Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D71E2CE1E1A11F1A142DCC9DAE4EC9C.roa
File: 4D71E2CE1E1A11F1A142DCC9DAE4EC9C.roa (raw, json)
Hash identifier: 4Gpk8TkH69eR68DtlAESnHgvSq82urzi5tFLTu+1bEg=
Subject key identifier: 79:BA:49:3C:CB:28:D7:AE:C1:44:8A:37:B3:0B:50:54:0B:06:7C:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF1E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D71E2CE1E1A11F1A142DCC9DAE4EC9C.roa
Signing time: Thu 12 Mar 2026 13:49:34 +0000
ROA not before: Thu 12 Mar 2026 13:49:30 +0000
ROA not after: Sun 19 Apr 2026 13:49:30 +0000
asID: 11404
IP address blocks: 154.83.160.0/20 maxlen: 24
154.89.240.0/20 maxlen: 24
154.90.80.0/20 maxlen: 24
154.90.96.0/19 maxlen: 24
154.92.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114462 (0x1bf1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 13:49:30 2026 GMT
Not After : Apr 19 13:49:30 2026 GMT
Subject: CN=69b2c46e-0d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:00:0b:35:8a:25:59:d3:ee:2f:dc:be:a6:a4:
7c:67:85:2e:07:c8:75:32:d2:9d:d5:c7:a2:d2:b3:
10:6c:52:76:2f:50:81:f7:b9:ed:93:30:c9:0b:15:
0a:18:99:bb:d4:4c:f8:d2:cc:d8:a6:46:e3:ad:a3:
6e:d4:68:06:db:de:8e:b6:96:f8:c5:f7:2a:c2:10:
9a:23:1d:17:27:6c:89:7b:0c:86:97:d8:df:16:24:
67:bf:c6:ce:d3:2f:6c:f9:fb:ed:5b:bd:3c:17:6b:
a0:9c:37:30:0d:3f:47:3f:fd:45:2e:a8:d3:b3:d7:
21:49:9e:17:7d:d8:1c:fa:43:73:67:8b:26:81:bf:
76:3c:c5:e0:ab:25:fc:49:f5:6f:83:87:63:11:04:
29:10:31:62:da:13:00:34:28:4c:92:98:a0:8b:a5:
a6:70:d2:61:12:c6:ca:1c:4b:6e:6f:6b:8f:e3:c7:
07:4b:a6:49:c5:12:e1:0e:92:8c:ce:b2:d1:ac:c2:
80:ca:6b:79:9a:cc:17:25:42:dd:8a:e9:d8:d2:dd:
35:66:c9:a4:84:73:74:47:37:9c:ee:e8:c2:93:3d:
8b:44:c1:f1:42:30:0b:8f:f8:d4:34:30:51:c4:0d:
7c:a4:ae:0f:70:64:76:6e:6b:3d:a6:90:42:94:f7:
e4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BA:49:3C:CB:28:D7:AE:C1:44:8A:37:B3:0B:50:54:0B:06:7C:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D71E2CE1E1A11F1A142DCC9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.160.0/20
154.89.240.0/20
154.90.80.0-154.90.127.255
154.92.144.0/20
Signature Algorithm: sha256WithRSAEncryption
c9:c3:93:93:a8:e5:fe:aa:4e:29:89:73:fb:3f:6c:30:3d:3d:
d2:36:62:35:58:ce:7b:f1:99:d1:56:06:fb:8e:ba:87:96:90:
43:1e:1f:04:84:f8:95:8e:4a:40:d1:c1:f8:b6:b7:95:9e:46:
90:90:f8:32:02:a4:96:08:1a:0b:48:17:4a:47:5e:76:60:e1:
04:b3:6e:96:be:25:57:6c:9c:a0:b9:33:38:f2:42:2e:81:a8:
4c:a5:6f:23:17:1f:a9:2b:02:c6:ad:aa:13:4c:e3:37:5e:ba:
14:f0:d6:57:b8:b5:61:45:f8:48:28:2e:e1:66:0e:cf:42:f9:
19:18:43:04:2f:60:47:ed:99:e8:aa:f7:2f:43:6b:02:e8:a1:
fd:9c:bf:8b:1c:fc:50:05:17:0d:a8:18:7f:b0:a8:7e:e8:b4:
54:7a:f0:8b:7c:68:bd:4d:2c:3e:31:71:29:61:37:11:b9:f8:
92:34:91:73:e2:fa:00:ef:1b:42:4a:96:06:67:71:06:1d:6a:
98:bc:6d:aa:75:b2:94:5b:f9:5a:ad:54:78:8a:e8:9d:63:8c:
f9:51:7c:11:52:a1:41:07:2f:5d:f1:9b:74:fa:ce:90:af:99:
d5:4e:99:09:af:9a:ce:f7:75:b8:74:2c:10:16:35:47:c3:ea:
2d:46:5e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:13:51 2026 by rpki-client