Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7F288281E0311F19941FCC9DAE4EC9C.roa
File: F7F288281E0311F19941FCC9DAE4EC9C.roa (raw, json)
Hash identifier: b5Q4UleY6cQdnmHOVkQ8+zJ7J8nJKf4QuyPHWQkIQPU=
Subject key identifier: 27:3F:C1:87:5F:41:F7:5B:03:CC:C1:BE:C9:23:3C:CA:2F:56:66:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF0C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7F288281E0311F19941FCC9DAE4EC9C.roa
Signing time: Thu 12 Mar 2026 11:09:42 +0000
ROA not before: Thu 12 Mar 2026 11:09:37 +0000
ROA not after: Thu 16 Apr 2026 11:09:37 +0000
asID: 22773
IP address blocks: 154.90.9.0/24 maxlen: 24
154.90.10.0/24 maxlen: 24
154.90.11.0/24 maxlen: 24
154.90.12.0/24 maxlen: 24
154.90.13.0/24 maxlen: 24
154.90.14.0/24 maxlen: 24
154.90.15.0/24 maxlen: 24
154.90.16.0/24 maxlen: 24
154.90.17.0/24 maxlen: 24
154.90.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114444 (0x1bf0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 11:09:37 2026 GMT
Not After : Apr 16 11:09:37 2026 GMT
Subject: CN=69b29ef6-bd7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cb:41:10:f8:ac:82:df:f4:1e:09:98:d7:18:
f6:e8:57:93:14:7b:e8:20:e2:22:2d:b2:9a:67:47:
8a:02:52:80:a3:98:7b:0b:3a:3b:a9:74:2a:3d:00:
0d:9e:c0:2b:77:70:3f:ea:4f:00:3d:60:fa:f2:40:
65:04:8d:c6:36:c4:b2:76:a3:fa:ab:e9:7d:7d:7f:
da:3f:74:0e:17:97:aa:28:45:8c:0b:5a:af:9c:f5:
ce:ae:95:20:af:8e:3d:6d:8f:43:1b:c5:34:71:05:
44:bf:e7:e6:87:16:2e:30:42:22:59:0a:cd:d1:29:
30:bb:48:52:bb:f1:a7:ca:85:6f:10:52:71:7f:a8:
10:cd:ec:15:d5:9f:1a:bc:5a:5f:75:71:bd:21:71:
c9:a9:67:02:4e:06:9a:84:98:f1:21:6b:2b:51:f1:
b2:4e:52:2e:53:60:65:a1:37:eb:f9:a2:1b:86:a3:
f7:6a:cb:70:46:a0:05:58:e1:a9:d6:63:40:de:f0:
2f:dc:b7:24:47:99:bb:d5:9e:aa:73:5b:b5:c3:c2:
86:ae:94:e1:2e:9b:81:9c:fe:34:ae:8e:ae:bb:94:
10:48:cb:c5:e7:71:84:31:12:bc:27:d5:99:c3:f6:
84:ef:e1:4a:fc:1a:ea:47:2e:78:f5:65:40:d9:38:
58:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:3F:C1:87:5F:41:F7:5B:03:CC:C1:BE:C9:23:3C:CA:2F:56:66:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7F288281E0311F19941FCC9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.9.0-154.90.18.255
Signature Algorithm: sha256WithRSAEncryption
9d:ef:c4:10:b2:43:aa:df:72:55:46:d1:ab:97:d2:13:25:d1:
24:ed:3f:7d:49:72:06:f5:72:4e:d7:2d:fe:7e:99:d7:75:56:
9d:6f:6d:f7:c6:bf:2f:3e:7b:c0:ee:90:1c:ad:5c:fe:0c:71:
b7:b1:8e:11:7f:77:87:4b:93:4e:9d:bf:d4:48:44:c9:44:db:
01:4e:9f:d7:96:9b:79:eb:25:bf:e9:e2:fc:f2:b5:5d:f0:7e:
8e:db:a4:2b:5e:9d:3b:b3:80:7d:89:f7:80:62:ce:42:65:da:
03:92:cf:3d:c9:fc:84:7f:34:71:71:cb:a3:14:6a:0a:e5:16:
60:a0:96:0e:65:48:b9:7d:47:88:4f:30:60:cd:20:8d:45:51:
ef:a9:2c:32:d9:46:64:9b:b9:fd:63:73:7c:1c:6b:36:35:f0:
d3:ba:df:2d:9e:47:66:79:94:09:c7:5d:ad:13:8d:e4:6c:9a:
ac:95:49:ab:0e:d9:31:bc:92:82:da:66:7e:c4:32:04:75:43:
72:cd:ce:df:70:3c:8a:9d:37:ec:6d:28:7a:73:03:39:3c:68:
a8:a3:00:d9:c8:13:73:09:16:37:66:ab:d5:7b:fd:8f:1b:26:
5c:89:9c:2b:ec:b1:bb:97:46:e9:f3:41:78:a4:95:b7:b8:db:
b7:d5:73:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:24 2026 by rpki-client