Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BACD8D45BAE11F18A970EE1CE1D38B0.roa
File: 7BACD8D45BAE11F18A970EE1CE1D38B0.roa (raw, json)
Hash identifier: rq88wZzTY+Zm5WkmkcQWhKEJhmSYgIxQYGzlvTj9Gn0=
Subject key identifier: 2C:C0:06:28:EE:1D:E2:B8:B9:5F:A0:A3:40:CB:BD:98:8E:5D:F6:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D0A7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BACD8D45BAE11F18A970EE1CE1D38B0.roa
Signing time: Fri 29 May 2026 22:33:58 +0000
ROA not before: Fri 29 May 2026 22:33:54 +0000
ROA not after: Tue 07 Jul 2026 22:33:54 +0000
asID: 48031
IP address blocks: 154.213.6.0/24 maxlen: 24
154.213.7.0/24 maxlen: 24
154.222.213.0/24 maxlen: 24
154.222.214.0/24 maxlen: 24
154.222.223.0/24 maxlen: 24
154.222.240.0/24 maxlen: 24
154.222.241.0/24 maxlen: 24
154.222.243.0/24 maxlen: 24
154.222.244.0/24 maxlen: 24
154.222.245.0/24 maxlen: 24
154.222.246.0/24 maxlen: 24
154.222.247.0/24 maxlen: 24
154.222.248.0/24 maxlen: 24
154.222.249.0/24 maxlen: 24
154.222.250.0/24 maxlen: 24
154.222.251.0/24 maxlen: 24
154.222.253.0/24 maxlen: 24
154.222.254.0/24 maxlen: 24
154.222.255.0/24 maxlen: 24
154.223.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118951 (0x1d0a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 22:33:54 2026 GMT
Not After : Jul 7 22:33:54 2026 GMT
Subject: CN=6a1a1456-0a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d9:e1:5a:d9:94:35:f1:71:07:e5:e9:ef:61:
77:05:f9:09:da:dc:22:f8:50:05:59:9a:bd:c3:59:
01:1a:48:30:b4:ab:0d:91:c8:91:da:68:c8:85:ba:
77:f0:11:e4:e8:1a:46:f8:01:01:90:48:90:44:c1:
d6:a8:5f:da:ab:4b:8c:c1:de:53:64:80:a8:bc:48:
53:75:6e:f3:17:b0:78:18:74:1e:90:b1:c8:21:59:
70:b1:3f:47:be:31:2f:6b:2f:f9:8a:e3:65:4a:1d:
6c:93:a6:9f:59:ce:51:6d:95:6a:8c:78:68:45:dd:
32:b8:d3:21:47:62:da:f9:a8:13:52:0f:8a:12:aa:
7d:13:1a:a9:e8:0c:1d:28:b6:83:cb:af:04:c4:92:
f4:04:8f:be:99:09:b4:8d:7a:e2:08:cc:b3:a6:79:
a5:92:9d:41:ef:e0:94:8d:47:b3:91:a9:b7:02:46:
25:6e:e6:df:1b:ab:c8:16:36:93:a9:65:46:f0:ec:
6f:da:78:29:a1:06:a2:a7:ba:7d:81:d7:b0:4e:b6:
96:ac:c4:f2:3c:1b:ee:f9:19:23:68:03:ed:6c:c9:
ce:46:ce:7e:07:c2:50:c5:fd:56:7e:df:b2:df:63:
b2:e1:c9:6c:23:5a:23:c3:f5:99:1b:30:0c:c9:cc:
2f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C0:06:28:EE:1D:E2:B8:B9:5F:A0:A3:40:CB:BD:98:8E:5D:F6:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BACD8D45BAE11F18A970EE1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.6.0/23
154.222.213.0-154.222.214.255
154.222.223.0/24
154.222.240.0/23
154.222.243.0-154.222.251.255
154.222.253.0-154.222.255.255
154.223.80.0/24
Signature Algorithm: sha256WithRSAEncryption
34:c3:4d:bf:f4:4f:26:48:38:2e:f0:79:16:b4:56:76:53:bd:
9d:7a:e5:8f:1a:15:c0:72:36:ab:2d:8c:48:f6:57:6a:56:47:
25:d1:8c:c1:10:1f:b4:e1:13:cb:aa:e4:00:da:db:b6:f4:9e:
67:7b:5e:6b:db:88:c3:bf:b6:7d:7f:c6:10:91:16:3e:cc:20:
85:3a:51:c6:bc:c9:56:c7:f1:02:37:96:1e:06:c7:23:5f:15:
ad:97:c8:ee:47:14:a7:c0:5f:b0:ac:1d:cc:36:8c:56:13:f8:
a7:ae:a3:19:fb:7c:ce:db:6a:eb:2b:4f:94:1c:6a:73:75:23:
de:bc:ab:bf:0b:98:0e:ac:32:73:e6:3c:68:82:cb:fd:72:59:
82:66:e6:7b:ce:55:03:ad:2d:bb:66:88:e1:01:f1:88:63:5f:
d1:53:b2:88:5d:a0:5b:5d:ec:91:fc:57:9a:cc:ef:83:01:f5:
98:91:b7:8d:6b:6e:0a:c6:3e:29:00:cd:dd:8a:ad:ad:7c:40:
d0:54:5b:f4:e7:03:d3:ed:80:c6:45:9c:61:94:ff:41:35:cf:
ea:60:8a:ba:6b:3f:42:81:ca:fe:d9:fe:a2:4a:af:bc:d6:45:
f0:e3:10:19:d6:b1:e6:36:0c:7c:54:9a:db:e9:7f:a3:25:89:
23:37:fb:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:03:15 2026 by rpki-client