Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94B3FF46160411F19695C2DCDAE4EC9C.roa
File: 94B3FF46160411F19695C2DCDAE4EC9C.roa (raw, json)
Hash identifier: NRfMVQkZZw8EYuaL1/An7P2Nf7HTXIv4QvGX1HR/VJA=
Subject key identifier: F4:C6:A7:0F:66:B7:CA:2F:15:DE:08:A1:57:B6:2A:00:25:53:D2:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCAD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94B3FF46160411F19695C2DCDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 06:53:55 +0000
ROA not before: Mon 02 Mar 2026 06:53:52 +0000
ROA not after: Fri 02 Mar 2029 06:53:52 +0000
asID: 17561
IP address blocks: 154.81.224.0/24 maxlen: 24
154.81.225.0/24 maxlen: 24
154.81.226.0/24 maxlen: 24
154.81.227.0/24 maxlen: 24
154.91.160.0/24 maxlen: 24
154.91.161.0/24 maxlen: 24
154.91.162.0/24 maxlen: 24
154.91.163.0/24 maxlen: 24
154.91.164.0/24 maxlen: 24
154.91.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113837 (0x1bcad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 06:53:52 2026 GMT
Not After : Mar 2 06:53:52 2029 GMT
Subject: CN=69a53403-6fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ff:7b:6c:77:b5:6b:39:5f:3b:c6:1b:81:33:
fa:c2:2d:3d:16:ef:7b:af:87:e7:85:92:85:6a:45:
4c:7e:09:50:f5:46:cb:f9:71:95:c8:7c:65:c2:92:
ed:d7:85:0b:b3:76:8f:61:06:c3:31:a9:17:5f:05:
a4:7c:d2:3c:f6:de:7a:ae:a4:5c:68:ff:af:d5:df:
25:6d:df:8f:54:71:a5:55:68:1c:68:f7:54:18:73:
39:78:ca:09:9c:4b:f8:6d:93:d4:70:3c:66:d7:7b:
28:a4:87:71:5a:59:a6:1b:08:6a:23:af:1a:91:74:
42:b4:92:1b:9a:b2:1c:6d:c0:cb:58:f9:90:bc:e6:
d0:15:d6:9d:c4:a4:5b:a6:1d:fb:38:f1:45:6e:36:
1b:f1:df:6e:5f:98:7c:e0:b9:c8:de:f0:76:4e:92:
3e:ba:4f:05:81:29:4e:60:87:af:59:dc:d1:4c:12:
d0:59:cd:28:41:95:0f:81:b8:bc:c7:74:ed:fc:c5:
9e:0f:98:de:17:c3:61:32:36:04:89:93:62:87:b4:
5f:0d:65:49:3f:e0:9f:e1:5d:30:ee:53:03:44:2a:
cd:83:5a:32:99:bf:1d:de:01:9d:0a:d8:e1:7f:de:
9c:1e:65:56:5d:fb:0d:28:db:9c:ba:64:5d:8d:3c:
5e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:C6:A7:0F:66:B7:CA:2F:15:DE:08:A1:57:B6:2A:00:25:53:D2:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94B3FF46160411F19695C2DCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.224.0/22
154.91.160.0-154.91.165.255
Signature Algorithm: sha256WithRSAEncryption
ca:68:5e:5b:c4:3a:88:07:3f:6b:e6:10:1c:48:62:a5:9c:6a:
45:20:4e:89:8b:12:df:91:81:dd:e9:99:86:da:77:74:9c:8b:
76:8b:ae:ef:00:17:c4:e7:1f:0b:50:b5:0a:56:9a:88:dd:3c:
43:cb:14:ca:e1:25:e8:de:6f:e5:3f:f9:56:56:4c:b7:a5:10:
a6:54:a6:8c:7c:67:57:5a:71:31:42:1a:60:2a:4c:82:e2:d5:
9c:9e:3a:61:a2:b2:0f:80:7c:8b:0c:fb:3e:8a:41:a2:80:58:
71:aa:9e:2c:a2:a0:39:ab:c8:06:a6:ea:a0:3c:c8:90:0d:79:
72:2c:58:d8:f4:be:fd:bd:25:b4:71:ce:c3:16:be:63:a3:ce:
70:f8:dc:6a:de:6d:72:cd:54:d4:6d:0f:8b:c7:5a:15:75:f4:
e0:29:08:44:04:c6:9c:c9:f4:cf:8a:cc:39:82:8d:fe:ba:da:
18:fc:c7:35:43:b3:31:73:ef:77:f9:5c:3f:2e:d5:a5:15:7c:
4c:51:02:b4:c0:fd:5a:bd:42:1f:59:32:23:6a:aa:54:2c:6d:
a3:b0:61:3d:cf:c5:09:96:b4:8f:79:79:b3:19:b5:c4:33:20:
91:83:3c:d6:49:0b:cf:98:81:70:71:10:58:97:ca:bf:30:52:
c4:bc:59:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:24 2026 by rpki-client