Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48ACDD1C578511F197B856A0CE1D38B0.roa
File: 48ACDD1C578511F197B856A0CE1D38B0.roa (raw, json)
Hash identifier: udDJJdNHPETNyjiXgr/e4Bpm5GRSabTj+VYcV4jS/xQ=
Subject key identifier: 8F:AF:71:BE:C6:F5:F5:D9:5E:24:74:08:9D:B4:A5:C1:33:B3:90:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CEED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48ACDD1C578511F197B856A0CE1D38B0.roa
Signing time: Sun 24 May 2026 15:28:59 +0000
ROA not before: Sun 24 May 2026 15:28:54 +0000
ROA not after: Thu 02 Jul 2026 15:28:54 +0000
asID: 11427
IP address blocks: 154.82.26.0/23 maxlen: 24
154.82.28.0/22 maxlen: 24
154.85.0.0/23 maxlen: 24
154.85.100.0/22 maxlen: 24
154.90.168.0/22 maxlen: 24
154.90.184.0/22 maxlen: 24
154.94.8.0/22 maxlen: 24
154.94.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 07 Jun 2026 13:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118509 (0x1ceed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 15:28:54 2026 GMT
Not After : Jul 2 15:28:54 2026 GMT
Subject: CN=6a13193b-9491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9f:3c:b3:64:0f:55:ee:ab:87:ef:92:33:ae:
c1:d7:fb:98:d3:c9:22:10:41:f3:69:29:2d:fa:5c:
d3:a5:71:27:99:b2:87:d1:b1:01:a3:a8:a2:f6:33:
6a:88:78:ec:b5:2c:29:2e:17:cd:70:c5:0c:9d:09:
22:c0:b7:6a:2c:69:36:d3:15:d8:b3:42:cb:f5:c6:
81:95:5c:c7:8f:2d:2b:80:f9:05:09:88:be:cc:73:
d3:49:6f:a6:84:11:3d:26:bd:bf:a0:5d:ed:c4:1b:
65:f1:14:d2:f0:35:62:5f:a2:a6:be:f9:05:a1:f0:
27:74:02:56:78:5b:59:91:35:a1:9d:57:02:11:74:
67:77:fb:b7:b4:51:72:8a:44:fd:66:6e:8d:f6:9c:
1e:83:2a:18:8e:99:4c:a4:00:03:2c:2f:37:5c:4c:
7d:b0:2d:20:68:e5:89:cf:2e:20:76:08:a8:cc:36:
2d:96:92:10:f9:f1:4b:b6:c6:b4:b7:5b:16:b3:a5:
4a:c4:ce:72:be:53:2d:46:0d:f8:47:c7:49:63:b5:
fc:e9:4a:ca:90:ef:7a:1b:fc:62:88:65:a3:93:fe:
60:58:b1:91:99:43:a8:1a:4b:b7:bd:36:1b:33:25:
81:f4:d7:b4:b4:07:ef:78:60:51:e9:3e:15:c7:7c:
5e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AF:71:BE:C6:F5:F5:D9:5E:24:74:08:9D:B4:A5:C1:33:B3:90:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48ACDD1C578511F197B856A0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.26.0-154.82.31.255
154.85.0.0/23
154.85.100.0/22
154.90.168.0/22
154.90.184.0/22
154.94.8.0/22
154.94.128.0/18
Signature Algorithm: sha256WithRSAEncryption
c1:ca:85:8f:e6:50:63:9a:c6:56:cf:bf:b5:b9:89:77:ac:17:
a4:3e:d0:ae:b0:a6:03:a8:ec:75:c2:ad:a4:fc:5c:2e:c1:ef:
d9:e6:c0:20:a2:24:af:7e:c6:b7:69:04:37:52:2a:02:95:6f:
eb:62:79:fa:98:8e:76:6b:5c:91:a6:9c:79:fc:40:56:2f:e2:
f5:58:1a:e5:95:e4:7d:d8:4e:d9:ec:6c:65:2f:ea:42:bc:1b:
55:42:50:03:7e:64:1a:af:19:a7:23:09:d2:34:dc:9c:c2:2b:
e7:26:d7:f4:1f:74:0c:dc:db:e2:38:82:a5:40:0a:b0:48:e3:
24:07:c9:6c:7f:76:d9:e4:49:c2:ff:95:7f:e5:b0:9e:d1:24:
99:da:fe:2a:b0:97:e2:31:4a:48:a7:15:63:5c:71:6c:ca:ac:
61:e7:40:fd:03:d8:d1:fb:59:69:9d:0e:7c:7c:e7:91:7f:d2:
78:a5:d1:9e:0f:fb:30:2b:2c:38:8e:a5:70:36:57:9f:43:6b:
27:e4:d5:46:16:fb:81:b3:99:a8:00:8a:4e:45:94:d4:88:ce:
31:45:50:37:05:fc:b4:4d:90:19:d4:eb:d2:57:b9:d4:36:9a:
2f:7b:c9:ef:66:c6:8e:3f:7b:a8:94:12:d6:81:30:63:d5:3e:
a6:84:6b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 5 17:26:07 2026 by rpki-client