Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCFB4F2E1C5911F1A673D993DAE4EC9C.roa
File: DCFB4F2E1C5911F1A673D993DAE4EC9C.roa (raw, json)
Hash identifier: UDZtaGkI+2huVEAp1Nw+IgzwyqlgxzSCefDRGmSOkzE=
Subject key identifier: 57:89:85:4F:92:FC:93:F5:BA:0E:A1:99:93:50:66:5D:F2:3C:B7:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BEA7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCFB4F2E1C5911F1A673D993DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 08:19:31 +0000
ROA not before: Tue 10 Mar 2026 08:19:26 +0000
ROA not after: Mon 13 Apr 2026 08:19:26 +0000
asID: 14315
IP address blocks: 154.81.11.0/24 maxlen: 24
154.81.48.0/23 maxlen: 24
154.84.128.0/22 maxlen: 24
154.84.132.0/23 maxlen: 24
154.84.134.0/24 maxlen: 24
154.84.152.0/24 maxlen: 24
154.88.68.0/22 maxlen: 24
154.89.1.0/24 maxlen: 24
154.89.128.0/22 maxlen: 24
154.89.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114343 (0x1bea7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 10 08:19:26 2026 GMT
Not After : Apr 13 08:19:26 2026 GMT
Subject: CN=69afd413-5316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5d:51:d8:39:a1:81:e1:42:8d:22:77:5e:bb:
34:d2:5a:19:63:97:e3:33:32:eb:c5:0d:20:b3:12:
69:95:a2:f7:73:ae:29:de:70:ee:3b:61:79:c2:12:
82:b4:9f:d9:cd:49:1c:d8:4e:70:da:dd:28:48:04:
71:55:20:f0:3d:fb:1d:3e:a7:37:fe:b1:e9:e5:65:
ff:e1:b0:14:19:3a:f1:67:1a:1f:32:e6:de:de:ae:
dd:30:49:e2:53:33:45:df:47:f7:ae:4d:f1:62:9a:
b5:b5:9c:bb:f9:60:73:de:5e:09:27:14:cd:ff:e9:
1a:60:e6:41:53:84:f3:15:ea:05:09:8d:7e:57:f8:
db:83:8f:97:8a:20:36:ba:e6:1c:f3:7f:40:09:6c:
45:c1:ce:54:8d:6c:8f:73:26:67:dc:aa:ae:f8:50:
82:63:d0:c7:93:ef:dc:2a:c5:05:e9:cf:5d:62:61:
95:9a:b7:aa:1c:5a:c0:7f:79:d9:9d:a9:78:e6:aa:
a8:f5:2e:f1:57:4a:6e:40:63:af:9d:74:19:39:05:
0b:29:d4:ce:c0:a5:bc:4d:d8:4c:be:b6:a1:88:a8:
53:27:46:a5:55:46:99:88:f7:77:35:86:b3:cf:76:
18:0a:73:79:e3:2c:db:03:4b:30:0f:2d:6e:7c:58:
a7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:89:85:4F:92:FC:93:F5:BA:0E:A1:99:93:50:66:5D:F2:3C:B7:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCFB4F2E1C5911F1A673D993DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.11.0/24
154.81.48.0/23
154.84.128.0-154.84.134.255
154.84.152.0/24
154.88.68.0/22
154.89.1.0/24
154.89.128.0/22
154.89.136.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:18:80:af:33:1d:f8:74:f7:93:a9:77:7f:53:71:62:b6:fb:
22:1f:b5:57:4c:1f:8e:29:4d:20:0d:7d:2a:db:1f:62:e5:0a:
ad:3f:2a:10:ba:11:81:65:f7:ac:49:d9:0d:c0:1a:d6:84:47:
a8:c4:1f:85:c0:3e:34:53:20:c1:54:24:6b:63:62:b7:f4:1c:
e4:88:c3:63:9f:f5:76:b4:aa:58:2f:13:c0:d0:7a:33:00:09:
a8:b6:a0:9e:98:66:24:6a:e4:d0:9a:d7:3d:9a:e5:e6:db:03:
6c:e2:4d:d8:1c:bb:2f:3e:a0:5c:70:84:d2:5b:33:ff:42:9c:
48:df:72:d9:42:9b:d1:54:96:1f:81:a3:1d:0e:b3:43:7f:6f:
27:7d:db:42:bb:1a:1f:30:90:ad:60:fa:8a:f3:8f:64:1b:cd:
8c:80:80:05:58:1c:82:7f:00:c8:86:eb:65:09:eb:e6:ea:97:
36:e5:af:72:b3:21:e8:b3:da:42:c5:ca:99:70:18:ba:3d:d6:
6a:3d:23:34:e8:d2:d7:ef:3b:de:0a:cf:fe:9e:84:5b:29:fd:
c9:53:96:af:e4:42:41:50:3c:84:08:91:df:bf:bb:13:16:1a:
3e:42:f3:78:4d:33:09:e6:f1:e3:6e:3b:99:a6:8c:57:ff:01:
75:1f:ba:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:20:34 2026 by rpki-client