Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C19BE272210C11F1858E4B85DAE4EC9C.roa
File: C19BE272210C11F1858E4B85DAE4EC9C.roa (raw, json)
Hash identifier: OBCO9QjDWWMzsQUi+kAPDQp8BFs8mZ3dxLBKW4hV4kc=
Subject key identifier: 06:99:91:F8:78:92:3A:D1:8E:69:7A:D7:D0:F0:19:DF:F5:F0:36:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF83
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C19BE272210C11F1858E4B85DAE4EC9C.roa
Signing time: Mon 16 Mar 2026 07:50:10 +0000
ROA not before: Mon 16 Mar 2026 07:50:05 +0000
ROA not after: Thu 25 Mar 2027 07:50:05 +0000
asID: 139339
IP address blocks: 154.197.46.0/24 maxlen: 24
154.197.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114563 (0x1bf83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 16 07:50:05 2026 GMT
Not After : Mar 25 07:50:05 2027 GMT
Subject: CN=69b7b632-3ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:39:b9:49:b1:35:8c:8f:b3:b0:a9:cb:bc:01:
2a:f5:15:8d:91:a2:95:47:0c:7d:63:6f:4f:97:4d:
36:31:a1:fb:42:15:6a:54:7b:f3:6c:b1:ca:cc:ea:
91:dd:78:2f:f9:06:db:28:66:6b:3a:66:4d:41:b5:
68:97:a9:55:32:2c:12:99:27:ca:d0:36:a9:62:1e:
8d:15:e1:4c:1a:33:f3:c7:72:ad:3c:6a:b6:94:3b:
86:e1:e5:ba:25:d4:5b:2e:ed:fc:ca:59:07:88:50:
43:5d:26:a4:a9:b6:52:82:75:f7:37:82:05:00:9f:
20:27:4b:84:33:2d:4d:c2:47:16:23:8c:47:c0:05:
cd:b7:64:e3:43:df:81:8f:af:ef:7d:84:55:d1:41:
e8:32:a7:a1:8f:31:6a:64:97:31:e8:e7:74:14:85:
8d:70:8c:4d:2d:2a:d5:7a:99:1d:bc:e4:93:85:b5:
09:f7:24:4a:a4:fb:05:be:19:9f:98:9c:26:35:ae:
dd:4e:de:c9:8e:d7:4e:59:d9:e7:a9:25:bb:8b:ab:
14:81:92:b3:8f:bd:9c:05:bc:d0:2c:05:72:59:5f:
1c:c4:81:50:d8:c5:e4:20:99:d1:61:33:21:f1:bd:
f6:47:fa:ad:5a:85:99:80:9a:f8:38:9a:97:40:d9:
62:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:99:91:F8:78:92:3A:D1:8E:69:7A:D7:D0:F0:19:DF:F5:F0:36:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C19BE272210C11F1858E4B85DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.46.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:10:ba:e6:16:38:ab:d9:56:00:32:50:6e:26:6b:5a:46:32:
86:46:2b:b3:ec:45:df:a2:83:06:18:2b:ef:74:78:16:82:54:
60:87:12:7f:91:2a:4f:e5:c8:a6:f8:23:b8:e8:b9:34:38:c7:
fc:8c:13:d3:99:0b:5c:59:b7:6a:24:0b:6b:43:36:2b:95:7a:
4c:c5:ae:b3:1c:29:be:ec:5c:cd:33:aa:e2:6d:da:1b:24:60:
e2:81:f4:44:48:3d:12:a9:34:f9:28:29:d4:bc:37:fc:5f:8b:
0e:79:12:c0:80:b1:c1:5d:f8:f0:66:3a:3f:3e:b3:95:52:19:
65:8f:f0:0f:01:36:73:1e:bf:c8:be:8a:02:ad:c2:9b:75:b1:
bf:32:72:dd:04:08:ad:48:bb:25:4f:2f:b5:0e:fa:bb:f4:1a:
5a:f7:63:49:0a:36:f0:38:c9:71:0a:bc:29:a8:83:9d:76:0c:
93:40:88:ef:64:f0:09:d1:76:e5:af:a5:13:e7:6e:cb:ad:33:
be:01:ce:79:00:64:60:1e:d7:0c:e6:64:32:23:af:80:00:78:
b0:97:6a:5e:b1:3e:40:68:ac:c3:cf:14:b4:5c:a1:88:91:7f:
c9:14:a8:68:b9:cd:a7:fc:40:4d:2b:3b:52:1f:14:f2:f4:5c:
e4:01:28:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:16:06 2026 by rpki-client