Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B100D08554811F1A634EFF2CE1D38B0.roa
File: 3B100D08554811F1A634EFF2CE1D38B0.roa (raw, json)
Hash identifier: CgN/jfOw62JLPF7VPzVjxdXKvEwF+zceW+hBpxBsEH4=
Subject key identifier: 16:D3:B7:D4:B6:D9:68:75:CF:80:DC:6E:D8:8F:17:A5:56:E9:77:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CDBB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B100D08554811F1A634EFF2CE1D38B0.roa
Signing time: Thu 21 May 2026 19:06:55 +0000
ROA not before: Thu 21 May 2026 19:06:50 +0000
ROA not after: Fri 26 Jun 2026 19:06:50 +0000
asID: 63139
IP address blocks: 154.93.64.0/24 maxlen: 24
154.93.65.0/24 maxlen: 24
154.93.66.0/24 maxlen: 24
154.94.91.0/24 maxlen: 24
154.94.122.0/24 maxlen: 24
154.94.123.0/24 maxlen: 24
154.94.124.0/24 maxlen: 24
154.94.125.0/24 maxlen: 24
154.94.126.0/24 maxlen: 24
154.94.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118203 (0x1cdbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 19:06:50 2026 GMT
Not After : Jun 26 19:06:50 2026 GMT
Subject: CN=6a0f57ce-75c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:40:90:21:13:8b:4e:08:3e:5e:1d:5a:20:f8:
da:6b:a2:df:63:38:c1:0e:e4:1d:c9:45:14:d4:9c:
4c:af:72:45:d0:14:b5:2c:1e:39:dc:44:08:6b:bf:
a4:e4:8c:f7:ba:e8:93:09:37:8e:42:f3:e5:ee:29:
c9:6e:86:2c:21:35:c8:49:6f:0a:53:12:3b:a4:a6:
22:ed:fb:74:a5:d3:1a:61:be:0b:7c:42:27:8a:fe:
e1:1f:5b:32:47:98:89:e3:b4:6d:9e:dc:b1:cf:11:
dd:69:5f:23:1f:68:aa:74:92:00:23:f7:95:b5:04:
c2:f1:0c:18:9c:41:85:90:f7:c0:27:ba:b9:6a:e9:
ff:fc:f7:14:8f:9a:a0:78:ed:1c:6c:6a:82:d0:ef:
12:bd:d2:83:0d:e8:2e:f0:a2:31:85:24:a9:2c:95:
b2:80:c8:ac:27:e6:61:a7:a1:fb:ba:50:7e:70:4d:
e3:08:98:48:ab:34:4e:10:07:83:a3:06:3b:0f:09:
cc:00:4c:b9:00:b5:f0:7c:3a:49:55:6b:31:8e:31:
dd:b0:3c:05:f5:62:b1:43:df:3c:69:4e:1a:81:b1:
78:42:84:6b:91:3a:5a:11:d2:24:2c:81:7a:95:ae:
12:60:d1:44:0b:9e:e7:9c:d0:d2:0a:7f:87:33:63:
98:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D3:B7:D4:B6:D9:68:75:CF:80:DC:6E:D8:8F:17:A5:56:E9:77:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B100D08554811F1A634EFF2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.64.0-154.93.66.255
154.94.91.0/24
154.94.122.0-154.94.127.255
Signature Algorithm: sha256WithRSAEncryption
0b:0e:a5:00:4d:cd:1e:90:b0:6e:66:f8:b3:bd:0f:79:b0:f0:
37:af:02:4c:33:f0:3f:7a:e9:24:21:eb:7e:45:40:62:37:08:
2f:a7:f1:d7:80:04:aa:23:3b:62:44:a6:bb:e9:c1:2d:77:fb:
03:54:e9:65:60:45:fa:7d:18:de:35:d9:fc:f7:d8:81:a7:58:
06:bb:00:e9:6f:05:76:67:ed:3d:34:18:10:90:29:97:ae:6c:
79:4f:32:80:d1:1a:05:c7:bb:f0:3b:f3:7f:8d:ea:80:5f:0b:
87:e9:39:0d:37:5f:12:cc:a5:76:7d:39:1f:14:8f:f4:0d:23:
e6:f2:92:4d:53:4d:09:9a:ea:18:93:6c:6a:6f:c0:d9:85:fa:
e9:b8:7c:8b:d5:e4:39:3a:c5:42:2d:3f:6e:45:07:cf:6d:1e:
8f:f7:dc:4d:27:ee:3a:b9:55:82:48:28:ef:b1:cd:01:29:5e:
e8:f4:86:6f:5a:00:b0:8c:aa:ea:59:01:9b:52:75:4c:e7:09:
c2:3d:9d:d1:c7:63:bf:50:b4:e3:fd:eb:f6:89:eb:05:50:1f:
b6:67:db:f3:50:1c:33:62:27:7f:61:e4:2b:5c:7c:b8:ab:ef:
59:7a:f1:55:40:f1:4d:a1:d4:9a:ca:f2:f8:b2:0e:6e:f7:6d:
c0:f4:44:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:35:55 2026 by rpki-client