Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB6B2C2C455911F1B7CD3810CF1D38B0.roa
File: EB6B2C2C455911F1B7CD3810CF1D38B0.roa (raw, json)
Hash identifier: hYavXOPiifjuk5BC1s1SpcRYds8lyvJ44cehWNOrb5g=
Subject key identifier: C3:AD:86:BF:2F:4A:13:ED:F2:A6:B1:CA:90:57:19:8F:2F:66:EA:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C88F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB6B2C2C455911F1B7CD3810CF1D38B0.roa
Signing time: Fri 01 May 2026 12:33:13 +0000
ROA not before: Fri 01 May 2026 12:33:09 +0000
ROA not after: Wed 27 May 2026 12:33:09 +0000
asID: 147176
IP address blocks: 154.83.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116879 (0x1c88f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 12:33:09 2026 GMT
Not After : May 27 12:33:09 2026 GMT
Subject: CN=69f49d89-5776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:da:be:97:b0:c1:f4:fb:ea:d3:dc:8d:40:e4:
0f:8d:76:dc:a4:52:ba:2b:79:89:4f:46:9b:c0:d1:
4c:34:fc:c7:ba:12:e3:78:94:8e:9c:23:43:1f:8c:
9f:86:0e:15:ae:3c:13:d6:94:a7:9e:1b:79:73:6a:
0f:16:17:44:9b:77:73:25:66:23:90:32:16:ff:f1:
45:59:2e:d7:1e:5e:b6:e8:66:40:d4:fd:88:1d:2a:
fa:7c:64:f3:33:8b:62:88:9a:d5:d4:94:80:39:a3:
41:3c:09:ce:fa:9f:e5:ec:3e:e0:f9:87:3c:c7:65:
a5:85:aa:5e:2d:21:d4:ef:49:1c:44:9e:72:8b:df:
97:ef:fc:58:f1:fe:1a:13:65:37:cc:1e:d4:08:31:
ad:2a:90:c2:cb:08:8f:43:39:0d:c2:3f:fc:ef:26:
c0:78:63:34:87:24:b4:e1:85:77:c4:c6:1e:62:e3:
c9:13:88:62:5a:c9:6a:0d:2a:07:7e:4f:a8:a2:fc:
e2:d1:18:54:a2:d3:6e:35:aa:de:ac:db:67:c1:56:
43:fe:3b:f3:9b:0f:b9:af:80:80:af:b3:1b:cd:bf:
c0:4d:56:64:ff:30:c5:84:ce:9d:c0:8d:c3:73:3b:
c0:69:db:c0:a4:de:73:d5:a5:71:a9:a0:7c:21:9c:
f0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AD:86:BF:2F:4A:13:ED:F2:A6:B1:CA:90:57:19:8F:2F:66:EA:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB6B2C2C455911F1B7CD3810CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.25.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:0a:4e:6b:f7:f8:8c:cd:77:cb:09:89:0d:20:ed:86:aa:e8:
ba:5d:fd:06:62:f6:67:34:7c:79:00:15:c7:2d:f0:68:4c:fc:
e9:5a:32:62:d7:8a:39:e3:9e:38:0b:c2:fa:70:d4:92:9a:36:
26:ff:b3:5c:80:e1:d2:45:b6:2c:a5:23:49:7d:cf:83:57:ef:
3d:af:4f:f4:70:de:19:7b:4a:89:56:37:b6:6b:1c:c3:12:99:
ce:40:79:04:b2:ee:70:9d:0e:ba:cd:91:b5:27:bc:f1:bf:8e:
16:df:74:aa:56:04:03:63:aa:f6:38:fa:31:cc:6a:3d:9c:55:
c3:20:ba:aa:07:f4:b0:f1:cc:f0:00:6e:08:43:03:a0:ca:6f:
d6:6e:3e:23:a6:07:56:2b:6e:20:b5:d8:51:f2:c6:8d:e3:a8:
d1:29:8d:1e:cf:6b:2e:f0:70:f5:22:7a:fb:43:26:a8:9d:75:
5d:90:46:05:84:cc:d7:af:73:16:d9:9b:98:93:8e:73:33:e6:
15:72:19:e2:f1:35:8a:27:d2:3d:c4:a3:51:73:35:83:cb:83:
84:d4:6e:ed:b4:72:8d:8e:fc:a7:99:6b:be:25:c0:f3:b7:78:
2f:a3:54:b5:bc:ff:23:06:1d:d3:1e:1d:a4:92:88:1f:9a:d6:
2f:53:47:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 10:59:50 2026 by rpki-client