Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09AE3E24458511F1AB803610CF1D38B0.roa
File: 09AE3E24458511F1AB803610CF1D38B0.roa (raw, json)
Hash identifier: w4aQAKX+Js2PUe31UUoAAFvP3amRtsIXy0ZprQ1jcJA=
Subject key identifier: 38:1C:03:AF:B9:43:FF:55:A0:9D:B4:02:BE:F7:82:5B:FA:CB:8A:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8CF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09AE3E24458511F1AB803610CF1D38B0.roa
Signing time: Fri 01 May 2026 17:41:53 +0000
ROA not before: Fri 01 May 2026 17:41:48 +0000
ROA not after: Fri 05 Jun 2026 17:41:48 +0000
asID: 202656
IP address blocks: 154.218.30.0/24 maxlen: 24
154.219.16.0/24 maxlen: 24
154.219.24.0/24 maxlen: 24
154.219.28.0/24 maxlen: 24
154.219.207.0/24 maxlen: 24
154.219.211.0/24 maxlen: 24
154.219.222.0/24 maxlen: 24
154.219.230.0/24 maxlen: 24
154.219.232.0/24 maxlen: 24
154.219.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116943 (0x1c8cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 17:41:48 2026 GMT
Not After : Jun 5 17:41:48 2026 GMT
Subject: CN=69f4e5e0-483b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f8:52:f7:07:b9:55:71:a9:aa:5a:f3:84:36:
7f:bf:e3:fc:ee:23:df:2d:14:15:b9:25:ff:42:ae:
43:fa:48:90:f5:fa:3e:57:28:21:8e:1b:cf:23:f9:
31:aa:f4:24:80:80:cb:bb:7b:d7:a5:8c:d7:f2:20:
44:42:0b:0a:50:66:de:67:f4:1b:3f:d2:ff:04:5e:
11:34:c0:3c:fc:91:03:78:b0:08:d8:c2:1d:ae:94:
36:7f:88:0f:a5:3c:7f:19:4f:54:f2:60:6a:61:6e:
e7:0f:5e:61:31:a9:01:e7:68:22:63:01:89:ed:ac:
d6:12:91:bb:68:02:1c:d6:16:b4:9d:ce:1e:bc:c1:
09:f9:dd:27:19:9e:7a:6c:29:56:11:56:58:9c:01:
71:90:ad:88:ba:b2:e0:6a:90:d6:c6:d0:aa:ce:13:
3e:8f:df:02:ed:aa:fa:d0:52:51:00:b2:71:68:71:
d5:c2:86:df:6c:0d:7d:ad:f9:3c:90:32:8a:94:d8:
de:35:03:93:4a:b2:ff:e1:fe:a2:80:12:5b:64:b7:
bc:bb:eb:0a:dc:4b:5a:c4:63:03:28:c3:4d:a9:d8:
1f:ab:8a:ab:2c:1f:e6:62:99:b2:a7:71:bb:91:84:
d8:89:c1:90:85:7d:6f:11:67:7b:7f:d3:26:75:75:
58:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:1C:03:AF:B9:43:FF:55:A0:9D:B4:02:BE:F7:82:5B:FA:CB:8A:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09AE3E24458511F1AB803610CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.30.0/24
154.219.16.0/24
154.219.24.0/24
154.219.28.0/24
154.219.207.0/24
154.219.211.0/24
154.219.222.0/24
154.219.230.0/24
154.219.232.0/24
154.219.245.0/24
Signature Algorithm: sha256WithRSAEncryption
96:f4:a7:b3:8b:c4:ce:29:e8:aa:5d:e9:0f:ed:d8:4a:43:09:
be:c2:b2:da:05:6e:7e:41:31:78:fa:9c:6c:99:de:f1:4d:c6:
36:df:97:98:77:aa:f9:e3:b4:76:ee:c2:4b:de:79:cd:8b:02:
dd:af:9b:85:90:da:4d:49:55:42:d8:9d:ad:99:20:12:7e:08:
04:3e:9b:ca:f6:5d:db:dd:91:a9:2b:a0:3f:8f:40:72:37:01:
11:46:73:68:69:98:23:99:bb:08:49:dd:22:cc:9a:2b:75:5a:
8a:23:ca:db:d6:82:58:2a:3b:13:ad:89:e2:44:3c:e8:b0:ad:
6a:a7:5b:de:46:cb:62:a5:e4:9c:6c:25:e4:49:98:08:ed:8e:
84:7b:58:47:41:f7:20:cd:b0:7a:ee:f8:7b:53:ee:e8:10:f5:
5c:5c:91:52:85:b2:72:14:6e:02:4a:0f:1b:0e:b7:f7:ca:0b:
6a:17:8a:1f:21:80:c2:11:da:6d:b3:4b:58:65:f6:e8:fd:a5:
b4:5c:0f:3d:db:6f:83:e8:b1:a3:25:8b:25:6d:96:71:59:53:
7c:63:78:28:de:fb:2f:05:b0:71:3b:2c:30:68:90:1f:7b:67:
4c:b7:11:77:33:94:bd:b8:7d:0c:89:de:62:58:fc:2b:57:3e:
96:c9:0e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:02:06 2026 by rpki-client