Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AFC51884DD711F1B20F44B8CE1D38B0.roa
File: 7AFC51884DD711F1B20F44B8CE1D38B0.roa (raw, json)
Hash identifier: Hhy1I4zV/8BS55Wtj+rgjuTu/ngdQ2YaUs/LW60VaQ8=
Subject key identifier: 77:91:DB:80:73:F5:51:B6:19:DC:1C:A6:CC:BF:E9:F3:87:58:AA:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB35
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AFC51884DD711F1B20F44B8CE1D38B0.roa
Signing time: Tue 12 May 2026 07:52:10 +0000
ROA not before: Tue 12 May 2026 07:52:06 +0000
ROA not after: Wed 17 Jun 2026 07:52:06 +0000
asID: 54801
IP address blocks: 154.81.136.0/24 maxlen: 24
154.81.166.0/24 maxlen: 24
154.82.18.0/24 maxlen: 24
154.82.20.0/24 maxlen: 24
154.83.158.0/24 maxlen: 24
154.83.187.0/24 maxlen: 24
154.83.190.0/24 maxlen: 24
154.83.191.0/24 maxlen: 24
154.83.209.0/24 maxlen: 24
154.83.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 05:45:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117557 (0x1cb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 12 07:52:06 2026 GMT
Not After : Jun 17 07:52:06 2026 GMT
Subject: CN=6a02dc2a-01fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:71:fd:16:a1:b8:5d:db:f8:20:94:44:be:92:
52:9c:d5:6f:dd:ee:44:2f:f4:2a:b7:57:6c:81:f0:
38:8a:99:d7:38:50:55:aa:38:41:38:c2:09:74:2c:
70:4c:be:13:48:6a:1a:8c:4f:2d:7c:d2:2d:26:73:
4b:12:1f:b5:92:bc:49:e2:23:19:c5:0f:e9:c1:2e:
a8:ae:b0:d4:25:f0:fb:ae:6c:aa:e5:35:81:c2:32:
84:e7:ee:f8:7e:ef:22:06:50:8a:9d:21:80:b4:02:
f8:b5:2c:fc:74:2f:1a:43:04:e4:d0:9c:e8:c5:91:
17:54:97:72:de:90:24:db:30:18:f2:12:a9:d1:e5:
d8:4e:dc:4c:7f:7a:1a:21:2b:72:5e:05:f8:b4:91:
1d:41:25:89:5b:36:ae:85:21:bf:4a:d2:02:6c:10:
87:c0:37:a9:32:85:4e:80:cf:d3:b5:02:8d:4d:83:
2b:2f:bb:ea:c8:c3:9f:5a:37:0e:19:53:40:6c:33:
91:c9:cb:34:6b:dc:bf:a3:71:6b:fe:66:e5:5f:ec:
18:7d:6a:ec:ca:f3:75:6f:2f:f8:f6:72:a2:22:9b:
43:b5:1e:3e:d4:3e:67:83:fd:08:81:7f:f2:64:70:
ce:a2:8c:93:6b:f5:f8:fc:81:13:16:7a:2d:5a:19:
8a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:91:DB:80:73:F5:51:B6:19:DC:1C:A6:CC:BF:E9:F3:87:58:AA:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AFC51884DD711F1B20F44B8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.136.0/24
154.81.166.0/24
154.82.18.0/24
154.82.20.0/24
154.83.158.0/24
154.83.187.0/24
154.83.190.0/23
154.83.209.0/24
154.83.211.0/24
Signature Algorithm: sha256WithRSAEncryption
63:6e:17:fe:e9:49:19:b2:1c:b6:99:38:64:a0:cf:24:75:21:
36:8e:89:2d:44:d3:0d:9d:07:09:b7:0c:f0:61:2e:5a:62:68:
da:6a:34:ce:c8:20:95:b9:c4:b0:6b:42:67:11:7c:d4:cd:ba:
01:4f:5f:b1:c3:26:a5:da:cf:49:f1:7f:85:0d:5b:af:c7:6e:
d0:f7:0b:a2:98:b6:17:44:ef:f9:df:54:a8:3d:5b:01:7b:63:
6a:e5:74:3d:11:0f:85:ee:18:81:e4:49:ed:57:10:c4:79:3e:
9d:0f:f2:d7:ff:d6:ac:c1:83:45:6f:ae:13:83:b5:21:83:58:
fe:f5:ef:4f:28:10:ca:98:9d:cd:d5:c1:65:da:17:28:b4:54:
f1:8e:98:e5:3d:dc:1d:24:c0:77:10:e4:f2:7b:30:42:85:a6:
54:f0:0c:a0:f6:59:e0:09:78:0b:d2:83:21:30:da:bd:77:dc:
f8:98:b0:75:ce:23:a4:f7:66:e5:cb:87:bf:c5:39:aa:5c:83:
a6:6b:72:56:20:6c:5b:b7:83:9a:9c:dd:d0:cb:cd:18:98:16:
80:57:19:aa:5d:51:21:ac:7d:ed:35:0e:5f:8a:e6:e5:5a:7f:
94:e0:6b:f6:d1:6a:5a:02:45:b7:66:d0:7c:35:02:e4:bc:de:
de:9c:e6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:29:55 2026 by rpki-client