Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EADED24E4EC911F1B40846F5CE1D38B0.roa
File: EADED24E4EC911F1B40846F5CE1D38B0.roa (raw, json)
Hash identifier: 37d9uwmrz8Xsrq/JsIPxVutsapoaZsSSR5rowPAJA7k=
Subject key identifier: 13:43:F2:72:8F:CF:13:26:51:D2:57:A9:7E:00:EC:8A:BF:87:3E:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB65
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EADED24E4EC911F1B40846F5CE1D38B0.roa
Signing time: Wed 13 May 2026 12:47:36 +0000
ROA not before: Wed 13 May 2026 12:47:32 +0000
ROA not after: Wed 17 Jun 2026 12:47:32 +0000
asID: 22773
IP address blocks: 154.82.224.0/19 maxlen: 24
154.85.4.0/22 maxlen: 24
154.94.52.0/23 maxlen: 24
154.94.56.0/24 maxlen: 24
154.94.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 May 2026 08:26:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117605 (0x1cb65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 13 12:47:32 2026 GMT
Not After : Jun 17 12:47:32 2026 GMT
Subject: CN=6a0472e8-039b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:da:1a:8a:10:36:08:e0:24:b0:ec:74:18:c1:
c9:7b:82:be:a2:5c:22:ad:99:53:da:98:4c:a0:2b:
99:97:26:bb:51:da:ea:02:f4:1d:e6:6f:37:78:12:
65:91:3e:7b:e0:1e:35:20:3b:84:26:ab:c2:84:2a:
56:1f:07:d0:a9:74:72:63:ec:47:41:6f:de:44:ee:
99:9d:f9:80:61:aa:6b:e6:8a:70:f5:3d:23:1c:1f:
67:20:a3:ed:6e:2e:c6:c3:97:15:a5:22:78:80:76:
5a:bd:20:19:93:cc:c2:0d:1e:9a:b6:23:b4:b6:ce:
a7:0a:1b:91:2c:fe:bf:81:ac:b4:dc:94:94:a2:c7:
77:e0:d0:44:00:d0:4e:29:73:c7:2a:6f:00:8f:9e:
c2:26:6e:4d:00:e5:8d:15:c7:eb:f7:57:2e:b0:2f:
69:ea:b7:4a:83:75:b7:b5:78:87:80:96:d2:7d:ab:
c6:94:d0:96:40:c2:73:38:44:f3:85:74:bb:b2:d3:
ad:3d:74:58:f0:15:cc:11:82:cc:5b:52:db:8c:7f:
d5:f3:00:b0:1a:89:ab:4d:93:fc:33:f3:9c:8f:ae:
bd:91:db:c9:d8:40:7c:cb:73:18:73:b2:f4:0a:12:
da:6b:75:c2:3f:fd:28:12:86:a7:dc:97:fd:19:e5:
0a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:43:F2:72:8F:CF:13:26:51:D2:57:A9:7E:00:EC:8A:BF:87:3E:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EADED24E4EC911F1B40846F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.224.0/19
154.85.4.0/22
154.94.52.0/23
154.94.56.0/24
154.94.59.0/24
Signature Algorithm: sha256WithRSAEncryption
80:b5:f7:72:e7:26:ac:9b:6b:be:9e:29:5e:dc:53:48:d2:d4:
35:92:fd:4a:71:9a:68:ef:78:3f:72:58:a1:59:8c:59:d6:12:
fc:fd:1e:d3:79:8c:92:8c:ec:cc:1d:bd:de:96:2e:fd:ff:60:
b4:f4:d5:64:7e:4e:19:32:04:c2:21:2f:51:c2:7a:14:c2:9a:
20:08:b8:c7:48:b2:c5:10:f1:2a:2e:af:cb:77:11:2c:45:bd:
09:b3:f1:9e:82:54:32:a4:29:4f:7c:2e:2c:64:5b:92:c4:ec:
b4:13:ef:ec:77:d0:a2:ac:75:1e:4d:f8:ea:2e:c3:e9:4d:03:
00:bd:42:1b:ed:03:24:e0:b3:52:82:3e:1c:fe:52:55:ca:a0:
31:29:52:ce:fa:0d:b7:91:3c:19:2d:7b:9f:2e:f9:30:d8:5a:
65:35:dc:42:5b:13:70:99:bb:1d:05:5b:9c:9d:12:b1:b6:39:
76:89:cb:5d:44:ed:24:a5:53:41:b5:82:7f:c1:54:88:a7:9d:
56:f4:80:ee:67:08:a1:7c:1f:cb:2c:8d:0e:0f:fa:9f:b6:a8:
71:c8:a3:9c:9e:ba:03:6a:75:bc:c0:b7:9e:a6:fa:85:58:0f:
f5:ac:9e:cd:1a:e0:a5:17:97:d3:ef:80:2c:ef:4b:85:03:d1:
ff:bc:ac:5c
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIDActlMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTEzMTI0NzMyWhcNMjYwNjE3MTI0NzMyWjAYMRYw
FAYDVQQDEw02YTA0NzJlOC0wMzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu9oaihA2COAksOx0GMHJe4K+olwirZlT2phMoCuZlya7UdrqAvQd5m83
eBJlkT574B41IDuEJqvChCpWHwfQqXRyY+xHQW/eRO6ZnfmAYapr5opw9T0jHB9n
IKPtbi7Gw5cVpSJ4gHZavSAZk8zCDR6atiO0ts6nChuRLP6/gay03JSUosd34NBE
ANBOKXPHKm8Aj57CJm5NAOWNFcfr91cusC9p6rdKg3W3tXiHgJbSfavGlNCWQMJz
OETzhXS7stOtPXRY8BXMEYLMW1LbjH/V8wCwGomrTZP8M/Ocj669kdvJ2EB8y3MY
c7L0ChLaa3XCP/0oEoan3Jf9GeUKawIDAQABo4ICvTCCArkwHQYDVR0OBBYEFBND
8nKPzxMmUdJXqX4A7Iq/hz5aMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQURFRDI0RTRFQzkxMUYxQjQwODQ2RjVDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQFmlLgAwQCmlUEAwQBml40
AwQAml44AwQAml47MA0GCSqGSIb3DQEBCwUAA4IBAQCAtfdy5yasm2u+nile3FNI
0tQ1kv1KcZpo73g/clihWYxZ1hL8/R7TeYySjOzMHb3eli79/2C09NVkfk4ZMgTC
IS9RwnoUwpogCLjHSLLFEPEqLq/LdxEsRb0Js/GeglQypClPfC4sZFuSxOy0E+/s
d9CirHUeTfjqLsPpTQMAvUIb7QMk4LNSgj4c/lJVyqAxKVLO+g23kTwZLXufLvkw
2FplNdxCWxNwmbsdBVucnRKxtjl2ictdRO0kpVNBtYJ/wVSIp51W9IDuZwihfB/L
LI0OD/qftqhxyKOcnroDanW8wLeepvqFWA/1rJ7NGuClF5fT74As70uFA9H/vKxc
-----END CERTIFICATE-----
Generated at Wed May 20 21:19:15 2026 by rpki-client