Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/897926506C9011F1A3228A02CF1D38B0.roa
File: 897926506C9011F1A3228A02CF1D38B0.roa (raw, json)
Hash identifier: wFwIPcxPj759k/DHC580N4nJGWpc6u5at5Aj4YYm/N8=
Subject key identifier: 39:00:8F:32:CF:6E:F3:D2:81:5D:A5:DF:43:D5:02:7C:CD:72:3F:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D42F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/897926506C9011F1A3228A02CF1D38B0.roa
Signing time: Sat 20 Jun 2026 10:12:27 +0000
ROA not before: Sat 20 Jun 2026 10:12:22 +0000
ROA not after: Mon 27 Jul 2026 10:12:22 +0000
asID: 63139
IP address blocks: 154.194.68.0/24 maxlen: 24
154.203.160.0/24 maxlen: 24
154.203.161.0/24 maxlen: 24
154.203.162.0/24 maxlen: 24
154.203.163.0/24 maxlen: 24
154.203.164.0/24 maxlen: 24
154.203.165.0/24 maxlen: 24
154.203.166.0/24 maxlen: 24
154.203.167.0/24 maxlen: 24
154.203.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119855 (0x1d42f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 10:12:22 2026 GMT
Not After : Jul 27 10:12:22 2026 GMT
Subject: CN=6a36678a-4749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:64:dd:c6:80:b5:3d:c4:f5:da:2e:e6:8d:51:
cc:41:ac:35:06:81:ad:04:17:fa:5f:f8:a2:60:a4:
5e:1d:88:db:93:d6:59:c2:d9:90:cc:df:e7:2e:b1:
78:3f:21:4c:a7:10:d3:ca:67:15:f2:36:4b:f9:6c:
27:51:36:b4:f4:9f:7a:39:14:b1:02:28:98:db:58:
8d:48:56:ec:a6:ce:1a:c6:b2:dd:3d:7f:70:4b:90:
8f:e3:5f:ce:de:b2:81:17:91:ce:ba:1c:f6:66:53:
1a:38:ac:e4:df:be:30:1d:1c:97:fb:e0:70:e4:a8:
32:cc:93:15:f9:b2:15:3a:58:f0:3b:94:32:5f:38:
b6:1b:4f:3c:b3:2c:90:57:a6:d4:42:6f:47:7b:94:
df:e2:87:2a:23:67:03:11:f3:cc:f2:57:f1:31:f8:
06:d3:f5:00:a2:3a:f9:ff:2a:5d:3a:43:86:fc:8a:
5b:2e:d0:f7:72:01:d9:c9:9f:2d:f1:b1:96:49:a9:
9d:f4:78:7c:c3:cb:ab:8c:ab:ab:43:a1:38:4f:4b:
97:76:1e:1c:07:45:7a:d7:b4:7e:d9:2e:26:35:84:
65:8c:d8:eb:0e:d8:ac:ca:1c:4f:7b:83:de:78:bc:
60:4e:81:62:b3:b9:08:09:3d:29:55:21:a9:ea:70:
bb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:00:8F:32:CF:6E:F3:D2:81:5D:A5:DF:43:D5:02:7C:CD:72:3F:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/897926506C9011F1A3228A02CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.68.0/24
154.203.160.0-154.203.168.255
Signature Algorithm: sha256WithRSAEncryption
08:6e:00:fb:cc:f7:55:06:ea:28:50:1a:0d:ba:e7:e7:18:3f:
76:26:d6:9a:84:ba:fb:12:02:0e:f4:79:32:9b:0c:02:f8:91:
1f:3f:b6:d2:f6:35:01:9d:53:34:9f:d0:5d:9a:3b:84:73:45:
fc:23:a8:1d:ad:c5:01:82:d5:33:d8:ff:bf:03:fd:fc:89:df:
64:10:67:31:7d:34:1e:e7:2a:a1:d1:31:9a:e7:36:5a:02:12:
b5:fc:1a:db:a8:b4:73:3c:28:ef:c4:da:24:d8:75:9b:a0:d8:
3d:c8:bf:26:16:f0:b5:e0:5c:23:38:82:83:38:41:fb:1b:40:
0a:85:26:1c:35:64:9b:14:a3:ce:1b:28:64:0d:a7:60:89:6e:
db:35:5c:89:a5:bc:f3:3f:84:11:46:ad:24:45:74:f7:f8:85:
44:34:dd:13:80:8a:d1:04:91:f0:55:b6:e7:56:3d:57:7d:3a:
bc:d4:c8:d8:2f:fa:e8:f8:f4:61:a1:f9:48:c7:68:b5:5b:9e:
20:88:8b:5e:0b:9c:7f:5a:78:86:ec:4e:33:fb:82:6e:59:2d:
62:f8:2d:8b:55:d5:40:85:f7:e9:e7:17:b9:49:8c:7b:c4:36:
ee:ce:c1:cd:c1:8c:08:69:39:a1:16:46:29:64:e6:5e:e6:4b:
d5:2f:97:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:54:00 2026 by rpki-client