Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FD1B6E43FBE11F1AF7619EACE1D38B0.roa
File: 1FD1B6E43FBE11F1AF7619EACE1D38B0.roa (raw, json)
Hash identifier: 19KG7JZb5SYtUFBaeHUwHYwxZHUlLA4AM8EeimCJKLs=
Subject key identifier: 58:12:35:06:B8:78:10:31:FC:1B:DE:2A:4E:6F:90:4D:79:EC:81:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C723
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FD1B6E43FBE11F1AF7619EACE1D38B0.roa
Signing time: Fri 24 Apr 2026 09:15:24 +0000
ROA not before: Fri 24 Apr 2026 09:15:19 +0000
ROA not after: Sun 31 May 2026 09:15:19 +0000
asID: 62240
IP address blocks: 154.194.73.0/24 maxlen: 24
154.194.74.0/24 maxlen: 24
154.196.21.0/24 maxlen: 24
154.196.23.0/24 maxlen: 24
154.196.24.0/24 maxlen: 24
154.196.25.0/24 maxlen: 24
154.196.26.0/24 maxlen: 24
154.196.27.0/24 maxlen: 24
154.196.28.0/24 maxlen: 24
154.196.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116515 (0x1c723)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 09:15:19 2026 GMT
Not After : May 31 09:15:19 2026 GMT
Subject: CN=69eb34ac-ce50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9c:9c:4e:58:2f:fe:ce:d9:e4:80:05:a7:ec:
35:6c:7f:91:20:87:cb:50:05:92:7b:3a:b3:a5:a5:
31:23:79:a1:04:b2:b8:fd:bb:ba:58:54:75:9c:71:
43:56:86:e8:ea:69:8b:4f:24:3a:8c:c4:81:7a:67:
27:da:86:43:99:ee:ed:fd:61:0c:ae:81:91:d9:0e:
0a:a3:18:ef:01:05:d6:f7:fc:75:7c:02:02:af:8d:
32:ec:17:a2:e7:8d:0a:ac:db:0f:44:b0:e8:96:da:
2e:eb:9b:66:fc:a5:45:ce:06:ac:79:f6:f3:4d:51:
b6:05:b9:cb:d9:3d:89:6d:73:43:74:b4:25:51:d6:
84:b9:62:fb:26:bf:16:fa:a5:89:f3:83:7d:94:6b:
80:f4:1f:a8:7f:d0:46:0b:34:03:9e:67:4d:7a:9b:
92:59:4e:36:5c:4e:6c:06:7b:52:6e:96:cf:7a:0b:
7e:94:06:1f:dd:e8:a5:06:46:4e:b0:33:d7:b4:bf:
d8:b5:84:46:86:4b:d4:38:ce:02:ac:f9:f1:34:ae:
61:c1:24:26:ff:f9:44:3d:3a:73:14:e8:69:f7:2b:
7a:7e:c6:22:1e:00:42:e2:89:b6:71:a2:cd:77:19:
0c:59:cf:42:f6:75:bf:d5:ba:d6:6e:94:09:7a:a1:
c0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:12:35:06:B8:78:10:31:FC:1B:DE:2A:4E:6F:90:4D:79:EC:81:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FD1B6E43FBE11F1AF7619EACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.73.0-154.194.74.255
154.196.21.0/24
154.196.23.0-154.196.28.255
154.196.51.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:73:bb:4c:cd:87:14:a2:c8:b0:bd:7e:ee:40:a7:df:c4:e0:
d0:d1:26:f0:4d:bf:3f:68:a3:1b:7f:2f:ec:f1:a9:c2:3b:bf:
4f:b3:f3:96:e2:18:c2:a2:05:ad:c7:08:11:f0:ea:20:84:ea:
2c:c9:5a:32:b0:3d:70:47:81:6d:1b:f9:ee:bc:95:9f:5b:46:
3f:34:12:d8:ab:08:2c:f5:a9:ac:fb:21:22:a7:a0:ab:d6:6c:
db:23:12:95:8f:77:47:d3:98:f0:1b:69:e7:bf:21:ae:4f:a9:
38:13:76:7e:69:93:da:51:fd:ee:18:01:56:32:8a:bd:65:2c:
91:7f:e6:13:52:13:3e:b8:42:52:da:c8:5c:2a:a3:8c:52:8f:
81:1a:7e:d2:05:6d:0c:9e:16:73:c0:69:89:03:8d:a2:36:b9:
8a:40:72:9e:4b:3f:28:90:af:98:2f:6b:88:dc:2d:c0:35:f5:
6c:3e:2e:7f:19:7c:67:3d:1a:af:58:82:bc:9c:34:70:e7:f1:
1c:38:20:32:a2:85:b6:d3:c1:fb:95:3d:46:ae:d3:f2:bc:5f:
67:de:c4:e4:6b:f6:9f:5c:e2:27:4b:77:e0:ad:84:47:53:ff:
a5:ea:e1:6f:80:4c:27:f7:89:b2:d4:c6:bd:8c:4f:35:b7:40:
99:04:a7:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:13 2026 by rpki-client