Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD8563641DFE11F1BCD4E5ABDAE4EC9C.roa
File: AD8563641DFE11F1BCD4E5ABDAE4EC9C.roa (raw, json)
Hash identifier: PLm5exgijJuSSaZLeFfe+XC03RzR7Ty/oaMqfv0si9A=
Subject key identifier: 08:D9:67:8F:C4:51:EE:10:1B:C4:04:2B:4F:41:FC:3B:AD:47:4A:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF02
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD8563641DFE11F1BCD4E5ABDAE4EC9C.roa
Signing time: Thu 12 Mar 2026 10:31:50 +0000
ROA not before: Thu 12 Mar 2026 10:31:45 +0000
ROA not after: Thu 16 Apr 2026 10:31:45 +0000
asID: 22773
IP address blocks: 154.82.12.0/24 maxlen: 24
154.82.13.0/24 maxlen: 24
154.82.14.0/24 maxlen: 24
154.82.15.0/24 maxlen: 24
154.85.12.0/24 maxlen: 24
154.85.22.0/24 maxlen: 24
154.85.23.0/24 maxlen: 24
154.85.104.0/24 maxlen: 24
154.85.105.0/24 maxlen: 24
154.85.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114434 (0x1bf02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 10:31:45 2026 GMT
Not After : Apr 16 10:31:45 2026 GMT
Subject: CN=69b29616-2d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fd:61:03:f3:a7:7a:f7:0a:fc:9e:26:87:e5:
dd:04:70:01:5a:0d:e2:72:ea:e3:6b:66:6e:ae:ce:
d5:5f:f0:62:a6:55:af:61:f3:d2:9d:c1:75:f5:de:
ab:11:45:29:c6:76:60:ce:e0:a5:cb:0e:b6:31:bd:
f7:c0:83:34:b4:45:66:5e:bc:20:51:76:7e:bf:81:
14:19:31:0d:7f:0a:64:30:39:7d:12:37:a2:6e:42:
07:36:ec:2e:9f:21:ad:a6:07:ba:29:70:82:33:61:
ef:d7:b5:75:11:bc:71:13:6b:18:4c:7e:c8:81:d1:
2e:8e:8f:75:c1:84:29:13:1f:4e:65:03:7b:4c:d7:
c3:5b:dc:78:fe:5b:a2:10:35:13:ef:27:d1:41:1f:
2e:90:41:7c:0c:1d:1e:26:fb:49:63:8e:0a:10:93:
01:f9:38:f7:ed:09:eb:74:b8:1f:00:89:f6:ed:c0:
79:82:e1:4c:2a:01:ff:c0:76:ba:39:aa:d7:0a:e3:
48:f4:db:99:32:b1:72:e1:da:3f:40:d6:e4:05:b6:
a0:d8:78:04:b9:a9:0a:21:04:65:db:19:18:82:d1:
ee:e3:42:a2:8b:83:3d:94:6c:2e:48:39:f5:76:1e:
73:a5:08:f9:e5:74:02:e4:1c:fd:22:fe:76:0a:4b:
85:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D9:67:8F:C4:51:EE:10:1B:C4:04:2B:4F:41:FC:3B:AD:47:4A:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD8563641DFE11F1BCD4E5ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.12.0/22
154.85.12.0/24
154.85.22.0/23
154.85.104.0-154.85.106.255
Signature Algorithm: sha256WithRSAEncryption
49:b3:e1:1a:4f:22:30:da:34:d2:11:4f:ce:35:08:22:2e:7c:
3e:59:b0:0b:c9:03:59:b3:15:bc:ba:e3:7b:53:7a:b6:31:63:
97:cd:a6:c1:15:3d:dc:6e:d4:39:a9:96:24:2d:cb:06:fd:8f:
44:03:d4:54:fc:d2:bd:78:56:98:3c:46:82:47:b2:a1:8a:27:
3b:98:87:61:e9:29:aa:82:cb:5d:48:5b:67:55:8e:38:e3:5a:
9e:de:3f:e6:93:e3:87:1c:87:e8:9f:52:51:a6:91:67:71:da:
bf:48:6f:ca:6b:13:01:f8:37:73:73:23:97:3f:37:a1:0e:11:
32:40:33:9a:39:31:6e:f0:16:ad:9a:04:57:d3:b8:ef:f1:e0:
fe:bf:bb:1d:98:87:21:af:96:0a:2f:6e:08:60:06:5f:2b:31:
48:fa:4e:2d:37:da:c8:1e:83:c2:91:35:94:82:57:d0:93:6e:
6c:d8:cc:59:1a:8b:5a:80:09:8d:c1:e5:ca:c6:4a:11:5e:93:
47:82:60:bf:47:ef:55:c9:a0:f6:27:9f:61:69:1f:77:0d:3c:
2b:34:d9:42:9e:5a:4c:75:98:57:f3:11:79:9b:c5:25:ac:bb:
87:55:3d:28:80:e8:9e:94:2c:ac:07:3d:d4:01:5d:31:5a:36:
f1:f8:e1:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:21 2026 by rpki-client