Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5415B10161311F18ED60DB9DAE4EC9C.roa
File: A5415B10161311F18ED60DB9DAE4EC9C.roa (raw, json)
Hash identifier: iPRcjgC9GsoZYvcpgv7f+0739S2st/urLtg9WZUD9Z8=
Subject key identifier: B6:73:AB:EF:C8:2B:9F:8B:2E:92:4A:7F:CE:20:6C:08:C4:FC:99:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCCE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5415B10161311F18ED60DB9DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 08:41:46 +0000
ROA not before: Mon 02 Mar 2026 08:41:42 +0000
ROA not after: Fri 02 Mar 2029 08:41:42 +0000
asID: 17561
IP address blocks: 154.198.84.0/24 maxlen: 24
154.198.85.0/24 maxlen: 24
154.198.86.0/24 maxlen: 24
154.198.87.0/24 maxlen: 24
154.198.88.0/24 maxlen: 24
154.198.89.0/24 maxlen: 24
154.198.90.0/24 maxlen: 24
154.198.91.0/24 maxlen: 24
154.198.92.0/24 maxlen: 24
154.198.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113870 (0x1bcce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 08:41:42 2026 GMT
Not After : Mar 2 08:41:42 2029 GMT
Subject: CN=69a54d4a-414f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cb:21:e8:04:95:b2:76:55:98:35:74:17:32:
03:87:68:f3:94:ad:8c:99:47:07:3a:8a:b5:2b:98:
f5:e3:5f:0c:c8:7b:80:c4:b9:14:a7:1d:64:b0:fd:
69:0d:ad:4c:67:cd:79:6d:9e:9b:79:04:b0:b9:bb:
dc:ef:9e:5b:75:e9:bc:c0:6d:a8:aa:ad:25:33:c3:
c8:b1:9c:ff:e3:31:fc:2f:42:e3:b2:ab:f9:3d:73:
8c:ce:af:3e:86:44:30:9d:f4:a9:10:51:50:aa:ad:
df:8c:e2:95:de:0e:56:af:08:7f:08:b8:02:f1:45:
f3:7b:4c:c7:0c:c6:02:6d:4d:e8:8d:51:97:5f:e1:
cd:41:a3:16:c8:96:d9:a5:4c:a2:ec:f5:f6:e2:9a:
e6:bc:75:e3:1f:5c:b6:89:81:3c:b2:e2:bf:e4:2c:
5c:14:89:0d:00:66:6c:8b:3c:ae:01:c6:20:c0:c9:
2a:fa:9a:f5:62:d5:21:59:7b:bb:2b:5e:bc:15:da:
00:f6:07:be:b2:15:0e:9e:34:bd:61:e7:f1:dc:13:
ca:1e:84:cb:e3:b6:f7:63:2e:85:67:e9:d4:66:49:
7e:27:01:05:ee:5b:8a:0b:dc:e2:6b:43:29:5c:ad:
58:ec:51:19:ec:55:a7:97:c3:39:32:9f:e0:04:d7:
89:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:73:AB:EF:C8:2B:9F:8B:2E:92:4A:7F:CE:20:6C:08:C4:FC:99:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5415B10161311F18ED60DB9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.84.0-154.198.93.255
Signature Algorithm: sha256WithRSAEncryption
b0:39:22:b3:20:e9:69:80:11:ae:f1:3c:21:64:fa:5f:bb:57:
8b:c1:9e:16:2d:15:c7:97:ab:79:d1:8a:dd:28:a5:45:b7:32:
5b:89:53:e1:17:f2:a8:be:31:b7:77:49:a2:25:a1:54:b5:dc:
3d:d5:eb:bf:b9:13:b8:81:77:bb:1d:f3:dc:6b:af:c5:cc:39:
e6:f3:bc:69:09:02:9d:88:e2:d8:53:82:e1:a2:b2:2c:bd:3c:
36:92:3b:f2:16:0b:a0:2a:31:a3:98:e4:86:bd:c9:cb:90:34:
2d:c7:a5:7a:81:e9:a2:62:5d:c0:22:fc:02:ea:10:e5:49:2f:
f9:0e:1e:9d:44:f5:6d:4a:c1:bd:4c:0b:63:28:ae:ed:85:8b:
9f:5c:b4:a1:d1:01:f9:f5:0f:f0:e4:0f:97:1c:f3:90:a3:1b:
75:a9:90:69:3d:33:d8:85:30:a5:f0:81:59:26:f2:52:63:a9:
a7:27:b2:c7:4b:98:a8:9b:92:6f:f2:cc:50:0f:7f:f5:f8:2b:
f9:3e:8e:4f:5d:4b:ef:c9:60:b6:d4:7a:95:73:15:e2:03:89:
5c:48:17:a7:c9:7d:4e:95:15:b4:88:7d:f5:92:26:3a:a5:22:
75:a7:e9:97:eb:19:06:31:6d:ce:ba:25:40:56:69:8f:aa:b9:
9b:f1:61:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:18 2026 by rpki-client