Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AF355DC2F3411F1869B43CADAE4EC9C.roa
File: 1AF355DC2F3411F1869B43CADAE4EC9C.roa (raw, json)
Hash identifier: 8RMfhPtiBxQIn/P7VvjeVlWHajBF7mZrnxy17i2L4Mk=
Subject key identifier: 80:9D:6B:8F:D9:4D:D2:83:39:D1:A3:A7:52:B6:D3:86:FD:9A:E1:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C2A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AF355DC2F3411F1869B43CADAE4EC9C.roa
Signing time: Fri 03 Apr 2026 08:07:06 +0000
ROA not before: Fri 03 Apr 2026 08:07:01 +0000
ROA not after: Tue 14 Jul 2026 08:07:01 +0000
asID: 211826
IP address blocks: 154.197.91.0/24 maxlen: 24
154.197.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 Apr 2026 00:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115362 (0x1c2a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 08:07:01 2026 GMT
Not After : Jul 14 08:07:01 2026 GMT
Subject: CN=69cf752a-156d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:4d:8c:5a:fe:01:86:d2:f2:f1:78:81:bd:
24:c1:24:ca:8f:92:87:3e:f8:53:42:59:0a:66:7c:
23:73:79:21:ba:1c:ef:d0:c9:bb:dc:91:f0:31:15:
6d:03:dc:c8:51:c0:ae:ff:11:02:42:cf:87:4c:42:
62:83:d3:5a:9a:0f:fd:de:22:e9:34:77:21:88:9c:
de:66:bd:93:40:f6:1c:a5:43:19:30:19:c7:85:9e:
9e:bf:01:e6:03:46:0a:2b:71:45:25:c4:b6:83:27:
70:92:d0:d4:54:4c:d1:1d:5f:35:df:35:4b:a5:87:
8c:3f:9e:53:97:47:58:7c:96:43:25:fb:ba:ce:e3:
99:8c:dc:4d:0d:13:b2:db:19:25:2b:8c:c5:11:2a:
92:44:49:cf:22:b0:da:84:b5:e7:00:86:db:5a:ab:
d6:7e:fe:ff:31:af:69:62:47:b3:96:7e:77:c4:de:
9f:4d:9a:dc:23:2a:35:e1:9e:4b:71:dd:46:f9:52:
22:2d:13:fb:9f:67:ea:27:e1:60:40:9a:cb:93:de:
c2:4f:2c:48:71:ed:85:f9:f7:04:06:fa:5d:c6:f4:
68:16:cc:0b:81:0f:83:f1:79:cf:e6:5d:a4:7c:fe:
1b:14:96:47:1e:c9:28:b1:61:1d:ed:03:3d:48:e1:
60:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9D:6B:8F:D9:4D:D2:83:39:D1:A3:A7:52:B6:D3:86:FD:9A:E1:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AF355DC2F3411F1869B43CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.91.0/24
154.197.110.0/24
Signature Algorithm: sha256WithRSAEncryption
68:99:a7:17:1d:64:9c:fe:ef:d7:b4:1d:cd:17:26:fb:7c:ec:
7e:3c:ee:7c:89:58:72:96:ff:f5:29:e3:ec:52:f3:c0:46:d8:
6c:6c:dc:d4:15:d1:19:ea:69:5c:54:d0:aa:b9:54:f4:24:21:
3d:61:cf:10:37:d1:44:c2:69:96:ba:0d:32:87:1c:9e:64:14:
b6:c8:3d:4f:15:b0:52:78:5c:46:2f:02:99:62:5a:b3:d8:af:
36:aa:3b:23:70:b4:7e:2d:e9:f4:27:5b:f0:64:d8:68:07:75:
36:ed:91:64:ee:5d:d3:10:3e:b8:5d:dd:13:3a:8e:24:fc:fa:
ae:2f:fa:16:d5:d4:ed:e4:a7:e4:a1:d0:8b:d0:56:48:cb:7a:
3e:88:a8:49:f3:75:a6:6c:3e:39:0c:57:fc:ab:e8:ec:ea:4c:
db:88:05:f8:69:17:4d:b3:23:03:78:de:91:9f:30:e6:45:7b:
bc:00:e1:03:99:7c:ff:9d:9b:23:5b:22:c0:e5:4d:ad:ea:e1:
0b:63:15:f5:01:18:93:78:8f:5b:36:ef:89:cc:38:0f:6f:f9:
7f:3c:28:de:23:fc:7e:2f:cd:f3:09:47:fa:cf:17:ef:55:94:
1f:d6:49:b5:5a:80:5a:56:a9:2e:b7:62:dd:b7:75:fc:2d:26:
85:c3:2d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 5 16:15:28 2026 by rpki-client