Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EC52CD06A5511F1A3D4F7FACE1D38B0.roa
File: 9EC52CD06A5511F1A3D4F7FACE1D38B0.roa (raw, json)
Hash identifier: kU3/ScGEcY8oDhk5uYuUVGOvYY/snuj202Pv/6NQtq8=
Subject key identifier: E4:5D:8C:58:BF:1A:B2:F8:AC:85:1E:C3:03:43:EA:D8:A1:98:50:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D3D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EC52CD06A5511F1A3D4F7FACE1D38B0.roa
Signing time: Wed 17 Jun 2026 14:05:40 +0000
ROA not before: Wed 17 Jun 2026 14:05:35 +0000
ROA not after: Fri 24 Jul 2026 14:05:35 +0000
asID: 136501
IP address blocks: 154.92.192.0/24 maxlen: 24
154.92.193.0/24 maxlen: 24
154.92.194.0/24 maxlen: 24
154.92.195.0/24 maxlen: 24
154.92.196.0/24 maxlen: 24
154.92.197.0/24 maxlen: 24
154.92.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119760 (0x1d3d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 14:05:35 2026 GMT
Not After : Jul 24 14:05:35 2026 GMT
Subject: CN=6a32a9b4-6a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f6:35:cf:89:9c:dd:cb:09:08:28:3f:55:91:
ec:88:d1:fe:7f:ea:ff:6a:eb:21:ff:47:61:8c:6a:
da:7d:80:e7:a3:31:5d:db:75:2d:79:9d:b5:06:f1:
de:ef:0a:b1:c7:88:d3:70:e6:89:80:35:50:f2:59:
65:d1:88:9a:ab:dd:15:f5:b6:9f:52:68:6d:36:53:
9f:d7:92:68:56:42:83:94:f2:c0:52:6d:84:96:1c:
e9:47:ce:02:2b:ea:05:30:c3:b5:f9:67:aa:85:2e:
d7:b8:6b:46:12:f7:26:f5:93:bf:3c:ca:8e:1f:87:
6b:19:9a:39:42:08:b6:cb:82:c4:66:ab:4a:c2:c0:
05:06:4a:fc:98:0d:ea:7d:81:25:c6:90:c7:9a:8e:
9b:d2:1c:cc:21:b0:d5:7e:a7:8f:ef:89:0a:df:6b:
97:95:d7:f7:70:05:93:ea:ba:39:5a:78:ed:34:c7:
13:18:89:7d:92:5b:bb:5d:1c:75:ee:82:78:aa:93:
50:24:64:aa:50:09:b5:25:78:e8:62:56:73:93:4f:
f6:10:a1:2c:f5:2c:de:13:88:c4:01:71:1b:ed:b6:
35:c5:1c:66:5f:b1:ea:f7:e9:6c:7a:44:bb:d6:1c:
dd:1b:4a:a1:f0:e6:1c:4d:cb:14:40:fa:c1:f4:9e:
28:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5D:8C:58:BF:1A:B2:F8:AC:85:1E:C3:03:43:EA:D8:A1:98:50:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EC52CD06A5511F1A3D4F7FACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.192.0-154.92.198.255
Signature Algorithm: sha256WithRSAEncryption
2c:c0:f4:8a:56:55:8c:25:52:35:ad:18:3d:f2:aa:da:3c:82:
08:f6:1f:2d:31:0c:a9:34:7c:85:15:0a:95:c7:0b:0c:3f:3d:
85:18:09:a6:92:f4:37:e2:0d:46:a5:16:eb:a0:07:b1:e0:5e:
6a:e9:bf:61:6f:be:a7:52:63:70:d0:1f:8d:73:12:0b:c0:09:
0d:0d:81:55:81:ee:e7:96:c8:5b:3a:4f:be:3e:f0:bc:31:0a:
dc:93:34:6d:a7:8c:a3:ac:9e:f4:d8:4e:29:4c:cc:77:a5:81:
72:40:42:85:5e:c0:95:49:75:a2:0e:ac:23:be:de:11:4c:bb:
a4:22:9d:40:23:4f:ac:33:f2:2d:a0:23:f2:cc:6e:65:02:21:
f8:a5:ab:c6:08:e1:21:a3:e3:43:1b:e7:a9:34:b0:76:f1:ab:
8e:a6:86:d4:c8:2e:2c:ce:75:30:d8:45:7d:f6:c1:f4:e2:4d:
a3:eb:e4:ee:9f:01:b5:1a:1e:d4:52:ec:ce:41:2e:80:88:40:
4e:7c:c8:ed:bb:b9:82:11:b4:eb:3a:4e:15:b5:5a:a9:69:78:
48:cf:f0:ec:8e:07:8c:59:84:6e:bd:e7:d9:ff:2d:40:42:d8:
dd:20:dc:5e:87:f0:a0:86:e4:74:4d:bc:ec:67:10:94:55:b6:
88:d1:07:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:07 2026 by rpki-client