Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9210AEC616FC11F181A488CDDAE4EC9C.roa
File: 9210AEC616FC11F181A488CDDAE4EC9C.roa (raw, json)
Hash identifier: nvYyD1NaV5XIigoOAVPX5A8V+IZjJcXV24xd1tEL+kg=
Subject key identifier: 13:F3:C3:C1:2C:4F:21:B5:FA:56:17:2C:1C:4D:77:09:BB:0B:B7:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BD32
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9210AEC616FC11F181A488CDDAE4EC9C.roa
Signing time: Tue 03 Mar 2026 12:29:06 +0000
ROA not before: Tue 03 Mar 2026 12:29:02 +0000
ROA not after: Sat 25 Apr 2026 12:29:02 +0000
asID: 272854
IP address blocks: 154.194.13.0/24 maxlen: 24
154.194.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Mar 2026 00:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113970 (0x1bd32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 3 12:29:02 2026 GMT
Not After : Apr 25 12:29:02 2026 GMT
Subject: CN=69a6d412-670d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ad:b8:c4:c7:22:65:83:91:9f:e6:ff:d0:95:
69:51:54:52:39:33:e6:75:3b:f5:b3:10:ea:ec:bd:
58:e2:d0:76:33:ef:b6:2e:30:59:63:8c:ed:9c:c5:
40:ed:bd:f0:45:6e:f8:67:d0:3b:34:69:47:00:bc:
03:28:0f:6c:00:49:b7:58:65:6d:8e:9a:10:16:bf:
e1:71:f2:ac:84:95:04:12:e6:a5:ba:85:a8:35:bf:
47:55:83:c6:f2:77:ad:ac:42:a5:44:77:ad:ee:22:
eb:24:a6:2b:2e:e8:81:a0:04:cb:33:ac:68:6c:e7:
82:48:ef:15:7e:26:30:ec:77:4d:ca:fe:76:70:10:
ab:ac:2f:ac:b3:a9:df:c4:d8:67:60:dc:8f:28:23:
cf:60:06:a8:00:ed:68:ab:66:93:9f:04:09:e0:3b:
1a:5e:8f:3f:09:d0:ac:35:14:a6:4f:49:e5:cf:d9:
c0:3b:49:38:77:24:6d:3e:48:3c:dc:d8:8f:de:3d:
04:a0:24:a7:f1:34:e5:30:8a:fd:0f:6c:13:42:9b:
e2:c6:08:39:a8:9b:7a:12:0d:ff:61:4b:ac:bc:fd:
50:de:7c:d6:ff:8a:ac:48:da:db:b4:fb:1f:4f:56:
ef:f8:d6:2e:95:1b:be:2f:9d:65:ee:76:64:2c:ce:
b9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F3:C3:C1:2C:4F:21:B5:FA:56:17:2C:1C:4D:77:09:BB:0B:B7:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9210AEC616FC11F181A488CDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.13.0-154.194.14.255
Signature Algorithm: sha256WithRSAEncryption
b9:a9:13:72:02:c0:55:f3:19:80:91:da:99:e7:17:4f:3e:03:
ec:99:97:9a:a2:49:1d:09:10:2f:f6:fa:12:27:34:1b:a3:63:
05:fc:cb:2a:a9:b0:8f:6b:04:96:af:cd:6c:ae:68:67:8b:17:
84:1d:b4:15:bc:ac:87:98:41:e3:fc:ea:95:7c:97:59:0e:5a:
3f:12:73:22:22:9d:65:63:ec:70:6b:c3:7c:d7:b3:93:84:84:
28:9f:9f:16:a6:50:98:92:71:f3:96:af:ea:25:58:1a:1d:04:
25:52:8b:1a:eb:b3:d0:8e:1e:bf:54:db:ab:eb:ad:97:17:24:
66:27:5a:e7:63:cd:50:f7:ba:dc:85:c9:aa:98:7e:dd:84:62:
de:3a:3d:90:1e:b4:26:4e:1b:30:c9:f7:43:35:73:6c:73:bf:
7c:28:a5:e2:dc:22:af:04:f5:00:48:74:ab:d1:36:db:69:3c:
34:f4:f2:aa:e0:f5:68:b1:31:fa:44:d2:3f:63:09:b6:4e:33:
e8:4f:73:bd:0f:86:54:62:56:2e:bf:8f:fd:dc:eb:fc:aa:48:
44:63:36:5b:44:b7:b3:2f:d8:5d:b7:70:bf:8c:e0:52:a5:ad:
d6:6f:8d:d3:99:eb:9a:92:ff:47:1b:2c:ca:f7:00:1a:9e:07:
c9:cc:33:7e
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAb0yMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzAzMTIyOTAyWhcNMjYwNDI1MTIyOTAyWjAYMRYw
FAYDVQQDEw02OWE2ZDQxMi02NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAva24xMciZYORn+b/0JVpUVRSOTPmdTv1sxDq7L1Y4tB2M++2LjBZY4zt
nMVA7b3wRW74Z9A7NGlHALwDKA9sAEm3WGVtjpoQFr/hcfKshJUEEualuoWoNb9H
VYPG8netrEKlRHet7iLrJKYrLuiBoATLM6xobOeCSO8VfiYw7HdNyv52cBCrrC+s
s6nfxNhnYNyPKCPPYAaoAO1oq2aTnwQJ4DsaXo8/CdCsNRSmT0nlz9nAO0k4dyRt
Pkg83NiP3j0EoCSn8TTlMIr9D2wTQpvixgg5qJt6Eg3/YUusvP1Q3nzW/4qsSNrb
tPsfT1bv+NYulRu+L51l7nZkLM65owIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFBPz
w8EsTyG1+lYXLBxNdwm7C7czMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85MjEwQUVDNjE2RkMxMUYxODFBNDg4Q0REQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACawg0DBACawg4wDQYJ
KoZIhvcNAQELBQADggEBALmpE3ICwFXzGYCR2pnnF08+A+yZl5qiSR0JEC/2+hIn
NBujYwX8yyqpsI9rBJavzWyuaGeLF4QdtBW8rIeYQeP86pV8l1kOWj8ScyIinWVj
7HBrw3zXs5OEhCifnxamUJiScfOWr+olWBodBCVSixrrs9COHr9U26vrrZcXJGYn
WudjzVD3utyFyaqYft2EYt46PZAetCZOGzDJ90M1c2xzv3wopeLcIq8E9QBIdKvR
NttpPDT08qrg9WixMfpE0j9jCbZOM+hPc70PhlRiVi6/j/3c6/yqSERjNltEt7Mv
2F23cL+M4FKlrdZvjdOZ65qS/0cbLMr3ABqeB8nMM34=
-----END CERTIFICATE-----
Generated at Mon Mar 16 06:22:32 2026 by rpki-client