Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ED0DC3815DA11F19C15ACCBDAE4EC9C.roa
File: 1ED0DC3815DA11F19C15ACCBDAE4EC9C.roa (raw, json)
Hash identifier: 6YbY1YNhyBsq0+gHHdRnWr1KaxlZv5m/RwACItdiXKc=
Subject key identifier: FE:7C:FA:EE:82:4A:AA:F2:CB:BD:80:A4:3A:C3:44:BB:1C:28:DB:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCA7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ED0DC3815DA11F19C15ACCBDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 01:49:59 +0000
ROA not before: Mon 02 Mar 2026 01:49:55 +0000
ROA not after: Wed 08 Apr 2026 01:49:55 +0000
asID: 20326
IP address blocks: 154.193.36.0/22 maxlen: 24
154.193.56.0/22 maxlen: 24
154.193.80.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Mar 2026 00:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113831 (0x1bca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 01:49:55 2026 GMT
Not After : Apr 8 01:49:55 2026 GMT
Subject: CN=69a4ecc7-a6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:45:d3:47:b9:3e:a7:95:d7:58:c8:97:9a:e2:
57:05:7d:53:64:06:73:0d:25:21:de:e5:42:68:24:
50:50:db:19:dc:12:16:d7:92:ca:08:27:e5:a2:92:
b5:12:34:62:9d:a8:16:c9:26:10:f7:2a:0b:25:44:
6a:a9:bf:6a:fd:d9:30:c8:dc:f5:a0:28:83:af:ae:
51:31:9b:ae:c5:af:91:de:12:03:f1:89:98:ee:4a:
50:9f:a7:48:e2:ec:ff:5b:b5:60:22:2a:e1:ea:3d:
75:bc:d9:ab:05:54:4a:82:c9:2b:a9:19:5e:02:ca:
87:96:33:56:04:f5:61:38:c3:1a:d0:d6:2b:09:3a:
35:f2:20:04:3d:9c:48:17:cc:77:0a:c0:5c:34:d2:
3c:87:c7:b2:21:24:34:77:26:43:2f:7f:12:b1:4c:
a1:57:52:c4:65:14:04:80:6f:74:e4:01:80:f4:f9:
61:c3:bf:ed:22:85:af:eb:d7:97:c8:81:62:fe:4c:
15:62:0f:72:92:9a:04:29:12:e0:5d:6a:26:4f:4b:
04:7f:41:d3:43:6a:fc:6f:10:04:68:fe:5b:de:01:
b8:2e:06:e2:3f:93:4a:f3:77:9a:e7:13:77:16:7f:
e6:b8:61:2e:9b:25:77:6a:8c:aa:7d:89:41:40:39:
00:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:7C:FA:EE:82:4A:AA:F2:CB:BD:80:A4:3A:C3:44:BB:1C:28:DB:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ED0DC3815DA11F19C15ACCBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.36.0/22
154.193.56.0/22
154.193.80.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:17:30:c3:a9:a4:11:ca:7e:8e:a2:12:45:59:b5:f1:43:f9:
5d:62:20:df:43:58:b6:f3:a7:bc:84:fc:29:47:5e:ab:a6:06:
5f:7b:78:f7:51:4a:9a:fd:7f:67:88:c6:20:8a:f3:2c:c9:5d:
b9:1e:f5:19:de:09:6f:b5:69:fc:c8:20:da:de:eb:57:c7:8d:
19:5e:cd:d9:ea:c6:d2:f6:d0:43:fd:dd:a9:1e:d8:de:cc:04:
f6:ea:36:0f:41:cd:8a:76:39:56:52:ad:70:81:e3:35:77:e2:
84:25:6a:e6:cf:94:ad:58:1f:e5:38:a1:18:40:2b:c5:22:ed:
ab:84:1a:dd:40:92:cf:59:8a:14:39:bb:b1:1c:bc:02:32:e6:
09:52:07:37:9e:7f:9a:2e:d1:99:56:cf:f8:a4:96:d9:da:68:
20:cb:6d:d9:6f:19:18:f5:f7:66:ab:b3:ac:30:c9:f5:0f:ac:
8a:bb:61:d2:5f:a5:7a:5c:23:88:2e:0b:6a:62:d4:7c:84:6f:
ba:f3:e3:be:36:34:27:ae:e4:c1:c7:53:46:c7:6f:95:25:9c:
04:f8:34:e2:22:54:89:c6:0a:9c:c0:0e:e5:79:cd:1d:4f:6c:
b1:6c:bb:97:a0:36:b9:b7:3a:c6:b8:45:7e:49:da:fa:46:96:
2c:37:f5:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 14:20:19 2026 by rpki-client