Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3B8F5DC245E11F1932007D6DAE4EC9C.roa
File: B3B8F5DC245E11F1932007D6DAE4EC9C.roa (raw, json)
Hash identifier: MGaSRYprOb/1gf1c+vP9ozwKU388KeoIcgd1RWWYZhk=
Subject key identifier: 79:F7:A6:38:F7:4B:0A:17:BA:0A:BA:DA:B5:05:26:AC:53:B6:E9:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C042
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3B8F5DC245E11F1932007D6DAE4EC9C.roa
Signing time: Fri 20 Mar 2026 13:14:19 +0000
ROA not before: Fri 20 Mar 2026 13:14:14 +0000
ROA not after: Sun 26 Apr 2026 13:14:14 +0000
asID: 138915
IP address blocks: 154.93.109.0/24 maxlen: 24
154.93.110.0/24 maxlen: 24
154.93.111.0/24 maxlen: 24
154.93.114.0/24 maxlen: 24
154.93.115.0/24 maxlen: 24
154.93.116.0/22 maxlen: 24
154.93.120.0/24 maxlen: 24
154.93.121.0/24 maxlen: 24
154.93.122.0/24 maxlen: 24
154.93.124.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114754 (0x1c042)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 13:14:14 2026 GMT
Not After : Apr 26 13:14:14 2026 GMT
Subject: CN=69bd482b-9c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:46:e3:4e:2a:69:53:4a:a1:b0:c5:2c:9d:
d3:58:bc:ec:d2:cd:5d:e4:42:ef:f9:3d:0d:70:0a:
24:58:cc:39:48:b4:16:26:ac:4a:e4:61:2e:d4:ce:
66:3f:1b:7f:1d:34:59:3a:31:89:7f:ff:de:99:89:
82:59:5b:7b:ea:ab:c1:88:4e:f5:b3:61:32:fa:23:
83:a1:b1:5d:fd:6c:6f:29:9a:9a:77:a1:1f:4f:89:
cf:c3:a9:2d:25:2f:17:5f:fc:b4:d0:bc:84:44:56:
d7:d8:2b:94:5a:d8:0c:8b:d5:9a:ae:34:c6:5d:b4:
1b:37:77:b5:ca:39:1d:71:a4:23:80:3a:3e:64:56:
ef:15:98:5c:58:4c:8b:58:7f:15:60:f4:20:1e:a3:
ad:e4:4e:df:d8:fe:dc:95:94:95:c2:0b:3d:e1:9b:
5c:89:c4:57:74:fa:3d:58:9a:c2:b4:a2:80:9f:1b:
30:ec:e7:f1:aa:f9:d7:97:de:6f:3f:fe:c2:94:73:
97:92:62:27:4e:0b:76:b9:1a:84:4a:42:f8:02:2e:
09:39:95:04:54:1c:68:f5:30:f1:cd:45:b6:7e:af:
00:d2:6b:59:38:c8:79:71:bf:7e:95:a3:cc:dc:71:
1c:e0:b5:b5:69:0f:ad:55:7f:09:1a:ea:a2:d2:39:
56:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F7:A6:38:F7:4B:0A:17:BA:0A:BA:DA:B5:05:26:AC:53:B6:E9:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3B8F5DC245E11F1932007D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.109.0-154.93.111.255
154.93.114.0-154.93.122.255
154.93.124.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:a2:64:f7:9c:0c:c7:bf:00:2d:61:40:5d:07:11:db:ca:d4:
c7:b9:f7:24:6d:ea:c4:69:99:55:3d:c0:ba:90:39:68:9d:79:
e7:84:cd:60:bb:7a:3e:a9:07:67:8e:72:27:1f:b1:14:03:0b:
02:fe:fc:71:72:e0:74:e0:fb:db:ed:be:f4:d3:41:15:05:8f:
27:6c:e4:c5:a9:14:59:68:a8:26:a0:19:79:fa:08:0d:61:a9:
42:91:83:a8:59:90:73:82:7c:c7:a6:c1:e9:14:80:a4:4c:6b:
ff:12:93:fa:74:ca:26:51:b7:3d:cd:9e:e3:5f:f3:6c:19:2f:
17:1c:7d:a3:4b:e8:99:1b:3c:e3:97:9b:ff:af:04:9c:40:2c:
de:c8:07:a1:87:ff:a0:cb:5d:81:6d:10:ac:b9:5b:0b:1e:38:
bb:dd:46:ef:ce:96:10:da:28:4d:87:0a:26:16:51:e4:ef:a3:
d5:8b:b7:59:b7:57:9f:13:f8:0b:38:d5:6b:a1:0a:8b:1f:73:
2d:05:69:77:49:af:1b:65:c7:b3:c4:40:ca:3c:ef:ed:df:ab:
96:2b:80:e5:ea:d6:0a:44:96:57:ea:a1:6c:db:0d:ee:26:b8:
0f:98:8b:e9:3a:a7:1c:24:a5:a4:5d:bd:af:b2:e7:c8:f4:e9:
c6:ee:5b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:24 2026 by rpki-client