Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4345470537911F1B3B148F2CE1D38B0.roa
File: C4345470537911F1B3B148F2CE1D38B0.roa (raw, json)
Hash identifier: IjCBccnEmFVP1S286z7JnMUJWwYPB8B8OraX6w5+HyY=
Subject key identifier: 9F:25:BB:AC:E9:69:13:B2:B2:2A:44:C6:D4:1A:68:FF:74:4B:34:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CC8E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4345470537911F1B3B148F2CE1D38B0.roa
Signing time: Tue 19 May 2026 11:56:28 +0000
ROA not before: Tue 19 May 2026 11:56:23 +0000
ROA not after: Wed 17 Jun 2026 11:56:23 +0000
asID: 197574
IP address blocks: 154.83.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117902 (0x1cc8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 19 11:56:23 2026 GMT
Not After : Jun 17 11:56:23 2026 GMT
Subject: CN=6a0c4feb-2b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:f3:8c:cc:40:d9:ab:17:74:df:55:dd:4d:
0e:ef:53:10:8b:97:22:6c:08:e7:05:aa:fa:6a:be:
a4:79:3f:de:94:04:1e:cc:ae:a7:b3:b0:fb:0c:41:
e5:17:28:5b:ae:cc:be:d4:26:fe:b6:9f:ec:51:59:
bd:23:81:3b:30:c6:80:3c:30:e8:18:7e:00:42:e7:
13:92:57:01:1a:c1:58:b6:1c:aa:0e:0d:2d:a0:55:
d7:c7:6c:9d:df:1c:55:b5:31:d7:89:e7:c5:7f:c0:
85:6f:20:ff:34:b1:31:f5:57:af:d0:1c:f7:9c:98:
0e:ac:77:cf:1e:d6:63:fa:ff:42:38:b0:b2:13:a9:
5e:9b:f3:8e:89:21:e3:4e:41:73:ce:63:9b:24:b6:
0f:1b:b5:3d:d9:96:bc:50:f1:a8:30:a9:4f:25:44:
79:a4:18:04:3c:e7:10:63:9e:3b:da:06:fa:7c:36:
17:d8:ef:ba:c2:50:19:65:ba:df:2e:c0:a2:ee:b9:
3d:e8:4b:8d:9d:b8:70:aa:4d:fa:09:f0:ec:45:a6:
8b:3f:fb:49:88:e7:b0:6c:07:35:25:b1:3a:93:28:
07:a4:6f:47:74:b9:c3:48:c7:03:43:b1:60:c7:11:
5a:21:1b:bd:6e:07:09:b2:d0:9d:87:09:61:65:92:
5a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:25:BB:AC:E9:69:13:B2:B2:2A:44:C6:D4:1A:68:FF:74:4B:34:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4345470537911F1B3B148F2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.149.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:22:0b:ff:ab:90:26:58:8a:79:13:ce:35:a6:10:c4:fa:36:
e0:fe:a7:6b:3a:29:7e:74:ce:bb:5b:ac:fa:cf:2e:5a:34:15:
9f:e2:89:98:bb:69:fd:37:b8:e2:ec:e7:26:c0:f2:9e:0d:9e:
d1:cf:f1:cf:6f:eb:a7:23:c6:73:75:ae:3a:bd:43:9f:0b:9c:
08:97:b6:00:12:b0:ae:e6:98:d6:9a:a4:da:c2:17:35:2a:05:
30:cd:fe:3e:2f:3c:25:d3:63:35:4a:c9:93:2a:06:d9:c6:50:
00:66:a1:d1:79:ff:ae:be:96:20:33:e3:c3:77:c4:19:57:ca:
95:ae:d7:e0:81:ee:f4:a4:ff:2f:d8:05:78:80:ad:35:b6:fc:
fe:0c:74:e0:09:84:29:9d:a5:6e:86:9d:e3:c0:55:21:cc:f8:
44:22:fa:ca:52:47:68:f8:2a:ce:bb:67:28:37:5d:a4:d7:18:
4f:dd:01:0d:db:fd:72:00:20:2c:6e:5a:68:50:aa:89:71:d5:
d4:50:10:65:c0:48:63:38:7c:5f:a3:2b:e5:21:f8:5d:93:8e:
21:ba:fe:c6:32:89:ba:d7:ab:f2:4e:3d:cb:eb:bc:43:75:0f:
37:e0:a9:4f:4b:c6:b0:1f:d4:c5:06:cc:5d:a0:97:74:f7:45:
be:63:97:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:35:47 2026 by rpki-client