Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/116E1752457511F1AACFDAB1CE1D38B0.roa
File: 116E1752457511F1AACFDAB1CE1D38B0.roa (raw, json)
Hash identifier: Sa+5wTq03I+GSg6rGGGiFfVNDnKXUDfDf/qlQ/3/A9w=
Subject key identifier: A2:DD:A7:83:E9:E9:06:BD:43:53:E6:53:6F:5E:2D:41:74:BB:74:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8AD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/116E1752457511F1AACFDAB1CE1D38B0.roa
Signing time: Fri 01 May 2026 15:47:33 +0000
ROA not before: Fri 01 May 2026 15:47:29 +0000
ROA not after: Fri 05 Jun 2026 15:47:29 +0000
asID: 273937
IP address blocks: 154.88.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116909 (0x1c8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 15:47:29 2026 GMT
Not After : Jun 5 15:47:29 2026 GMT
Subject: CN=69f4cb15-bbdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:be:a3:50:98:81:2c:eb:0f:45:3b:7e:93:2f:
c6:8a:8f:17:47:a9:5e:dd:95:05:38:d7:39:45:4f:
53:1f:25:e7:fb:63:ee:04:6d:c0:3a:73:4a:f8:75:
1c:91:21:bc:54:1e:1f:fb:7f:aa:17:0f:8a:19:0f:
50:88:91:91:f0:ce:fd:61:b1:95:d9:24:d2:d3:30:
b2:37:07:49:b6:d1:cb:cf:17:e4:60:24:f4:99:9d:
f5:ca:1b:64:aa:84:b0:16:88:1a:c4:a5:12:61:01:
07:92:46:31:4b:68:fe:70:94:c3:70:41:db:23:84:
61:b6:65:62:14:e2:1c:40:78:c6:0b:a2:c1:69:12:
0d:61:56:33:5c:dd:60:ed:a4:b6:71:39:18:5e:42:
7b:f5:3c:3f:d5:f7:b0:f0:b7:cb:06:0c:67:f3:41:
44:c6:1a:09:e7:58:18:7f:8b:37:30:01:72:94:93:
8a:da:0d:5f:bd:f9:d7:bb:f8:93:cd:c9:ed:e3:e9:
ce:cd:30:10:51:b7:3b:92:e1:e9:04:01:96:e7:ba:
0d:c1:fb:d5:9d:7c:43:ba:e5:b0:7c:1e:99:9f:c0:
f2:a3:3d:03:2b:86:d7:c1:f0:2f:58:d5:7f:1f:3b:
fa:19:70:7b:b5:42:37:0f:0e:a0:be:de:3a:1d:33:
1e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DD:A7:83:E9:E9:06:BD:43:53:E6:53:6F:5E:2D:41:74:BB:74:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/116E1752457511F1AACFDAB1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.186.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:6e:0d:3f:87:8e:bd:aa:77:ba:49:24:7b:28:c8:9b:f9:85:
06:0a:fb:25:2a:b4:7f:72:d6:d1:cf:c2:14:8e:55:ee:ae:dd:
be:ad:46:4f:e0:5f:00:d7:95:37:2c:6b:32:1c:07:e9:0b:bb:
18:9b:35:96:dd:a0:11:d1:0a:b9:5a:10:45:88:22:54:49:57:
86:fb:ed:c1:1f:0d:00:4b:29:6a:06:59:30:bd:d3:d7:2c:13:
97:7e:89:00:8c:ca:2c:8f:a7:5c:0b:3b:27:65:2a:1c:e1:e8:
16:16:c0:e6:03:62:3a:98:50:b2:cd:9a:42:64:4f:4e:ba:9a:
57:a3:ad:b4:c9:6f:48:36:9b:c4:2b:01:f2:6e:9d:76:98:cd:
ae:49:18:3a:6c:36:81:ae:52:b0:fd:aa:5e:21:64:fa:ea:a5:
06:69:fd:61:4c:34:65:f8:bc:9f:0e:82:67:ff:3b:ed:17:da:
0e:9a:71:16:95:e7:5c:e6:a7:58:2a:5c:05:0f:f6:4d:d8:71:
a0:76:b2:ac:73:18:3e:77:32:1a:00:86:6f:13:eb:f9:bf:ee:
fa:05:44:40:e0:de:bc:86:cb:6f:ed:76:44:0e:d2:7c:a8:41:
ed:17:ff:69:6c:eb:ce:55:09:0e:7c:13:2b:d5:9c:7b:7f:23:
b6:08:cf:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:22 2026 by rpki-client