Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/147E14B227A011F1A27271CEDAE4EC9C.roa
File: 147E14B227A011F1A27271CEDAE4EC9C.roa (raw, json)
Hash identifier: XBor4Z2q9e+P8W5Fuwi2Q4CSf/EsOX7N0LZYwlc2xnU=
Subject key identifier: 40:A6:D5:20:6D:61:00:14:57:04:3C:FB:CC:97:03:16:16:DB:ED:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/147E14B227A011F1A27271CEDAE4EC9C.roa
Signing time: Tue 24 Mar 2026 16:39:52 +0000
ROA not before: Tue 24 Mar 2026 16:39:47 +0000
ROA not after: Fri 01 May 2026 16:39:47 +0000
asID: 62240
IP address blocks: 154.194.79.0/24 maxlen: 24
154.194.89.0/24 maxlen: 24
154.194.92.0/24 maxlen: 24
154.194.93.0/24 maxlen: 24
154.194.98.0/24 maxlen: 24
154.196.18.0/24 maxlen: 24
154.196.22.0/24 maxlen: 24
154.196.50.0/24 maxlen: 24
154.196.54.0/24 maxlen: 24
154.196.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114871 (0x1c0b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 16:39:47 2026 GMT
Not After : May 1 16:39:47 2026 GMT
Subject: CN=69c2be58-f50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:40:13:6e:65:ae:92:0d:9b:1f:e2:d7:07:bf:
a0:41:a3:b0:35:ea:52:2e:07:ad:4e:6b:2f:b0:90:
dd:94:15:e8:b6:18:ab:1d:ae:ca:d3:49:e2:fc:73:
27:d1:90:7a:c8:c9:13:5e:5b:8e:fa:57:67:0a:da:
fc:95:59:11:1a:c4:40:52:5b:8f:96:ae:d3:3b:86:
33:16:6b:f0:71:3b:0a:da:cd:9c:3a:dd:e0:3d:be:
8d:6f:3b:3d:eb:6f:35:f5:9d:32:e6:55:c2:25:0e:
5e:de:6c:cd:e1:8d:88:d2:41:1d:7e:c1:1b:58:7f:
b8:4a:cc:58:db:85:12:7c:56:39:7f:c8:ff:05:b8:
a6:49:a2:aa:0b:51:74:70:1b:c8:1c:26:c9:7e:66:
b8:d3:88:8f:07:cd:44:b3:fa:3a:f2:ff:62:ac:dc:
38:a6:03:d0:03:9b:3f:d6:9e:0e:4a:fe:8e:67:02:
14:2c:4a:fa:f1:63:3e:8b:97:02:89:38:7e:f0:72:
f2:b3:22:12:e6:10:a6:89:f2:3d:0c:d0:ad:1d:65:
56:4f:a0:94:3d:3e:69:b8:63:b9:f7:ad:5a:c0:7a:
30:a0:56:e5:ca:d3:78:58:41:1e:be:e4:2a:41:2f:
03:6c:65:2e:d3:be:bd:3e:de:89:31:03:e9:15:66:
fd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A6:D5:20:6D:61:00:14:57:04:3C:FB:CC:97:03:16:16:DB:ED:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/147E14B227A011F1A27271CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.79.0/24
154.194.89.0/24
154.194.92.0/23
154.194.98.0/24
154.196.18.0/24
154.196.22.0/24
154.196.50.0/24
154.196.54.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:fd:8e:00:e4:2d:f0:f8:7c:8f:92:2b:20:04:37:32:8d:18:
40:c6:a7:f1:ad:ac:2c:62:25:d0:af:f1:7e:58:ea:38:47:d1:
03:09:36:56:83:8d:ff:31:f5:67:66:6f:c9:9b:5a:20:68:6d:
57:07:1f:ad:b0:37:aa:33:91:c4:51:06:32:cf:f7:20:55:3b:
bc:4b:53:13:86:08:5b:83:f6:11:d5:c4:bc:e0:20:58:69:5f:
31:e0:2e:e2:bd:21:ae:f0:cd:80:c6:89:de:39:3e:2e:f8:44:
5a:0a:07:5f:f3:15:d0:38:2a:c1:97:eb:52:0f:c1:fa:45:3e:
8b:34:47:7d:08:93:56:a1:7e:90:b5:8a:fd:83:47:f8:7d:5f:
59:f8:94:00:e3:49:9e:ab:22:fb:f7:33:cf:15:ca:70:6d:e6:
1c:d3:33:ef:f2:b2:cf:a2:e7:41:78:b0:36:c3:9e:14:8e:5b:
2f:8f:b1:c7:4e:75:57:4a:fd:47:4e:34:b7:c6:07:02:2e:57:
c3:c3:47:67:ea:6a:ed:98:b7:8b:11:72:b3:1e:8f:9a:bc:ee:
3e:a4:18:43:00:2b:da:3c:a0:49:0a:c9:93:72:03:2a:6b:37:
48:2a:36:66:20:d4:65:7c:c9:e0:e3:89:21:13:9b:cb:2a:7e:
a8:f4:fc:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:25:27 2026 by rpki-client