Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D8CFAF2458711F192399A1ECF1D38B0.roa
File: 9D8CFAF2458711F192399A1ECF1D38B0.roa (raw, json)
Hash identifier: ZvWmoetNGePcgeJsf35qPmDNiIiBuPH203/LekwKkbA=
Subject key identifier: 81:D3:79:B4:B7:A4:94:46:12:F1:82:30:96:EE:DB:33:4A:AD:38:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8D5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D8CFAF2458711F192399A1ECF1D38B0.roa
Signing time: Fri 01 May 2026 18:00:19 +0000
ROA not before: Fri 01 May 2026 18:00:14 +0000
ROA not after: Fri 05 Jun 2026 18:00:14 +0000
asID: 202656
IP address blocks: 154.219.29.0/24 maxlen: 24
154.222.40.0/24 maxlen: 24
154.222.41.0/24 maxlen: 24
154.222.42.0/24 maxlen: 24
154.222.193.0/24 maxlen: 24
154.222.194.0/24 maxlen: 24
154.222.195.0/24 maxlen: 24
154.222.196.0/24 maxlen: 24
154.222.198.0/24 maxlen: 24
154.222.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116949 (0x1c8d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 18:00:14 2026 GMT
Not After : Jun 5 18:00:14 2026 GMT
Subject: CN=69f4ea33-0bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ed:57:fc:6d:75:4e:69:39:25:5b:66:b0:22:
83:1d:99:1b:2c:fc:02:8e:c4:c5:a1:19:55:19:de:
86:7f:9d:c6:9e:11:5a:2f:04:95:f7:a4:48:e5:19:
b9:13:11:40:b8:c3:28:7b:9a:e8:a8:65:04:0e:0f:
22:31:69:b4:ac:59:3b:2e:ca:b6:54:a2:f5:02:82:
93:9d:b4:02:03:b2:87:63:10:ca:1a:7b:c4:b0:26:
45:d2:e4:4e:e5:5b:04:6c:8c:25:b8:c6:17:de:fe:
bb:9f:81:54:53:b0:4b:7f:50:9c:87:2c:b2:44:ac:
fe:ce:5e:64:a1:a4:bf:45:92:45:c0:82:e9:90:a6:
9e:24:a0:66:01:7a:83:31:c5:c7:9c:cd:bc:03:cd:
d9:62:6a:9e:aa:ca:5b:d8:98:f5:9d:ee:7c:ef:b8:
dc:68:b0:98:dc:81:5f:23:25:ed:ba:24:16:a8:86:
eb:33:ff:d0:24:26:16:2f:9c:0f:3c:df:64:e7:1c:
5f:af:9e:13:4f:41:1f:8a:2a:f7:de:64:96:e3:e4:
ba:c9:b4:e2:98:2d:22:91:bb:cb:44:0b:31:23:94:
a5:ba:98:25:aa:75:28:49:5f:c9:3c:81:21:af:3f:
e2:0f:f6:e5:ab:e8:3d:06:43:16:a2:99:a2:f7:aa:
27:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D3:79:B4:B7:A4:94:46:12:F1:82:30:96:EE:DB:33:4A:AD:38:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D8CFAF2458711F192399A1ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.29.0/24
154.222.40.0-154.222.42.255
154.222.193.0-154.222.196.255
154.222.198.0/23
Signature Algorithm: sha256WithRSAEncryption
18:c4:30:7d:d9:8d:1e:60:b7:fd:42:52:56:4b:b6:3f:82:81:
24:4f:0c:45:62:0c:2d:15:1d:ee:55:a3:a5:1f:35:cd:f9:f8:
70:69:03:fa:77:18:72:84:f4:33:49:9f:4e:71:83:5a:67:4d:
21:6f:14:e1:59:36:6f:5b:d0:18:0f:9d:32:1f:07:88:7c:9a:
36:6e:f4:aa:03:62:72:6e:87:48:59:9b:32:51:af:31:27:da:
62:2e:be:30:d1:d1:14:b9:6f:3e:12:8e:42:38:3a:21:94:b6:
8c:a0:06:0f:e4:ab:aa:93:19:fe:a5:41:b9:e0:3e:6c:23:90:
76:9b:cb:c3:37:5c:78:52:64:23:51:f7:37:a0:34:fe:2c:2b:
b7:a6:be:e9:8c:af:2a:28:80:d1:52:98:fc:27:64:59:7a:04:
63:3e:b2:9b:d8:68:c1:00:fd:06:d0:2e:40:7a:98:2d:c9:f7:
92:a1:8e:00:74:88:ef:1e:98:5e:da:b9:64:59:b6:34:75:d0:
ed:f1:9e:94:3d:6c:f3:42:b6:96:f0:5f:d8:76:27:5d:4f:82:
ad:7a:d5:6d:f9:5c:a7:5d:de:08:ab:e4:2c:83:0d:1a:a7:c6:
29:e4:95:74:99:32:5b:21:0e:57:24:cc:fd:e7:78:bd:60:e2:
d7:f8:04:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:50 2026 by rpki-client