Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/733B8414552511F1B68F69A5CE1D38B0.roa
File: 733B8414552511F1B68F69A5CE1D38B0.roa (raw, json)
Hash identifier: oDYcDOAOMGNivGepcFIoMx1leoDIrA+jRkjSsDj9sRg=
Subject key identifier: F5:BD:68:1B:65:53:2D:7C:29:0F:D6:97:A9:DA:44:A0:65:CC:46:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CD83
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/733B8414552511F1B68F69A5CE1D38B0.roa
Signing time: Thu 21 May 2026 14:57:56 +0000
ROA not before: Thu 21 May 2026 14:57:52 +0000
ROA not after: Wed 01 Jul 2026 14:57:52 +0000
asID: 2914
IP address blocks: 154.83.11.0/24 maxlen: 24
154.92.199.0/24 maxlen: 24
154.92.205.0/24 maxlen: 24
154.92.206.0/24 maxlen: 24
154.92.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 May 2026 00:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118147 (0x1cd83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 14:57:52 2026 GMT
Not After : Jul 1 14:57:52 2026 GMT
Subject: CN=6a0f1d74-65c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:85:38:3a:f1:42:4a:50:05:f1:12:7e:f7:14:
28:cb:76:64:11:9d:85:d9:02:1f:08:31:81:ce:7d:
6f:a4:fe:10:94:25:8e:46:da:6c:7b:b6:10:6c:6a:
c4:84:d8:ff:e0:d3:e5:7c:a6:f4:7d:b6:4b:2f:2b:
c2:d1:d0:61:51:fe:42:6a:76:2a:21:a5:05:a7:5f:
6a:7a:bc:af:8f:29:9d:a2:9b:66:79:39:43:b4:d7:
63:a2:de:67:da:11:b5:fd:42:13:48:87:e5:48:4d:
3f:47:cf:50:81:fb:1c:c1:81:0e:70:94:6f:6f:29:
92:0e:25:a3:7a:ed:63:d3:5c:6a:ac:59:fa:37:36:
49:64:44:fe:b3:02:d3:f7:c5:50:f9:a4:88:89:ba:
c1:93:4d:58:3b:5a:80:85:58:95:c0:31:09:26:3a:
9e:a5:38:86:57:2b:f6:f9:ec:15:ff:ae:ff:75:7a:
4b:d5:05:e4:19:20:7c:5b:8f:c4:a8:8f:b1:4d:12:
ad:62:92:d5:51:1f:f1:f6:e6:30:08:f1:a8:73:9d:
ac:4f:6f:d5:04:21:98:01:ab:94:97:df:f4:2d:28:
95:ef:05:b6:28:b1:d9:22:f4:ba:03:ac:85:a4:4b:
72:2b:d4:28:87:24:1c:4a:ce:e1:76:2f:30:46:bc:
3b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BD:68:1B:65:53:2D:7C:29:0F:D6:97:A9:DA:44:A0:65:CC:46:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/733B8414552511F1B68F69A5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.11.0/24
154.92.199.0/24
154.92.205.0-154.92.206.255
154.92.208.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d8:ab:ac:5a:dc:f3:05:7c:ca:e1:18:8d:e9:19:57:f9:4e:
35:42:6e:1b:db:d6:3b:44:f7:4d:1a:db:65:47:9f:b2:79:28:
76:44:d7:75:11:54:ab:c2:51:82:20:98:c6:b0:c5:84:08:67:
79:b4:b3:ba:52:83:fb:09:22:11:67:f9:a3:94:58:82:87:8c:
08:5b:fd:9c:e6:df:b9:47:c9:4d:10:20:b2:bb:56:ce:f6:8d:
26:0b:f4:2a:3f:d0:62:9d:4d:e9:82:15:91:04:52:ac:de:e7:
4f:89:d7:fa:ea:32:07:88:ef:de:6f:df:f3:8e:6b:a3:58:59:
e1:3a:0f:fe:42:88:3a:b8:2b:10:77:ac:57:0f:dc:f4:f6:8a:
25:ed:6c:e7:71:46:14:c3:8d:48:5d:f5:71:73:84:60:b0:a9:
0b:5b:9e:4c:aa:4b:48:97:64:24:81:06:fb:40:1b:8c:ed:cc:
d4:df:0e:51:aa:3b:1f:a7:0b:c7:1c:7c:5d:6d:f1:cc:87:98:
e7:33:cc:61:b8:d5:e2:0e:2c:cc:45:9e:60:0e:ae:1d:14:0c:
3c:36:24:14:68:b3:d9:fb:d3:7c:f0:b3:83:af:7e:7f:45:86:
31:b1:21:0e:e8:a2:d6:33:b1:47:56:5b:fc:e5:52:a4:37:17:
c4:0c:56:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 17:47:32 2026 by rpki-client