Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72E2BD14693B11F19CA702C9CE1D38B0.roa
File: 72E2BD14693B11F19CA702C9CE1D38B0.roa (raw, json)
Hash identifier: Bgz26xZReX1KcfmTtj/+PgdpeOzMtxGe6HUvHEQXw54=
Subject key identifier: 55:1B:0D:06:F1:2D:AB:89:F5:CF:86:F8:51:01:11:1D:30:D8:59:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D30C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72E2BD14693B11F19CA702C9CE1D38B0.roa
Signing time: Tue 16 Jun 2026 04:25:48 +0000
ROA not before: Tue 16 Jun 2026 04:25:43 +0000
ROA not after: Tue 21 Jul 2026 04:25:43 +0000
asID: 2914
IP address blocks: 154.92.176.0/24 maxlen: 24
154.92.184.0/24 maxlen: 24
154.92.186.0/24 maxlen: 24
154.92.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119564 (0x1d30c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 04:25:43 2026 GMT
Not After : Jul 21 04:25:43 2026 GMT
Subject: CN=6a30d04c-8960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b1:f5:4b:01:1f:0f:e5:4a:6b:a0:72:90:16:
36:8e:af:46:0c:51:dd:3f:e1:36:fe:a2:d8:3f:7d:
20:fb:f4:8d:0f:7f:17:2b:c2:24:42:51:e7:ea:d2:
e3:de:2d:8d:40:9a:c2:24:6f:84:5c:55:71:60:1e:
4d:9b:16:b3:c6:7c:b9:ca:57:a8:2d:94:be:4d:a6:
59:3d:d9:69:02:6e:ab:47:ea:b5:20:da:1e:2f:04:
c5:5f:23:a9:04:21:a3:c0:11:99:44:80:1f:8c:d9:
34:28:6b:8f:aa:dd:44:90:bc:d7:cb:bb:f1:8a:ec:
3c:ec:f3:59:6a:91:54:c9:93:6d:cf:25:9b:e0:5a:
d4:12:43:22:5a:5a:1a:59:d2:75:97:7f:73:08:4b:
14:c9:4b:ad:27:9c:14:85:5a:95:ee:bd:f7:97:8b:
6a:61:94:23:0b:42:0e:39:d6:5f:c6:03:67:dc:d2:
d8:6f:9b:4c:c4:50:bf:46:54:05:9f:13:58:21:a2:
1a:b1:93:59:e3:b7:0c:4a:8f:35:d3:69:ea:31:4f:
79:3c:eb:86:94:60:6c:b1:30:33:d8:10:b8:49:fd:
fd:4a:71:06:a1:71:c8:f4:5f:29:01:20:3e:cd:bb:
50:98:46:7f:34:79:24:e7:00:1f:94:f1:1d:27:97:
9c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1B:0D:06:F1:2D:AB:89:F5:CF:86:F8:51:01:11:1D:30:D8:59:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72E2BD14693B11F19CA702C9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.176.0/24
154.92.184.0/24
154.92.186.0/24
154.92.190.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:08:c3:18:31:64:09:3a:e0:c8:85:82:e5:25:6f:42:5a:ad:
7c:aa:aa:da:17:74:d9:3b:80:c1:6f:5d:ed:94:26:4d:91:b1:
b4:f1:d7:e4:26:4c:be:5c:92:94:69:16:72:ae:97:c1:40:5b:
de:b6:22:46:04:1e:37:bf:15:74:d6:12:c2:2f:d5:d0:5f:16:
f2:d5:9f:99:da:ec:f4:87:af:98:04:ce:5b:c3:76:c6:c8:73:
6e:a3:1b:56:ca:68:2d:1f:89:ef:1d:7b:15:cb:b0:6d:24:18:
c1:81:da:80:74:91:37:3b:f3:ea:83:b4:cd:e3:ca:60:b6:bd:
5c:81:c5:83:72:b7:c9:3b:9e:fd:4f:82:ff:b3:6a:58:af:e5:
a2:10:d0:61:e0:3e:3e:f8:c1:42:f7:2e:82:d0:fc:b9:09:3a:
72:cc:27:b8:4b:82:35:42:69:3f:c1:64:91:f5:41:01:1e:d0:
91:02:a6:7b:ea:cd:fa:29:33:14:0e:ef:e2:4e:8c:ec:d4:9f:
41:c0:7b:c1:ab:32:e8:d5:54:8d:b9:0e:f5:94:04:34:3a:3a:
af:af:7d:3c:a2:9f:80:be:4a:89:ae:6e:f3:c8:bb:93:5a:e2:
33:e9:09:5a:27:3f:d4:e1:5d:fa:47:de:ed:12:96:7a:2a:a6:
6c:f7:02:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:54:56 2026 by rpki-client