Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BAE7C58555211F18C0A7FB2CE1D38B0.roa
File: 4BAE7C58555211F18C0A7FB2CE1D38B0.roa (raw, json)
Hash identifier: SS2Ik6o1wmpBU701OI/bGtGttEOmZ6YSHhgkqErkQvE=
Subject key identifier: 02:E2:76:72:A0:1A:BC:B5:BB:4C:76:A1:E2:7C:36:AA:E8:E3:29:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CDCD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BAE7C58555211F18C0A7FB2CE1D38B0.roa
Signing time: Thu 21 May 2026 20:18:57 +0000
ROA not before: Thu 21 May 2026 20:18:53 +0000
ROA not after: Fri 26 Jun 2026 20:18:53 +0000
asID: 138915
IP address blocks: 154.203.165.0/24 maxlen: 24
154.203.178.0/24 maxlen: 24
154.203.181.0/24 maxlen: 24
154.203.191.0/24 maxlen: 24
154.205.139.0/24 maxlen: 24
154.205.141.0/24 maxlen: 24
154.205.142.0/23 maxlen: 24
154.205.144.0/24 maxlen: 24
154.205.146.0/24 maxlen: 24
154.205.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118221 (0x1cdcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 20:18:53 2026 GMT
Not After : Jun 26 20:18:53 2026 GMT
Subject: CN=6a0f68b1-cd48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d4:bd:d3:12:9d:b1:13:85:01:11:fc:8d:91:
18:9b:1c:7b:c1:83:a2:a1:cb:08:fa:c5:b3:d9:f7:
f0:ad:56:74:fb:46:e7:15:59:62:74:35:1e:b8:d7:
1c:c4:e4:f8:75:ce:a0:f7:35:7f:0e:43:32:99:cd:
ee:d5:52:a6:57:0d:fc:07:c1:f1:ea:4b:18:99:d6:
21:7d:c4:c3:9b:3e:eb:e5:82:af:6c:ae:3a:97:9b:
fe:aa:32:e9:0e:23:1a:e1:d9:dd:65:06:02:0a:5d:
91:e8:d1:7f:35:f4:ce:7b:9d:27:72:30:9f:c0:4d:
77:49:fe:74:00:01:12:3f:a4:cc:08:ab:8d:71:b3:
30:82:9f:89:08:b8:a2:11:d3:9b:d5:f6:86:3c:69:
e3:6f:b7:35:dc:21:e9:37:9e:07:8a:9d:4c:11:3f:
57:d5:87:a9:b2:96:59:86:5f:be:e7:6c:79:82:07:
a3:a2:2d:57:af:ec:2a:84:11:26:e0:28:36:06:c8:
32:64:d4:4f:ee:5e:6e:bb:f8:2f:f0:a0:70:e3:be:
f8:56:60:44:12:b9:dc:90:46:b0:3e:2e:40:ac:33:
d4:dc:05:f6:51:a9:11:03:fb:da:76:3e:a5:5d:d1:
d1:a5:bf:1c:2f:20:df:9d:8e:7c:c9:09:9b:8d:ff:
6f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E2:76:72:A0:1A:BC:B5:BB:4C:76:A1:E2:7C:36:AA:E8:E3:29:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BAE7C58555211F18C0A7FB2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.165.0/24
154.203.178.0/24
154.203.181.0/24
154.203.191.0/24
154.205.139.0/24
154.205.141.0-154.205.144.255
154.205.146.0/23
Signature Algorithm: sha256WithRSAEncryption
07:0a:29:cc:b1:3f:b0:ec:ab:d3:e1:35:5a:14:1f:5a:33:50:
a9:a2:bf:8b:e7:8a:4d:8b:08:66:1c:d7:f1:6f:24:4a:1f:35:
d9:af:32:34:41:24:80:98:fb:b4:ae:d0:18:0a:fb:10:69:a7:
56:b6:c4:56:52:10:93:11:f9:50:ea:c8:51:69:a6:94:d1:51:
02:6e:8a:cc:60:9c:e3:ca:61:8d:eb:bb:f5:6e:35:03:39:d6:
8b:04:46:e2:67:f9:80:51:20:d4:15:61:bf:8d:00:35:ca:41:
0c:96:fe:1a:9a:c9:d2:51:ae:be:78:19:42:b3:f4:e0:35:79:
60:43:bc:28:17:e7:2a:85:8c:ca:73:1c:08:62:09:92:13:30:
1d:23:73:74:3d:ea:90:30:ec:dc:0c:42:fa:06:75:53:63:e5:
c5:03:d6:c5:4c:5b:c3:3e:00:8a:7d:c0:b6:dd:84:16:e9:55:
66:62:e6:7a:05:d8:b1:62:d0:1f:dd:13:98:dd:4a:87:55:e6:
ed:27:b3:9a:a3:c6:4a:08:44:74:41:39:57:16:2e:69:48:bd:
63:fc:16:dd:5c:b5:f5:ff:7e:93:c8:a7:ce:8b:fc:1f:11:00:
02:2f:2a:c3:0b:90:e7:c6:46:12:b9:e9:67:2f:94:d6:f6:61:
e6:8c:ef:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:12:42 2026 by rpki-client