Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A3803EC420611F1A60D28DDCE1D38B0.roa
File: 6A3803EC420611F1A60D28DDCE1D38B0.roa (raw, json)
Hash identifier: 94UcTWl/vfTIJdmASvGQpUgxzYG8SSy1EVqgjLFJLXE=
Subject key identifier: B2:9E:3F:B7:0A:C1:92:FA:97:F0:E7:FE:D0:28:E5:F7:09:3D:9B:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C796
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A3803EC420611F1A60D28DDCE1D38B0.roa
Signing time: Mon 27 Apr 2026 06:57:55 +0000
ROA not before: Mon 27 Apr 2026 06:57:50 +0000
ROA not after: Fri 27 Apr 2029 06:57:50 +0000
asID: 17561
IP address blocks: 154.198.9.0/24 maxlen: 24
154.198.10.0/24 maxlen: 24
154.201.7.0/24 maxlen: 24
154.201.8.0/24 maxlen: 24
154.201.9.0/24 maxlen: 24
154.201.10.0/24 maxlen: 24
154.201.11.0/24 maxlen: 24
154.201.40.0/24 maxlen: 24
154.223.230.0/24 maxlen: 24
154.223.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116630 (0x1c796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 27 06:57:50 2026 GMT
Not After : Apr 27 06:57:50 2029 GMT
Subject: CN=69ef08f3-a068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c0:40:a5:aa:77:a3:29:3a:3e:df:f5:cd:f1:
91:1b:67:88:64:21:72:5e:f3:b7:c5:0a:19:a5:34:
71:c0:01:f2:9b:ae:10:3f:ee:a1:72:6f:d7:d6:27:
3e:ba:31:1e:24:68:eb:08:f2:85:6b:db:0b:84:f0:
09:87:76:58:bf:6c:ee:c3:c2:84:1c:ce:63:bb:96:
72:db:fa:d0:e1:44:15:50:f1:12:12:da:d7:64:69:
a4:f3:09:2d:47:dc:82:74:32:d4:7d:79:d3:66:db:
63:6b:39:f3:15:20:86:ce:7a:26:13:eb:06:0c:54:
c4:57:88:98:43:35:2b:87:27:bf:ea:2b:bf:c4:48:
fc:86:f9:98:69:d3:2e:f7:18:db:e6:c3:17:18:79:
8f:a8:bc:e9:af:b3:13:f9:09:70:1a:e3:ec:6a:6c:
d8:88:b0:33:bf:17:69:ea:82:86:35:09:84:6c:11:
a9:93:c2:13:e9:01:08:9f:c4:94:01:2d:8f:42:4a:
e3:06:3f:e9:f7:a3:6a:03:f7:f1:d4:e0:41:ce:56:
be:42:a0:df:6f:bc:c1:1f:f9:ee:87:50:af:08:95:
c8:9a:55:56:05:de:a5:11:b6:b8:b0:c1:28:74:4a:
d6:4c:d2:3b:c0:5b:b9:58:c8:1e:02:1b:1c:fe:9e:
0e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9E:3F:B7:0A:C1:92:FA:97:F0:E7:FE:D0:28:E5:F7:09:3D:9B:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A3803EC420611F1A60D28DDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.9.0-154.198.10.255
154.201.7.0-154.201.11.255
154.201.40.0/24
154.223.230.0/23
Signature Algorithm: sha256WithRSAEncryption
83:fe:dd:19:ff:64:9a:6e:98:16:41:f3:82:8e:86:63:97:11:
4b:7d:72:4d:60:da:02:3c:73:5b:f2:b7:de:6e:49:e4:a7:4e:
3a:34:df:d4:7d:2d:e5:3b:b2:4e:89:14:10:c2:fb:a3:d0:75:
dc:01:96:b4:22:8c:23:7c:17:84:68:6c:d1:b6:c3:5d:bc:14:
86:05:a1:f7:d5:68:74:95:83:62:23:2e:36:b4:3a:2d:08:72:
77:0e:d1:ff:3c:01:ca:e7:ff:93:cf:41:74:80:4c:d7:91:26:
24:3a:8c:3c:19:9b:c8:c6:03:82:21:6c:2c:18:33:1c:f8:98:
38:6d:6b:89:6d:d9:1d:44:4d:b2:af:aa:3a:c0:35:ac:e7:ac:
72:db:68:9f:3b:64:7a:07:af:ec:67:4c:c1:e6:e1:12:e1:7e:
7c:1c:c2:ad:4d:67:60:0f:46:6d:c6:f4:42:9f:1e:93:04:4a:
75:99:28:9a:67:47:42:2d:6c:6e:b2:fd:60:6e:bd:74:d7:f6:
da:cc:25:6b:c6:48:70:a4:7a:d5:4e:c2:51:7c:37:77:1d:ab:
39:b2:e9:48:7c:16:bd:64:24:44:27:59:22:8c:0d:f4:6a:c5:
d5:a0:8b:87:46:f5:a6:28:af:ed:54:4d:12:c1:f5:35:2b:a7:
82:02:b7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:58 2026 by rpki-client