Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19B5B04A3EE111F1BDF115A5CE1D38B0.roa
File: 19B5B04A3EE111F1BDF115A5CE1D38B0.roa (raw, json)
Hash identifier: AEowNbN9ibZwlwrrRj7mhE1ijN4VV5XZdSCSi02qMMg=
Subject key identifier: EB:32:F8:6C:03:5C:07:5C:C0:61:1A:3C:3A:EF:C8:27:ED:A9:7A:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19B5B04A3EE111F1BDF115A5CE1D38B0.roa
Signing time: Thu 23 Apr 2026 06:53:15 +0000
ROA not before: Thu 23 Apr 2026 06:53:10 +0000
ROA not after: Mon 25 May 2026 06:53:10 +0000
asID: 205489
IP address blocks: 154.90.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 Apr 2026 00:07:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116419 (0x1c6c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 06:53:10 2026 GMT
Not After : May 25 06:53:10 2026 GMT
Subject: CN=69e9c1db-1cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3a:d0:ef:b6:49:87:8a:6f:4e:42:70:17:a8:
fc:b0:1f:31:19:8a:40:10:7f:af:ae:0b:c8:fe:4d:
bd:02:ef:8f:f3:19:59:b8:28:86:5f:02:70:f2:1b:
f2:cb:1b:78:a3:a7:8b:0b:d3:a6:7c:23:86:d3:54:
68:a5:a5:f0:68:38:d6:0f:c7:a2:b7:c8:11:e1:47:
e3:ea:31:25:43:dd:2b:fe:da:2f:78:33:8b:7c:93:
ef:8e:03:59:7c:92:34:e0:af:4d:cb:79:d8:87:67:
5b:31:81:81:10:47:0c:62:6a:74:64:e3:00:2b:da:
1d:13:62:f0:8a:d7:b1:0b:8d:b4:24:52:93:9f:d9:
6a:e4:a6:6e:fc:de:8b:9c:7f:08:95:26:98:11:2a:
c2:fa:dd:72:1c:39:db:5e:c5:95:cd:cc:d2:5c:16:
0b:31:ec:8a:f5:1b:4b:29:93:c2:92:61:59:2f:25:
dd:02:73:98:7c:c3:10:ef:bc:b0:e7:49:51:f1:de:
bd:3d:61:79:28:00:58:49:a2:9f:e7:ae:19:e6:6e:
3c:8c:85:1b:17:99:8b:43:e4:bc:ed:11:52:8f:64:
cf:5d:72:3d:6e:d5:96:11:41:f9:95:e3:97:b0:aa:
90:6b:d2:52:6c:a0:dd:dd:d2:9a:1f:11:e6:44:33:
92:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:32:F8:6C:03:5C:07:5C:C0:61:1A:3C:3A:EF:C8:27:ED:A9:7A:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19B5B04A3EE111F1BDF115A5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.64.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:18:9b:f9:98:6e:d5:3f:2c:d4:58:37:ae:5f:19:7c:4f:9a:
d5:aa:80:05:da:81:55:eb:ee:1a:97:97:02:cf:52:68:34:af:
11:57:4f:0c:4c:94:16:49:f0:d9:3e:b9:45:a8:59:86:dc:58:
87:45:ff:1e:14:92:30:be:7d:f4:76:b4:8c:c4:6a:05:40:da:
e2:51:2c:f4:fe:dc:a1:8e:d5:ce:1b:79:d0:64:e3:9b:dd:4e:
c2:73:1f:dd:e9:3e:a3:50:e4:27:22:b7:31:d2:77:53:a3:fd:
58:72:b0:4d:f3:e5:2b:a6:ff:fc:cc:74:60:59:63:bb:38:60:
39:e8:22:0f:2c:06:a1:5d:c9:7d:99:8d:4d:f6:ae:23:ef:50:
ca:52:de:85:ed:c0:53:64:b4:96:72:3f:4d:d3:d1:ed:43:71:
47:9f:60:0c:f0:67:39:e7:5f:4b:a2:4f:7e:94:db:01:de:f6:
4a:ec:0a:64:cc:8f:f6:4c:e9:04:c1:28:9c:5a:3f:15:b1:0e:
57:b8:e7:2d:97:b0:47:32:8d:6c:54:4e:17:9f:14:c3:33:4c:
dc:94:c1:bd:85:7d:46:d4:81:dc:e7:37:00:a9:6b:b6:d2:6e:
3d:24:6a:08:55:ce:13:ca:90:85:97:0a:34:58:4b:73:61:78:
41:85:22:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 12:34:56 2026 by rpki-client