Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7A814A63FDD11F1BA0D1CA7CE1D38B0.roa
File: D7A814A63FDD11F1BA0D1CA7CE1D38B0.roa (raw, json)
Hash identifier: GAFGqSffVH2QFnaYd1YEYhKnO8S+sgmP/wFQOXHW07U=
Subject key identifier: 14:DC:EB:2E:7D:46:B1:B2:57:B6:95:92:52:FB:A2:85:D7:CA:D1:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C750
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7A814A63FDD11F1BA0D1CA7CE1D38B0.roa
Signing time: Fri 24 Apr 2026 13:02:27 +0000
ROA not before: Fri 24 Apr 2026 13:02:22 +0000
ROA not after: Mon 01 Jun 2026 13:02:22 +0000
asID: 11427
IP address blocks: 154.85.124.0/22 maxlen: 24
154.88.32.0/22 maxlen: 24
154.88.44.0/22 maxlen: 24
154.88.48.0/22 maxlen: 24
154.88.60.0/22 maxlen: 24
154.90.160.0/21 maxlen: 24
154.90.176.0/21 maxlen: 24
154.90.192.0/19 maxlen: 24
154.94.16.0/20 maxlen: 24
154.94.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116560 (0x1c750)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 13:02:22 2026 GMT
Not After : Jun 1 13:02:22 2026 GMT
Subject: CN=69eb69e3-a031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ce:1c:f8:3f:50:aa:98:9e:74:ac:4b:80:3e:
82:1e:fe:32:aa:8c:57:5c:59:0a:e6:db:c0:c7:c4:
8d:67:d1:16:62:01:55:20:87:27:08:64:5c:09:6a:
31:bc:b5:76:56:d6:70:ac:d1:6e:75:b2:fe:14:a9:
d4:45:87:ae:53:87:78:a8:cf:12:6f:d2:2e:da:a3:
ce:53:db:df:d2:0c:fa:b8:b8:fe:5e:e3:dd:72:14:
b1:d4:b2:56:00:28:aa:37:d9:26:64:d3:a4:f5:5d:
cc:96:78:1b:a2:e1:7c:20:96:1a:aa:a9:80:b7:d1:
1f:9b:6d:c4:89:55:c1:90:28:fa:6f:c9:a0:3c:2e:
e0:d7:f3:b0:d2:39:6b:c0:1b:c4:cc:a7:39:75:94:
cc:1f:2a:ff:60:71:70:24:83:42:9f:c9:d4:bd:8d:
67:5b:3c:71:33:c7:4d:9e:d6:83:ed:a4:69:92:80:
92:86:90:d3:33:12:3d:74:d5:cb:e6:cf:78:31:ad:
45:63:65:01:02:e6:0e:c3:11:b5:44:00:7f:c8:b5:
13:ba:76:6c:d3:cc:d2:27:dc:09:1f:58:b2:82:ae:
e4:ae:a7:13:8a:9c:17:a3:d6:a9:fa:20:a3:01:55:
f7:06:63:f5:de:e6:51:34:09:d1:40:09:0f:99:1c:
9c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DC:EB:2E:7D:46:B1:B2:57:B6:95:92:52:FB:A2:85:D7:CA:D1:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7A814A63FDD11F1BA0D1CA7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.124.0/22
154.88.32.0/22
154.88.44.0-154.88.51.255
154.88.60.0/22
154.90.160.0/21
154.90.176.0/21
154.90.192.0/19
154.94.16.0/20
154.94.240.0/20
Signature Algorithm: sha256WithRSAEncryption
41:7c:a3:c8:59:d1:88:39:ef:5e:0c:86:a3:9a:d3:5c:0a:68:
53:15:1d:d2:8b:2c:6c:06:d0:37:fc:01:ab:da:6c:a4:05:bd:
76:ae:98:0f:5a:b1:5a:03:f1:68:82:92:ff:99:9b:c6:68:a1:
f1:8d:97:93:bc:dd:51:b1:d0:1c:cf:17:25:49:33:29:ad:a8:
06:53:c9:5c:41:99:b1:f2:f1:94:5e:aa:2f:75:1d:c4:79:56:
44:28:53:4d:a6:ee:0f:80:ae:b0:df:f5:8a:24:7c:36:01:fe:
0c:ac:26:90:f3:8a:9e:31:10:6f:62:e8:cb:5d:7c:a1:9e:da:
da:7b:8a:1a:7a:30:17:ae:d7:71:3a:ba:3b:00:23:f5:5c:3b:
f7:a2:7b:a4:4f:45:50:67:8f:9b:a8:a0:8e:be:39:97:49:c2:
93:c6:39:dc:d9:aa:39:e3:75:1c:4b:16:b7:6c:94:aa:7a:7a:
ae:4a:c4:69:06:d2:3e:a5:4d:17:cd:ff:f3:f2:ea:fe:7a:71:
c3:33:43:d0:5f:06:5b:9c:ca:ba:7a:bb:cf:9b:1a:b4:ac:d2:
b4:e1:1a:c1:3c:ac:70:82:2b:13:61:af:4e:f3:e8:ac:9e:e4:
03:01:6b:5a:b6:e6:86:e6:ca:b4:91:24:d3:fc:37:b7:f5:d5:
8a:c3:a8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 11:01:51 2026 by rpki-client