Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC1A8CD2243511F1897DAAEDDAE4EC9C.roa
File: BC1A8CD2243511F1897DAAEDDAE4EC9C.roa (raw, json)
Hash identifier: dnWFkjJM0Aw636Os2aPmlC2N3iBQFFezvsODMT3Yqc4=
Subject key identifier: 8A:33:E4:6E:0A:8F:A0:E8:67:56:D0:B3:F8:83:6A:A9:1C:74:A6:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C002
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC1A8CD2243511F1897DAAEDDAE4EC9C.roa
Signing time: Fri 20 Mar 2026 08:21:04 +0000
ROA not before: Fri 20 Mar 2026 08:20:58 +0000
ROA not after: Sun 26 Apr 2026 08:20:58 +0000
asID: 63139
IP address blocks: 154.93.67.0/24 maxlen: 24
154.93.68.0/24 maxlen: 24
154.93.69.0/24 maxlen: 24
154.93.70.0/24 maxlen: 24
154.93.71.0/24 maxlen: 24
154.93.72.0/24 maxlen: 24
154.93.73.0/24 maxlen: 24
154.93.74.0/24 maxlen: 24
154.93.75.0/24 maxlen: 24
154.93.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114690 (0x1c002)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 08:20:58 2026 GMT
Not After : Apr 26 08:20:58 2026 GMT
Subject: CN=69bd0370-0028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b2:97:0a:7f:08:dc:96:a7:b5:44:6b:e2:9b:
59:87:1f:ad:4a:b4:f6:fe:b0:d4:14:fa:74:18:08:
01:ae:f7:a7:a0:6d:e3:83:b4:9b:9e:c7:53:50:77:
da:8f:59:e6:06:9f:ff:1c:52:4a:d7:6a:26:7b:fe:
15:20:63:0c:de:b9:b1:c8:79:9f:91:4a:58:cf:83:
fd:1f:7e:e6:da:03:8b:be:8c:db:d0:fe:02:8f:11:
fd:fb:6a:a6:da:d5:52:6c:a6:8b:f7:f5:da:f7:04:
7c:e7:e1:42:f4:66:05:3f:55:b5:2c:ed:e6:f4:b8:
cc:fc:7b:6c:cb:fa:6c:cd:06:75:cb:ce:9a:8b:f4:
92:6f:78:0a:38:9f:bb:0a:13:ec:95:3a:1d:36:4e:
d3:58:d8:e9:5f:f5:92:30:f5:51:b1:15:12:35:07:
29:b6:66:1b:4f:09:48:b1:ec:1f:e8:b7:52:e5:03:
a5:1d:91:b0:47:92:87:81:76:66:aa:94:98:8e:da:
3b:87:14:4f:49:fd:6b:47:ef:43:f2:70:40:1d:69:
f8:1a:7b:9e:f2:07:41:d8:ce:e4:f6:a5:f5:d4:b5:
4d:9d:53:34:69:94:ef:26:c6:c5:af:e0:f2:7f:f0:
91:18:27:8a:23:a6:41:36:bd:4d:0b:af:12:8d:a3:
ab:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:33:E4:6E:0A:8F:A0:E8:67:56:D0:B3:F8:83:6A:A9:1C:74:A6:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC1A8CD2243511F1897DAAEDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.67.0-154.93.76.255
Signature Algorithm: sha256WithRSAEncryption
71:fc:3d:4f:78:48:82:26:46:57:a1:56:f7:2e:69:38:bf:c3:
ad:31:cc:4e:fd:c4:e9:7f:a0:ba:46:ca:fc:c8:06:45:c1:be:
4a:a2:2c:a0:5d:9f:ec:a4:3f:bb:70:8d:0a:12:33:4a:ab:1f:
6b:a3:e4:e9:2f:d5:83:e6:4c:24:37:17:4f:9b:96:cc:a9:9c:
7b:68:bb:ab:3e:71:a2:82:e5:aa:0c:c8:fd:0c:54:f8:a7:1a:
e8:cb:7f:fa:b4:84:6e:0d:3f:be:27:b3:62:e5:10:21:77:fe:
3c:63:6d:78:a3:da:0e:03:3c:3c:a1:21:3a:b4:f5:41:c9:41:
02:d9:58:c4:1c:81:2a:8a:6b:c5:69:4f:22:a5:0f:c4:0d:8b:
6a:b0:18:be:5d:23:7a:97:23:87:31:64:54:72:24:78:a0:05:
e8:68:55:e2:e8:22:cb:ca:b2:e6:c4:dc:2a:74:05:14:3a:8b:
d1:4a:7c:7b:3c:0d:a9:56:7e:42:cb:26:db:b0:51:73:43:2c:
48:79:e5:c5:1f:7f:48:fc:45:03:7b:6f:b5:54:1e:0e:1a:b2:
21:b3:13:a0:88:d2:df:81:bc:24:af:de:09:27:b0:58:7a:fb:
9b:34:75:f6:97:5c:0b:ff:0c:68:f5:61:9c:70:82:e4:54:18:
32:1a:7d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:20:35 2026 by rpki-client