Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57E9FF1A4D0511F184E493BECE1D38B0.roa
File: 57E9FF1A4D0511F184E493BECE1D38B0.roa (raw, json)
Hash identifier: v3u/cRL/QC8XP6ZvelaKHHamZYtPMFK5fp568wbsGlE=
Subject key identifier: 76:E1:C8:17:F9:74:AA:4E:6D:94:03:EE:1C:68:DF:E6:7E:05:95:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CAEE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57E9FF1A4D0511F184E493BECE1D38B0.roa
Signing time: Mon 11 May 2026 06:47:57 +0000
ROA not before: Mon 11 May 2026 06:47:53 +0000
ROA not after: Mon 18 May 2026 06:47:53 +0000
asID: 140224
IP address blocks: 154.86.16.0/24 maxlen: 24
154.86.17.0/24 maxlen: 24
154.86.18.0/24 maxlen: 24
154.86.19.0/24 maxlen: 24
154.86.20.0/24 maxlen: 24
154.86.21.0/24 maxlen: 24
154.86.22.0/24 maxlen: 24
154.86.23.0/24 maxlen: 24
154.86.24.0/24 maxlen: 24
154.86.25.0/24 maxlen: 24
154.86.26.0/24 maxlen: 24
154.86.27.0/24 maxlen: 24
154.86.28.0/24 maxlen: 24
154.86.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 06:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117486 (0x1caee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 06:47:53 2026 GMT
Not After : May 18 06:47:53 2026 GMT
Subject: CN=6a017b9d-6040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fe:40:4c:50:aa:0e:e2:bd:73:62:2f:0d:2e:
dc:f8:e9:fa:68:8b:de:df:2a:19:18:c4:7a:10:68:
75:91:77:17:fe:4c:b1:ab:b6:66:58:1b:05:7c:50:
7c:d1:72:8c:d8:21:f6:79:a6:a8:9b:3e:2d:2f:fd:
94:ce:74:92:43:6d:99:3c:de:5d:f7:a6:29:71:cd:
2e:80:ca:63:ca:55:b2:d2:ef:4d:c9:b0:f2:a0:0e:
ca:55:13:28:85:0f:07:ad:9f:aa:08:65:dd:1d:e2:
cd:4e:12:5e:35:21:b6:95:e1:fa:83:7a:1c:8e:a5:
23:34:5a:a8:3c:ab:cb:07:1c:ee:c0:9c:9e:96:53:
68:63:b7:af:99:a7:af:87:04:16:e8:ca:62:47:bb:
1f:59:a9:ec:95:fa:f3:0b:7f:ca:64:e1:69:0d:be:
b4:3f:d4:e0:c7:43:bd:74:e5:72:63:2c:3e:15:62:
1c:a6:29:1b:61:74:e6:34:29:fe:71:3e:5c:b8:80:
47:fa:11:47:46:3c:32:af:e3:2a:ca:6e:07:fa:b4:
ae:c5:28:f3:79:8b:02:e5:f4:71:8c:33:99:07:ee:
a8:df:ba:e8:fa:48:71:fa:ef:6a:2c:b6:da:6b:e6:
3d:96:f8:e6:20:9f:e6:83:d3:23:7b:39:9c:f7:12:
2e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E1:C8:17:F9:74:AA:4E:6D:94:03:EE:1C:68:DF:E6:7E:05:95:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57E9FF1A4D0511F184E493BECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.16.0-154.86.29.255
Signature Algorithm: sha256WithRSAEncryption
d4:48:5b:59:b1:66:e9:53:ad:52:2c:1a:5c:0e:ab:fc:f5:00:
15:1d:64:db:14:8f:b8:09:3f:d0:82:ea:ee:d9:37:ad:82:d3:
0e:50:4d:a9:dd:d9:84:8f:18:ff:ba:98:ca:92:be:c8:89:07:
80:62:a1:54:f7:a7:58:4f:85:cc:be:e2:df:27:2e:2d:9b:27:
81:b1:77:61:0b:18:33:3b:7a:94:05:48:44:fa:0c:3a:67:8c:
c0:4d:7c:04:e0:16:d3:f2:c3:6b:66:0f:38:dc:4a:07:61:2c:
41:81:f7:e3:d1:bc:03:25:e7:09:a5:74:0a:d3:a3:13:39:06:
6c:c7:f4:2a:b4:f9:fa:75:4b:e6:2f:af:c0:bd:f6:b1:12:90:
ba:5a:8b:ad:05:42:85:8a:b5:44:22:11:01:23:37:ed:48:3c:
86:b2:4a:3f:f9:66:ff:67:30:69:cc:98:4e:a8:08:e6:0c:62:
90:22:7f:16:4d:19:92:30:b3:4b:11:6a:f1:05:82:b1:01:88:
08:3f:a9:1a:d5:c1:98:17:6f:11:b4:59:cc:88:4e:51:fc:76:
84:6c:df:f2:9d:d6:3d:16:d4:76:c5:5a:47:d6:b0:48:0a:2c:
19:37:a1:a2:65:13:f0:89:27:87:6b:a8:00:b0:b7:1f:32:19:
4f:e9:52:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:57:31 2026 by rpki-client