Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0413A4BC1E0D11F1ADC3137EDAE4EC9C.roa
File: 0413A4BC1E0D11F1ADC3137EDAE4EC9C.roa (raw, json)
Hash identifier: Uq/R55QqG1/1c1t4d6WejHD5XvbjrA+9Cz2aX9AhsR8=
Subject key identifier: 82:25:43:44:64:C2:81:26:EE:33:CA:78:82:E7:A5:81:61:65:5A:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF10
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0413A4BC1E0D11F1ADC3137EDAE4EC9C.roa
Signing time: Thu 12 Mar 2026 12:14:28 +0000
ROA not before: Thu 12 Mar 2026 12:14:24 +0000
ROA not after: Fri 17 Apr 2026 12:14:24 +0000
asID: 22773
IP address blocks: 154.194.3.0/24 maxlen: 24
154.194.6.0/24 maxlen: 24
154.194.63.0/24 maxlen: 24
154.194.66.0/24 maxlen: 24
154.194.240.0/23 maxlen: 24
154.198.6.0/23 maxlen: 24
154.198.14.0/23 maxlen: 24
154.198.17.0/24 maxlen: 24
154.198.18.0/23 maxlen: 24
154.198.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114448 (0x1bf10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 12:14:24 2026 GMT
Not After : Apr 17 12:14:24 2026 GMT
Subject: CN=69b2ae24-e77b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:12:34:e4:d6:64:7b:48:2a:50:2b:cd:63:ca:
42:a3:64:c7:c2:5d:11:3c:c8:39:dc:ee:7c:f3:9b:
2d:55:d9:16:85:b8:39:6d:10:44:ce:0f:d9:bb:39:
22:7a:69:78:d1:4a:cd:04:33:0c:5d:18:15:c6:41:
d8:3d:30:30:8a:85:3b:d7:e8:21:64:56:28:33:38:
c5:41:65:19:c8:bb:db:63:70:7a:69:73:de:45:00:
56:86:c3:57:11:cd:f6:cd:95:f2:ba:5a:b0:69:8d:
42:76:62:4e:2c:e7:86:aa:fe:d2:7b:46:60:14:8c:
34:89:ee:24:bd:15:2d:8d:03:d3:fc:ea:f5:c1:dc:
7a:21:22:96:ae:e9:0a:12:20:aa:bf:ba:0b:64:af:
c1:89:90:97:2e:0e:88:19:9b:a2:35:8d:bc:ba:5c:
9c:c4:d6:f4:85:50:f4:d2:b9:b9:b4:45:37:44:c8:
68:35:8b:33:12:eb:25:7c:b8:70:ef:48:e4:0b:1b:
85:e7:af:00:20:d7:39:23:90:51:3f:2b:f9:89:ae:
b6:d7:9a:2c:67:10:67:71:ec:e1:5e:3a:b6:07:7e:
3b:ae:5b:6f:cf:c1:03:89:c9:20:d0:76:61:28:4d:
97:88:bd:4e:1c:bf:65:c6:4f:05:8b:69:b4:34:cd:
c9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:25:43:44:64:C2:81:26:EE:33:CA:78:82:E7:A5:81:61:65:5A:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0413A4BC1E0D11F1ADC3137EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.3.0/24
154.194.6.0/24
154.194.63.0/24
154.194.66.0/24
154.194.240.0/23
154.198.6.0/23
154.198.14.0/23
154.198.17.0-154.198.19.255
154.198.190.0/24
Signature Algorithm: sha256WithRSAEncryption
16:c1:b1:3a:69:48:57:c6:5f:8a:ef:2c:f4:69:dd:5d:8b:98:
d3:ef:d0:dd:d9:b8:52:4d:5c:4d:e7:63:37:be:f2:40:a8:5f:
98:cd:74:e3:67:c4:c7:1a:f9:9b:ca:31:29:15:a4:d8:49:cc:
db:a1:38:1b:32:28:19:15:bc:a7:14:e8:b7:20:7e:09:6e:00:
af:21:77:42:ae:55:6f:dd:8d:9c:60:fe:f1:1b:89:fc:87:29:
c5:20:1e:4c:d0:b7:b0:36:a9:3c:d0:80:a7:49:3f:6e:f4:f5:
36:81:0f:73:85:73:95:1e:e1:83:96:e6:6a:6e:52:1d:8b:fb:
fb:be:82:64:1b:de:09:35:b4:5f:77:ed:3a:d8:0e:75:cb:d7:
d2:fd:76:c1:76:57:ad:d5:58:12:f9:14:7d:a6:28:ee:ea:97:
94:fe:d8:1d:cd:1e:d4:b5:de:4a:bc:bb:85:11:c8:2f:37:0d:
16:14:69:c2:ed:5a:fc:0d:46:1a:3a:28:1c:99:03:e1:c0:3d:
11:23:a9:53:ee:ae:87:3c:7a:0e:6d:98:37:82:81:00:4a:bd:
1d:04:d6:9d:d6:a5:1f:80:94:8d:c2:43:48:02:c6:83:23:3a:
63:c6:56:73:3e:01:c5:15:f0:b5:67:dd:77:2f:0f:2f:c0:0d:
9a:5e:0a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:48 2026 by rpki-client