Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18512F624BA811F1AD4921ECCE1D38B0.roa
File: 18512F624BA811F1AD4921ECCE1D38B0.roa (raw, json)
Hash identifier: M1ILhCpf1YdDCRcPDtHJbLkp1tbgro50MO4KuTdfO0M=
Subject key identifier: AF:81:AD:45:73:0F:C6:75:4F:D6:35:EA:D5:F1:30:DF:D5:AD:7B:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CAA8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18512F624BA811F1AD4921ECCE1D38B0.roa
Signing time: Sat 09 May 2026 13:07:56 +0000
ROA not before: Sat 09 May 2026 13:07:51 +0000
ROA not after: Tue 09 Jun 2026 13:07:51 +0000
asID: 63099
IP address blocks: 154.82.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117416 (0x1caa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 13:07:51 2026 GMT
Not After : Jun 9 13:07:51 2026 GMT
Subject: CN=69ff31ac-db44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:64:1e:8b:38:7e:97:34:28:44:d4:b4:b1:93:
65:20:ff:2d:b4:18:89:5a:79:48:e5:73:70:ad:29:
f0:2f:e9:f5:56:a1:12:dd:15:c3:e7:08:75:3e:71:
41:20:77:ab:d8:14:91:44:ba:0a:09:58:04:23:d3:
6b:ab:5c:61:65:1b:a9:d4:97:c8:52:02:3a:f4:f2:
03:65:cb:ab:c9:34:fa:8c:79:64:48:9f:14:93:fd:
ce:da:b2:b6:d6:72:8f:dc:be:85:ae:51:bc:c7:27:
f6:97:ff:55:22:6f:14:23:0f:de:ca:40:cc:dd:1c:
00:33:ac:9e:24:39:40:ae:74:6c:60:da:01:cb:a9:
b6:09:3e:47:91:3e:c5:0f:69:42:6b:45:a6:84:18:
13:8d:b5:43:21:2d:33:53:02:1f:03:f0:9a:08:75:
27:10:3b:df:c9:8a:85:b2:15:48:61:9b:62:af:28:
d8:72:55:a5:55:54:34:a3:51:5b:ca:28:5a:16:de:
f6:60:6f:7b:a0:cf:cc:42:21:b8:c3:08:90:4b:79:
5a:d8:32:18:3f:ad:76:cb:bd:11:dd:f3:f8:97:77:
bf:d6:7e:b0:70:ef:04:e7:a0:ce:25:2d:a2:26:79:
ae:29:df:5b:b0:4c:1f:a2:fc:22:59:d9:11:36:3c:
26:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:81:AD:45:73:0F:C6:75:4F:D6:35:EA:D5:F1:30:DF:D5:AD:7B:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18512F624BA811F1AD4921ECCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.163.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:f7:6d:f8:97:d7:01:2a:a3:27:3b:39:8f:8d:34:fc:47:05:
aa:72:c9:c5:51:1a:8d:a3:0b:cf:9c:c1:b2:87:e7:e0:23:d5:
c8:87:81:01:f8:74:45:b6:4f:7c:04:35:b1:87:35:8e:9d:8e:
2e:aa:06:d9:6a:a1:f5:37:37:e8:9a:fb:27:ca:18:6d:2a:c2:
9a:8d:76:54:b9:5a:71:09:16:52:e6:00:4c:10:26:7f:86:47:
62:fa:45:8c:e1:1b:d6:b9:75:91:71:1a:4a:5f:9b:94:b8:42:
2c:32:96:24:9c:3c:b0:ae:1e:a1:9e:9c:aa:dc:2c:8f:64:2c:
77:cd:91:4d:eb:c7:4d:ce:a7:2a:63:a1:44:36:f6:c5:a4:d5:
a6:9d:bd:9d:e3:87:a4:b9:12:a8:8c:9e:f7:a1:0c:52:7d:92:
f0:43:46:70:c3:ba:14:b2:40:05:ad:2c:17:ed:22:a4:0a:c5:
91:0e:61:3c:45:cc:8c:68:19:bc:11:e2:cf:9b:f4:1f:f1:55:
ca:30:02:53:fe:4f:bd:99:a1:27:c8:fb:f8:fa:5c:f0:68:3d:
be:b1:63:d1:69:ce:8b:f1:31:af:b6:fb:a2:3f:33:c3:23:5d:
de:0c:31:98:a7:5e:84:df:b1:fc:81:a3:c9:6c:29:09:b9:d7:
22:79:87:b7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcqoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTA5MTMwNzUxWhcNMjYwNjA5MTMwNzUxWjAYMRYw
FAYDVQQDEw02OWZmMzFhYy1kYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsWQeizh+lzQoRNS0sZNlIP8ttBiJWnlI5XNwrSnwL+n1VqES3RXD5wh1
PnFBIHer2BSRRLoKCVgEI9Nrq1xhZRup1JfIUgI69PIDZcuryTT6jHlkSJ8Uk/3O
2rK21nKP3L6FrlG8xyf2l/9VIm8UIw/eykDM3RwAM6yeJDlArnRsYNoBy6m2CT5H
kT7FD2lCa0WmhBgTjbVDIS0zUwIfA/CaCHUnEDvfyYqFshVIYZtiryjYclWlVVQ0
o1FbyihaFt72YG97oM/MQiG4wwiQS3la2DIYP612y70R3fP4l3e/1n6wcO8E56DO
JS2iJnmuKd9bsEwfovwiWdkRNjwm4QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK+B
rUVzD8Z1T9Y16tXxMN/VrXs3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xODUxMkY2MjRCQTgxMUYxQUQ0OTIxRUNDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlKjMA0GCSqGSIb3DQEB
CwUAA4IBAQA99234l9cBKqMnOzmPjTT8RwWqcsnFURqNowvPnMGyh+fgI9XIh4EB
+HRFtk98BDWxhzWOnY4uqgbZaqH1NzfomvsnyhhtKsKajXZUuVpxCRZS5gBMECZ/
hkdi+kWM4RvWuXWRcRpKX5uUuEIsMpYknDywrh6hnpyq3CyPZCx3zZFN68dNzqcq
Y6FENvbFpNWmnb2d44ekuRKojJ73oQxSfZLwQ0Zww7oUskAFrSwX7SKkCsWRDmE8
RcyMaBm8EeLPm/Qf8VXKMAJT/k+9maEnyPv4+lzwaD2+sWPRac6L8TGvtvuiPzPD
I13eDDGYp16E37H8gaPJbCkJudcieYe3
-----END CERTIFICATE-----
Generated at Wed May 13 06:11:55 2026 by rpki-client