Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EB79FC85B9D11F18EB582FCCE1D38B0.roa
File: 9EB79FC85B9D11F18EB582FCCE1D38B0.roa (raw, json)
Hash identifier: Wku42d52o4PAuoBhwJB1Fr9RT/WMIlwr9W6NkZulfIs=
Subject key identifier: 4E:FA:E9:82:CA:96:E1:E5:08:F8:05:28:1E:A4:37:C1:0C:1B:F2:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D07B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EB79FC85B9D11F18EB582FCCE1D38B0.roa
Signing time: Fri 29 May 2026 20:33:16 +0000
ROA not before: Fri 29 May 2026 20:33:11 +0000
ROA not after: Tue 07 Jul 2026 20:33:11 +0000
asID: 202656
IP address blocks: 154.219.1.0/24 maxlen: 24
154.219.4.0/24 maxlen: 24
154.219.24.0/24 maxlen: 24
154.219.28.0/24 maxlen: 24
154.219.207.0/24 maxlen: 24
154.219.211.0/24 maxlen: 24
154.219.222.0/24 maxlen: 24
154.219.230.0/24 maxlen: 24
154.219.232.0/24 maxlen: 24
154.219.245.0/24 maxlen: 24
154.219.246.0/24 maxlen: 24
154.219.247.0/24 maxlen: 24
154.219.250.0/24 maxlen: 24
154.219.251.0/24 maxlen: 24
154.219.252.0/24 maxlen: 24
154.219.253.0/24 maxlen: 24
154.219.254.0/24 maxlen: 24
154.219.255.0/24 maxlen: 24
154.221.60.0/24 maxlen: 24
154.222.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118907 (0x1d07b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 20:33:11 2026 GMT
Not After : Jul 7 20:33:11 2026 GMT
Subject: CN=6a19f80c-3135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1d:a4:09:c1:20:4d:76:cc:b1:a6:77:c1:90:
b4:ad:b2:23:cf:f4:79:f9:b2:1f:32:68:2d:1e:19:
85:7a:5e:44:41:01:01:96:a3:26:68:53:6e:68:58:
6a:7a:30:22:73:a8:69:93:4d:b2:c9:e3:9b:d7:ec:
be:11:f2:16:77:00:a5:b2:f8:4f:78:ae:fa:9a:b6:
5d:f4:46:7a:eb:51:9f:d1:50:8b:09:cb:ee:47:27:
67:d3:8c:a6:cb:95:1b:00:df:e2:43:c0:3f:99:3c:
0f:70:bc:3c:37:ca:1a:72:12:7f:5d:c8:76:72:56:
fb:d8:71:ec:48:7b:62:31:ea:b8:de:0d:70:a0:0f:
7d:18:1d:f9:50:dc:35:14:f1:ea:39:50:04:ce:f0:
a8:be:34:1a:84:d6:92:c9:d9:c3:bf:85:41:63:00:
cb:c0:4e:bf:c6:24:9f:78:d2:e0:7c:7b:b7:13:ea:
fc:30:38:27:5a:0d:3f:f1:7e:95:8e:89:da:b7:7c:
b2:fb:78:c8:20:f5:db:d2:57:8a:c3:bb:8b:71:ed:
20:8d:71:a1:07:4b:55:1d:23:91:d9:08:e5:f2:65:
f6:35:4b:53:f0:2a:da:54:0d:e1:41:e3:46:1c:d7:
df:df:2a:50:48:4a:75:4a:55:62:2e:33:45:76:77:
0a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FA:E9:82:CA:96:E1:E5:08:F8:05:28:1E:A4:37:C1:0C:1B:F2:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EB79FC85B9D11F18EB582FCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.1.0/24
154.219.4.0/24
154.219.24.0/24
154.219.28.0/24
154.219.207.0/24
154.219.211.0/24
154.219.222.0/24
154.219.230.0/24
154.219.232.0/24
154.219.245.0-154.219.247.255
154.219.250.0-154.219.255.255
154.221.60.0/24
154.222.192.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:19:52:ee:15:70:85:90:a4:ca:c3:6e:22:62:34:0b:f8:90:
ef:0f:6a:80:96:b0:b9:65:50:de:03:f3:9a:fc:a3:f3:ad:9c:
4e:12:cb:d0:89:2e:c5:67:27:dc:ea:b1:eb:49:4c:8f:a4:4a:
49:6c:a8:34:88:4e:75:0e:78:0b:06:29:9c:66:cf:8e:b1:94:
bf:45:5f:98:89:8b:49:52:51:9a:87:14:b2:a0:1d:99:76:96:
1a:7c:86:17:4d:db:31:4c:16:bb:a4:1a:03:aa:99:db:a9:33:
ee:61:00:2b:cb:f2:72:2e:99:6d:a3:08:80:a3:89:c2:8f:d0:
03:5b:98:7d:c4:ec:b7:72:db:d0:ec:42:04:14:02:1f:7b:80:
65:04:39:4d:9c:25:db:42:68:61:9e:65:7c:20:93:99:16:db:
0b:34:b4:74:6d:a2:d0:44:bd:29:98:d9:bf:db:93:cb:da:61:
27:b7:ee:ba:cb:41:5b:b7:58:5d:37:d1:16:8c:f0:20:f2:d8:
41:94:e4:d6:b7:54:d7:aa:d7:f2:78:b1:b3:7b:ae:31:25:1f:
19:8f:9a:5e:7c:a0:95:ea:3a:f1:d2:8a:37:a9:e7:7c:b9:81:
31:9c:a8:10:42:2d:78:86:f4:35:c1:77:be:79:5e:f5:6f:a8:
51:1d:a4:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:56:38 2026 by rpki-client