Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D484D5DE3EC011F1AA7B2CD2CE1D38B0.roa
File: D484D5DE3EC011F1AA7B2CD2CE1D38B0.roa (raw, json)
Hash identifier: 8mmj1DSZZu1rsDSsmw1a+kQun3LuKLv5DCOfUyZABCA=
Subject key identifier: 37:50:17:3E:96:04:F0:71:FB:5C:CB:01:7A:60:42:1F:9D:EF:BE:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6B3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D484D5DE3EC011F1AA7B2CD2CE1D38B0.roa
Signing time: Thu 23 Apr 2026 03:02:15 +0000
ROA not before: Thu 23 Apr 2026 03:02:10 +0000
ROA not after: Mon 01 Jun 2026 03:02:10 +0000
asID: 401783
IP address blocks: 154.82.181.0/24 maxlen: 24
154.83.10.0/24 maxlen: 24
154.83.24.0/24 maxlen: 24
154.92.210.0/24 maxlen: 24
154.92.211.0/24 maxlen: 24
154.92.212.0/24 maxlen: 24
154.92.213.0/24 maxlen: 24
154.92.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116403 (0x1c6b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 03:02:10 2026 GMT
Not After : Jun 1 03:02:10 2026 GMT
Subject: CN=69e98bb7-c54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:52:ef:59:ae:df:38:b3:e7:dd:a4:b7:f0:48:
49:eb:ac:72:cc:07:73:d1:86:8f:35:b9:b4:97:e3:
84:63:81:df:5d:6e:03:d0:75:a6:4e:91:6e:4a:88:
b3:e7:87:6d:2d:66:c6:2a:d1:a7:29:3e:86:1f:91:
1b:5b:9b:ff:10:76:11:7c:a6:27:fd:1d:b0:81:73:
9e:71:9b:2a:ed:28:d5:e6:be:ae:75:b1:8b:91:8b:
5f:58:61:53:a8:ed:18:6f:b0:d2:c7:ee:a4:88:82:
95:94:42:46:1c:16:a6:c9:ae:d7:9f:e5:78:1c:8d:
2b:5f:03:19:28:1e:13:16:a7:d3:9b:8a:08:b6:9f:
06:fb:e3:d9:61:d3:34:de:4d:d3:1c:b5:41:23:8d:
49:08:66:72:6e:c9:c4:06:50:8e:c5:6b:d2:9b:4d:
2c:08:cb:45:16:6d:85:c8:d4:05:38:23:ec:06:65:
eb:34:48:48:16:a4:dc:72:fb:6b:47:6a:85:73:88:
48:78:5c:1e:37:ae:36:4b:4e:3d:15:a4:4d:8d:92:
82:58:e4:12:f2:ce:57:6d:9f:ee:02:e1:d2:eb:86:
06:70:aa:2a:49:4a:20:f9:01:7d:37:82:cb:d6:2b:
77:2d:6a:5b:f7:d1:28:49:46:33:9e:f6:25:a6:01:
40:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:50:17:3E:96:04:F0:71:FB:5C:CB:01:7A:60:42:1F:9D:EF:BE:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D484D5DE3EC011F1AA7B2CD2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.181.0/24
154.83.10.0/24
154.83.24.0/24
154.92.210.0-154.92.214.255
Signature Algorithm: sha256WithRSAEncryption
6a:f0:08:65:6c:ab:26:fd:92:39:23:5f:f7:5a:7f:63:8e:99:
f3:31:21:c1:b9:92:ab:26:ff:a7:1d:2c:a5:03:c9:77:68:28:
ad:5b:0e:b0:f9:b1:eb:59:e0:cb:fb:62:7f:fa:80:08:66:d8:
90:8d:9f:08:33:a7:c9:44:45:b5:21:80:01:4c:75:c4:6a:43:
f7:88:bc:54:80:4d:24:5f:8f:f2:bf:5b:f5:20:a5:1e:ed:04:
b4:ea:1b:df:59:80:a7:76:95:e8:0f:9f:f4:95:c3:24:49:c6:
3a:ca:e6:df:a2:a8:8f:64:53:8b:87:4f:20:60:3a:f7:ba:57:
43:6f:a3:88:7f:e7:e2:2a:58:c7:c0:c4:47:80:75:ca:da:cd:
59:8c:3a:0a:78:31:11:54:08:11:67:09:4d:d0:12:38:12:7c:
c4:30:d8:39:02:47:06:bb:b0:03:e4:00:b6:7f:2b:30:5d:05:
bf:66:0b:8d:1c:ad:f0:a5:5c:f1:c7:d8:e1:de:d0:77:a2:4e:
a0:89:d5:3f:83:5e:27:86:c7:bc:3e:a8:84:7c:3c:b7:10:b3:
a3:da:20:b8:db:00:66:fd:67:db:6e:47:b7:30:30:64:3a:67:
50:11:31:58:19:0e:fc:f6:1f:77:38:b5:12:1f:66:f4:ff:08:
a2:7e:29:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:00:25 2026 by rpki-client