C:06:3C:70:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A94BD/2340EFBE342611F1AD21E606CF1D38B0/xE0y1JF8eCux2zJK4FcIfAY8cLk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xE0y1JF8eCux2zJK4FcIfAY8cLk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A94BD/2340EFBE342611F1AD21E606CF1D38B0/ED340E44376B11F1B04FA1E2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.73.100.0/22
Signature Algorithm: sha256WithRSAEncryption
70:de:f2:18:10:a5:94:9f:6a:84:86:85:23:63:60:ed:bb:3c:
fa:9f:1b:98:29:cc:d4:d0:e1:6f:f4:4e:2f:52:91:e8:98:e4:
a4:4c:b6:f7:b6:cd:61:14:c1:56:2a:8d:58:fc:49:e2:b5:5c:
8d:9c:e6:46:70:2c:8d:e6:87:71:51:c1:db:42:89:d3:1c:cd:
6e:bf:75:f7:fc:7e:21:62:29:54:9e:05:af:4c:74:4a:90:d0:
03:a1:6e:9c:0a:6d:3f:35:47:5b:32:c8:11:15:0b:fd:16:56:
5e:22:a9:47:94:1a:80:60:ee:f6:24:86:c9:3e:a4:d1:b5:4b:
9a:ca:3f:ee:ca:b0:96:96:75:1b:3f:9e:72:f3:53:b8:ae:ad:
6c:b0:c4:9c:ee:ae:6e:70:bc:bb:b8:a5:49:f4:a9:0a:d8:fa:
af:0c:ae:8d:30:f0:93:34:23:77:9c:9a:2f:d7:18:cd:94:78:
49:98:2c:14:33:9f:40:cd:ef:67:97:59:82:27:8c:c2:6c:ce:
7a:9d:d4:10:6d:88:b4:89:ce:e0:0e:1f:15:1a:97:0c:27:0c:
f6:29:12:8e:27:33:2f:7e:58:ba:26:3d:6c:80:97:be:f0:32:
79:c1:01:d7:b2:64:2b:5d:c3:f6:c7:59:ab:73:34:2f:39:6c:
29:30:b9:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:29:11 2026 by rpki-client